January 9, 2025 - Cyber Security News

Multiple vulnerabilities in SonicWall SonicOS could allow a remote attacker to bypass authentication.

Multiple vulnerabilities have been discovered in SonicWall SonicOS that could allow for authentication bypass. SonicOS is SonicWall’s operating system designed for their firewalls and other...

January 9, 2025

Advisories

xen-4.19.1-3.fc41

FEDORA-2025-933a9a977e Packages in this update: xen-4.19.1-3.fc41 Update description: work around debugedit bug to fix aarch64 builds xen-hypervisor %post doesn't load all needed grub2 modules update...

January 9, 2025

Advisories

thunderbird-128.6.0-1.fc40

FEDORA-2025-91031f9df9 Packages in this update: thunderbird-128.6.0-1.fc40 Update description: Update to 128.6.0 https://www.thunderbird.net/en-US/thunderbird/128.6.0esr/releasenotes/ https://www.mozilla.org/en-US/security/advisories/mfsa2025-04/ Read More

January 9, 2025

Advisories

thunderbird-128.6.0-1.fc41

FEDORA-2025-2f5b9ab47b Packages in this update: thunderbird-128.6.0-1.fc41 Update description: Update to 128.6.0 https://www.thunderbird.net/en-US/thunderbird/128.6.0esr/releasenotes/ https://www.mozilla.org/en-US/security/advisories/mfsa2025-04/ Read More

January 9, 2025

News

Smashing Security podcast #399: Honey in hot water, and reset your devices

Ever wonder how those "free" browser extensions that promise to save you money actually work? We dive deep into the controversial world of Honey, the...

January 9, 2025

News

Space Bears ransomware: what you need to know

The Space Bears ransomware gang stands out from the crowd by presenting itself better than many legitimate companies, with corporate stock images and a professional-looking...

January 9, 2025

News

Zero-Day Vulnerability in Ivanti VPN

It’s being actively exploited. Read More

January 9, 2025

News

Fancy Product Designer Plugin Flaws Expose WordPress Sites

Critical Fancy Product Designer plugin flaws risk remote code execution and SQL injection attacks on WordPress sites Read More

January 9, 2025

Advisories

USN-7197-1: Go Networking vulnerability

Guido Vranken discovered that Go Networking handled input to the Parse functions inefficiently. An attacker could possibly use this issue to cause denial of service....

January 9, 2025

News

Japan Faces Prolonged Cyber-Attacks Linked to China’s MirrorFace

Cyber-attacks by China-linked MirrorFace targeted Japan’s national security information in major campaigns operating since 2019 Read More

January 9, 2025

CISA Warns of CrushFTP Vulnerability Exploitation in the Wild

Arguing Against CALEA

Boards Urged to Follow New Cyber Code of Practice

Russian bots hard at work spreading political unrest on Romania’s internet

Malicious Microsoft VS Code Extensions Used in Cryptojacking Campaign

Smishing Triad Fuels Surge in Toll Payment Scams in US, UK

Darknet’s Xanthorox AI Offers Customizable Tools for Hackers

King Bob pleads guilty to Scattered Spider-linked cryptocurrency thefts from investors

DIRNSA Fired

Day: January 9, 2025

Multiple vulnerabilities in SonicWall SonicOS could allow a remote attacker to bypass authentication.

xen-4.19.1-3.fc41

thunderbird-128.6.0-1.fc40

thunderbird-128.6.0-1.fc41

Smashing Security podcast #399: Honey in hot water, and reset your devices

Space Bears ransomware: what you need to know

Zero-Day Vulnerability in Ivanti VPN

Fancy Product Designer Plugin Flaws Expose WordPress Sites

USN-7197-1: Go Networking vulnerability

Japan Faces Prolonged Cyber-Attacks Linked to China’s MirrorFace