Recent news in security

Security Vendor 

Threats Making WAVs – Incident Response to a Cryptomining Attack 

Yanac

Guardicore security researchers describe and uncover a full analysis of a cryptomining attack, which hid a cryptominer inside WAV files.

Security Vendor 

Self-Propagating Malware Spreading Via WhatsApp, Targets Brazilian Users 

Yanac

Trend™ Research has identified an active campaign spreading via WhatsApp through a ZIP file attachment. When executed, the malware establishes

Security Vulns 

CVE-2025-48729 | QNAP QTS/QuTS hero prior 5.2.6.3195 Build 20250715 null pointer dereference (qsa-25-36)

Yanac

A vulnerability was found in QNAP QTS and QuTS hero. It has been classified as problematic. This affects an unknown

Vendor

CERTs

Vulnerabilities

Threats Making WAVs – Incident Response to a Cryptomining Attack 

Yanac

Self-Propagating Malware Spreading Via WhatsApp, Targets Brazilian Users 

Yanac
Phoenix: Rowhammer that works on DDR5 | Kaspersky official blog 

Phoenix: Rowhammer that works on DDR5 | Kaspersky official blog 

Yanac

Identity-Centric Security: ICAM as a Mission Advantage 

Yanac
The Good, the Bad and the Ugly in Cybersecurity – Week 40 

The Good, the Bad and the Ugly in Cybersecurity – Week 40 

Yanac

PLEASE_READ_ME: The Opportunistic Ransomware Devastating MySQL Servers 

Yanac

PLEASE_READ_ME: The Opportunistic Ransomware Devastating MySQL Servers 

Yanac
Microsoft named a Leader in the IDC MarketScape for XDR 

Microsoft named a Leader in the IDC MarketScape for XDR 

Yanac
How to Find Local File Inclusion (LFI) Vulnerabilities in WordPress Plugins and Themes 

How to Find Local File Inclusion (LFI) Vulnerabilities in WordPress Plugins and Themes 

Yanac
Wordfence Intelligence Weekly WordPress Vulnerability Report (September 22, 2025 to September 28, 2025) 

Wordfence Intelligence Weekly WordPress Vulnerability Report (September 22, 2025 to September 28, 2025) 

Yanac

Podatność w oprogramowaniu ITCube CRM

Yanac

Vulnerability in ITCube CRM software

Yanac

Podatności w oprogramowaniu CGM CLININET

Yanac

Podatności w oprogramowaniu OpenSolution QuickCMS

Yanac

Vulnerabilities in OpenSolution QuickCMS software

Yanac

Social Media: how to use it safely

Yanac

Podatności w oprogramowaniu Payload CMS

Yanac

Vulnerabilities in Payload CMS software

Yanac

From bugs to bypasses: adapting vulnerability disclosure for AI safeguards

Yanac

Vulnerability in Concept Intermedia GOV CMS software

Yanac

CVE-2025-48729 | QNAP QTS/QuTS hero prior 5.2.6.3195 Build 20250715 null pointer dereference (qsa-25-36)

Yanac

CVE-2025-48730 | QNAP QTS/QuTS hero prior 5.2.6.3195 Build 20250715 format string (qsa-25-36)

Yanac

CVE-2025-52428 | QNAP QTS up to 5.2.4.3079 Build 20250321 null pointer dereference (qsa-25-36)

Yanac

CVE-2025-52432 | QNAP QTS/QuTS hero null pointer dereference (qsa-25-36)

Yanac

CVE-2025-52427 | QNAP QTS/QuTS hero prior 5.2.6.3195 Build 20250715 null pointer dereference (qsa-25-36)

Yanac

CVE-2025-52433 | QNAP QTS/QuTS hero prior 5.2.6.3195 Build 20250715 null pointer dereference (qsa-25-36)

Yanac

CVE-2025-52853 | QNAP QTS/QuTS hero prior 5.2.6.3195 Build 20250715 null pointer dereference (qsa-25-36)

Yanac

CVE-2025-52854 | QNAP QTS/QuTS hero prior 5.2.6.3195 Build 20250715 null pointer dereference (qsa-25-36)

Yanac

CVE-2025-52855 | QNAP QTS/QuTS hero prior 5.2.6.3195 Build 20250715 null pointer dereference (qsa-25-36)

Yanac

CVE-2025-52857 | QNAP QTS/QuTS hero prior 5.2.6.3195 Build 20250715 null pointer dereference (qsa-25-36)

Yanac