FBI Warns of UNC6040 and UNC6395 Targeting Salesforce Platforms in Data Theft Attacks
Sat, 13 Sep 2025 14:34:00 +0530
The U.S. Federal Bureau of Investigation (FBI) has issued a flash alert to release indicators of compromise (IoCs) associated with two cybercriminal groups tracked as UNC6040 and UNC6395 for a string of data theft and extortion attacks.
“Both groups have recently been observed targeting organizations’ Salesforce platforms via different initial access mechanisms,” the FBI said.
UNC6395 is a
https://thehackernews.com/2025/09/fbi-warns-of-unc6040-and-unc6395.html
Samsung Fixes Critical Zero-Day CVE-2025-21043 Exploited in Android Attacks
Fri, 12 Sep 2025 20:46:00 +0530
Samsung has released its monthly security updates for Android, including a fix for a security vulnerability that it said has been exploited in zero-day attacks.
The vulnerability, CVE-2025-21043 (CVSS score: 8.8), concerns an out-of-bounds write that could result in arbitrary code execution.
“Out-of-bounds Write in libimagecodec.quram.so prior to SMR Sep-2025 Release 1 allows remote attackers to
https://thehackernews.com/2025/09/samsung-fixes-critical-zero-day-cve.html
Apple Warns French Users of Fourth Spyware Campaign in 2025, CERT-FR Confirms
Fri, 12 Sep 2025 20:19:00 +0530
Apple has notified users in France of a spyware campaign targeting their devices, according to the Computer Emergency Response Team of France (CERT-FR).
The agency said the alerts were sent out on September 3, 2025, making it the fourth time this year that Apple has notified citizens in the county that at least one of the devices linked to their iCloud accounts may have been compromised as part
https://thehackernews.com/2025/09/apple-warns-french-users-of-fourth.html
In Other News: $900k for XSS Bugs, HybridPetya Malware, Burger King Censors Research
Fri, 12 Sep 2025 14:26:14 +0000
Noteworthy stories that might have slipped under the radar: Huntress research raises concerns, Google paid out $1.6 million for cloud vulnerabilities, California web browser bill.
The post In Other News: $900k for XSS Bugs, HybridPetya Malware, Burger King Censors Research appeared first on SecurityWeek.
https://www.securityweek.com/in-other-news-900k-for-xss-bugs-hybridpetya-malware-burger-king-censors-research/
DELMIA Factory Software Vulnerability Exploited in Attacks
Fri, 12 Sep 2025 12:55:28 +0000
A deserialization of untrusted data in the MOM software allows attackers to achieve remote code execution.
The post DELMIA Factory Software Vulnerability Exploited in Attacks appeared first on SecurityWeek.
https://www.securityweek.com/delmia-factory-software-vulnerability-exploited-in-attacks/
Apple Sends Fresh Wave of Spyware Notifications to French Users
Fri, 12 Sep 2025 12:03:33 +0000
Apple this year sent at least four rounds of notifications to French users potentially targeted by commercial spyware.
The post Apple Sends Fresh Wave of Spyware Notifications to French Users appeared first on SecurityWeek.
https://www.securityweek.com/apple-sends-fresh-wave-of-spyware-notifications-to-french-users/
New HybridPetya Ransomware Bypasses UEFI Secure Boot With CVE-2024-7344 Exploit
Fri, 12 Sep 2025 17:20:00 +0530
Cybersecurity researchers have discovered a new ransomware strain dubbed HybridPetya that resembles the notorious Petya/NotPetya malware, while also incorporating the ability to bypass the Secure Boot mechanism in Unified Extensible Firmware Interface (UEFI) systems using a now-patched vulnerability disclosed earlier this year.
Slovakian cybersecurity company ESET said the samples were uploaded
https://thehackernews.com/2025/09/new-hybridpetya-ransomware-bypasses.html
F5 to Acquire CalypsoAI for $180 Million
Fri, 12 Sep 2025 11:22:14 +0000
F5 is buying CalypsoAI for its adaptive AI inference security solutions, which will be integrated into its Application Delivery and Security Platform.
The post F5 to Acquire CalypsoAI for $180 Million appeared first on SecurityWeek.
https://www.securityweek.com/f5-to-acquire-calypsoai-for-180-million/
Critical CVE-2025-5086 in DELMIA Apriso Actively Exploited, CISA Issues Warning
Fri, 12 Sep 2025 16:33:00 +0530
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a critical security flaw impacting Dassault Systèmes DELMIA Apriso Manufacturing Operations Management (MOM) software to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation.
The vulnerability, tracked as CVE-2025-5086, carries a CVSS score of 9.0 out of 10.0. According to
https://thehackernews.com/2025/09/critical-cve-2025-5086-in-delmia-apriso.html
CISA: CVE Program to Focus on Vulnerability Data Quality
Fri, 12 Sep 2025 10:53:01 +0000
CISA says it is time for the CVE Program to focus on improving trust, responsiveness, and the caliber of vulnerability data.
