USN-7353-1: PlantUML vulnerability
Tobias S. Fink discovered that PlantUML was susceptible to cross-site scripting attacks (XSS) in instances where SVG images were rendered. An attacker could possibly use...
USN-7352-1: FreeType vulnerability
It was discovered that FreeType incorrectly handled certain memory operations when parsing font subglyph structures. A remote attacker could use this issue to cause FreeType...
£1M Lost as UK Social Media and Email Account Hacks Skyrocket
Action Fraud reported a spike in social media and email account hacks in 2024, resulting in losses of nearly £1m Read More
Security Database Aims to Empower Non-Profits
Common Good Cyber has released a new mapping database designed to help NGOs find the security tools they need Read More
Tj-actions Supply Chain Attack Exposes 23,000 Organizations
Researchers warn that popular open source software package tj-actions has been compromised Read More
Free file converter malware scam “rampant” claims FBI
Whether you're downloading a video from YouTube or converting a Word document into a PDF file, there's a chance that you might be unwittingly handing...
Borked Chromecasts are beginning to receive their update – just hope you didn’t do a factory reset
The news can't have come too soon for the many Chromecast users who have found themselves unable to stream their favourite TV shows, movies, and...
USN-7299-4: X.Org X Server regression
USN-7299-2 fix vulnerabilities in X.Org X Server. This fix caused a regression in Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. This update fix the regression...
ZDI-25-146: (0Day) NI FlexLogger usiReg URI File Parsing Directory Traversal Remote Code Execution Vulnerability
This vulnerability allows remote attackers to create arbitrary files on affected installations of NI FlexLogger. User interaction is required to exploit this vulnerability in that...
ZDI-25-147: (0Day) NI Vision Builder AI VBAI File Processing Missing Warning Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of NI Vision Builder AI. User interaction is required to exploit this vulnerability...
