Recent news in security

SUSE: webkit2gtk3 Important Security Update for Threats 2025:4416-1
Security Vulns 

SUSE: webkit2gtk3 Important Security Update for Threats 2025:4416-1

Yanac

An update that solves 18 vulnerabilities can now be installed.LinuxSecurity – Security AdvisoriesRead More

Debian 11: DLA-4413-1 node-url-parse Critical Authorization Bypass Fix
Security Vulns 

Debian 11: DLA-4413-1 node-url-parse Critical Authorization Bypass Fix

Yanac

It was found that in node-url-parse, a Node.js module used to parse URLs, an incorrect conversion of `@` characters in

Ubuntu 20.04 LTS: Linux-azure-fips Critical VMSCAPE Exposure CVE-2025-40300
Security Vulns 

Ubuntu 20.04 LTS: Linux-azure-fips Critical VMSCAPE Exposure CVE-2025-40300

Yanac

Several security issues were fixed in the Linux kernel.LinuxSecurity – Security AdvisoriesRead More

Vendor

CERTs

Vulnerabilities

Stay Secure: Why Cyber Hygiene Should Be Part of Your Personal Hygiene 

Stay Secure: Why Cyber Hygiene Should Be Part of Your Personal Hygiene 

Yanac

A look at an Android ITW DNG exploit 

Yanac

Windows Exploitation Techniques: Winning Race Conditions with Path Lookups 

Yanac

Thinking Outside The Box [dusted off draft from 2017] 

Yanac

Welcome to the new Project Zero Blog 

Yanac
Cybereason Nails 2025 MITRE ATT&CK® Enterprise Evaluation 

Cybereason Nails 2025 MITRE ATT&CK® Enterprise Evaluation 

Yanac
Introducing Cisco’s integrated AI Security and Safety Framework: The new baseline for AI security 

Introducing Cisco’s integrated AI Security and Safety Framework: The new baseline for AI security 

Yanac
Phishing in Telegram Mini Apps: how to avoid taking the bait | Kaspersky official blog 

Phishing in Telegram Mini Apps: how to avoid taking the bait | Kaspersky official blog 

Yanac
Say hello to Nextron’s RuneAI 

Say hello to Nextron’s RuneAI 

Yanac

KPop Malware Hunters: 2025’s takedowns 

Yanac

Podatność w oprogramowaniu routerów SDMC NE6037

Yanac

Vulnerability in Simple SA Wirtualna Uczelnia software

Yanac

Podatność w oprogramowaniu Simple SA Wirtualna Uczelnia

Yanac

It’s time for all small businesses to act

Yanac

What makes a responsible cyber actor: introducing the Pall Mall industry consultation on good practice

Yanac

Vulnerability in OpenSolution QuickCMS software

Yanac

Podatność w oprogramowaniu OpenSolution QuickCMS

Yanac

AI-Powered Memory Safety with the Pointer Ownership Model

Yanac

Radio-Frequency Attacks: Securing the OSI Stack

Yanac

Vulnerability in NetBird VPN software

Yanac
SUSE: webkit2gtk3 Important Security Update for Threats 2025:4416-1

SUSE: webkit2gtk3 Important Security Update for Threats 2025:4416-1

Yanac
Debian 11: DLA-4413-1 node-url-parse Critical Authorization Bypass Fix

Debian 11: DLA-4413-1 node-url-parse Critical Authorization Bypass Fix

Yanac
Ubuntu 20.04 LTS: Linux-azure-fips Critical VMSCAPE Exposure CVE-2025-40300

Ubuntu 20.04 LTS: Linux-azure-fips Critical VMSCAPE Exposure CVE-2025-40300

Yanac
openSUSE: QEMU Moderate Vulnerability Fix 2025:15821-1 for CVE-2025-11234

openSUSE: QEMU Moderate Vulnerability Fix 2025:15821-1 for CVE-2025-11234

Yanac
openSUSE Tumbleweed: strongswan Moderate CVE-2025-9615 Advisory

openSUSE Tumbleweed: strongswan Moderate CVE-2025-9615 Advisory

Yanac
Ubuntu 20.04: Linux-Azure Critical Info Leak CVE-2025-40300 USN-7939-1

Ubuntu 20.04: Linux-Azure Critical Info Leak CVE-2025-40300 USN-7939-1

Yanac
Ubuntu 20.04 LTS: Important Security Update USN-7939-1 for CVE-2025-40300

Ubuntu 20.04 LTS: Important Security Update USN-7939-1 for CVE-2025-40300

Yanac

CVE-2025-46294 | Claris FileMaker Server up to 22.0.3 IIS Short Filename Enumeration information disclosure

Yanac

CVE-2025-68146 | tox-dev filelock up to 3.20.0 on Python UnixFileLock/WindowsFileLock os.open toctou (GHSA-w853-jp5j-5j7f)

Yanac

CVE-2025-68142 | facelessuser pymdown-extensions up to 10.16.0 pymdownx.blocks.caption redos (GHSA-r6h4-mm7h-8pmq)

Yanac