The post CISA: CVE Program to Focus on Vulnerability Data Quality appeared first on SecurityWeek.
https://www.securityweek.com/cisa-cve-program-to-focus-on-vulnerability-data-quality/
VMScape: Academics Break Cloud Isolation With New Spectre Attack
Fri, 12 Sep 2025 09:49:57 +0000
Exploiting incomplete speculative execution attack mitigations extended to the branch predictor state, VMScape leaks arbitrary memory.
The post VMScape: Academics Break Cloud Isolation With New Spectre Attack appeared first on SecurityWeek.
https://www.securityweek.com/vmscape-academics-break-cloud-isolation-with-new-spectre-attack/
Payment System Vendor Took Year+ to Patch Infinite Card Top-Up Hack: Security Firm
Fri, 12 Sep 2025 08:40:27 +0000
KioSoft was notified about a serious NFC card vulnerability in 2023 and only recently claimed to have released a patch.
The post Payment System Vendor Took Year+ to Patch Infinite Card Top-Up Hack: Security Firm appeared first on SecurityWeek.
https://www.securityweek.com/payment-system-vendor-took-year-to-patch-infinite-card-top-up-hack-security-firm/
Cloud-Native Security in 2025: Why Runtime Visibility Must Take Center Stage
Fri, 12 Sep 2025 13:30:00 +0530
The security landscape for cloud-native applications is undergoing a profound transformation. Containers, Kubernetes, and serverless technologies are now the default for modern enterprises, accelerating delivery but also expanding the attack surface in ways traditional security models can’t keep up with.
As adoption grows, so does complexity. Security teams are asked to monitor sprawling hybrid
https://thehackernews.com/2025/09/cloud-native-security-in-2025-why.html
Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories
Fri, 12 Sep 2025 10:19:00 +0530
A security weakness has been disclosed in the artificial intelligence (AI)-powered code editor Cursor that could trigger code execution when a maliciously crafted repository is opened using the program.
The issue stems from the fact that an out-of-the-box security setting is disabled by default, opening the door for attackers to run arbitrary code on users’ computers with their privileges.
”
https://thehackernews.com/2025/09/cursor-ai-code-editor-flaw-enables.html
Google Pixel 10 Adds C2PA Support to Verify AI-Generated Media Authenticity
Thu, 11 Sep 2025 20:33:00 +0530
Google on Tuesday announced that its new Google Pixel 10 phones support the Coalition for Content Provenance and Authenticity (C2PA) standard out of the box to verify the origin and history of digital content.
To that end, support for C2PA’s Content Credentials has been added to Pixel Camera and Google Photos apps for Android. The move, Google said, is designed to further digital media
https://thehackernews.com/2025/09/google-pixel-10-adds-c2pa-support-to.html
Webinar Today: Breaking AI – Inside the Art of LLM Pen Testing
Thu, 11 Sep 2025 15:01:53 +0000
Join the webinar as we reveal a new model for AI pen testing – one grounded in social engineering, behavioral manipulation, and even therapeutic dialogue.
The post Webinar Today: Breaking AI – Inside the Art of LLM Pen Testing appeared first on SecurityWeek.
https://www.securityweek.com/webinar-today-breaking-ai-inside-the-art-of-llm-pen-testing/
Senator Wyden Urges FTC to Probe Microsoft for Ransomware-Linked Cybersecurity Negligence
Thu, 11 Sep 2025 20:21:00 +0530
U.S. Senator Ron Wyden has called on the Federal Trade Commission (FTC) to probe Microsoft and hold it responsible for what he called “gross cybersecurity negligence” that enabled ransomware attacks on U.S. critical infrastructure, including against healthcare networks.
“Without timely action, Microsoft’s culture of negligent cybersecurity, combined with its de facto monopolization of the
https://thehackernews.com/2025/09/senator-wyden-urges-ftc-to-probe.html
Cisco Patches High-Severity IOS XR Vulnerabilities
Thu, 11 Sep 2025 14:31:01 +0000
High-severity flaws in IOS XR could lead to ISO image verification bypass and denial-of-service conditions.
The post Cisco Patches High-Severity IOS XR Vulnerabilities appeared first on SecurityWeek.
https://www.securityweek.com/cisco-patches-high-severity-ios-xr-vulnerabilities/
UK Train Operator LNER Warns Customers of Data Breach
Thu, 11 Sep 2025 13:55:55 +0000
LNER said the security incident involved a third-party supplier and resulted in contact information and other data being compromised.
The post UK Train Operator LNER Warns Customers of Data Breach appeared first on SecurityWeek.
https://www.securityweek.com/uk-train-operator-lner-warns-customers-of-data-breach/
Cracking the Boardroom Code: Helping CISOs Speak the Language of Business
Thu, 11 Sep 2025 16:03:00 +0530
CISOs know their field. They understand the threat landscape. They understand how to build a strong and cost-effective security stack. They understand how to staff out their organization. They understand the intricacies of compliance. They understand what it takes to reduce risk. Yet one question comes up again and again in our conversations with these security leaders: how do I make the impact
https://thehackernews.com/2025/09/cracking-boardroom-code-helping-cisos.html