Hacking

ISC Stormcast For Tuesday, June 10th, 2025 https://isc.sans.edu/podcastdetail/9486, (Tue, Jun 10th) Source link

Strengthening Resilience for the Financial Sector The Digital Operational Resilience Act (DORA) is a landmark EU regulation that establishes a unified framework for managing technology risk in the financial sector. It’s designed to ensure that banks, insurers, investment firms, and other financial entities can withstand, respond to, and recover from all types of ICT-related disruptions—from…

For the latest discoveries in cyber research for the week of 9th June, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES American tax company, Optima Tax Relief, has disclosed a ransomware attack that resulted in the theft of 69GB of sensitive data, including corporate records and customer case files containing personal information such…

An insufficient validation input flaw, one of 11 patched in an update this week, could allow for arbitrary code execution and is under active attack. Source link

Last updated at Fri, 06 Jun 2025 20:16:37 GMT As India’s economy rapidly digitizes, cybersecurity challenges are becoming increasingly complex. This May, Rapid7 launched our inaugural Global Security Day series across India, bringing together top security leaders in Mumbai, Delhi, and Bengaluru to address the most pressing cyber threats facing organizations in 2025. Key insights…

# Exploit Title: ProSSHD 1.2 20090726 – Denial of Service (DoS) # Google Dork: N/A # Date: 13 january 2024 # Exploit Author: Fernando Mengali # Vendor Homepage: https://prosshd.com/ # Software Link: N/A # Version: 1.2 20090726 # Tested on: Windows XP # CVE: CVE-2024-0725 $sis=”$^O”; if ($sis eq “windows”){ $cmd=”cls”; } else…

Separate fixes to macOS and iOS patch respective flaws in the kernel and WebKit that can allow threat actors to take over devices and are under attack. Source link

Fake travel reservations are exacting more pain from the travel weary, already dealing with the misery of canceled flights and overbooked hotels. Source link

CISA is warning that Palo Alto Networks’ PAN-OS is under active attack and needs to be patched ASAP. Source link

#!/usr/bin/env python3 # Exploit Title: Microsoft Windows 11 Version 24H2 Cross Device Service – Elevation of Privilege # Author: Mohammed Idrees Banyamer # Instagram: @banyamer_security # GitHub: https://github.com/mbanyamer # Date: 2025-06-06 # Tested on: Windows 11 Version 24H2 for x64-based Systems (10.0.26100.3476) # CVE: CVE-2025-24076 # # Affected Versions: # – Windows 11 Version 24H2…