-
EC2 Grouper Attack
What is the Attack?FortiGuard Labs Threat Team has observed recent attacks by a Threat Actor dubbed “EC2 Grouper” that leverages AWS tools for PowerShell to carry out cloud-based attacks. It leverages APIs to inventory EC2 types and available regions before executing further API calls iteratively. The Threat Actor is seen using techniques that enable remote…
-
libxmp-4.6.1-2.fc41
FEDORA-2025-23e4aeeb91 Packages in this update: libxmp-4.6.1-2.fc41 Update description: Latest upstream release. Changelog: Fixes: CVE-2023-45679: Attempt to free an uninitialized memory pointer in vorbis_deinit() CVE-2023-45680: Null pointer dereference in vorbis_deinit() CVE-2023-45681: Out of bounds heap buffer write CVE-2023-45676: Multi-byte write heap buffer overflow in start_decoder() CVE-2023-45677: Heap buffer out of bounds write in start_decoder() CVE-2023-45682: Wild…
-
libxmp-4.6.1-2.fc40
FEDORA-2025-c58133e520 Packages in this update: libxmp-4.6.1-2.fc40 Update description: Latest upstream release. Changelog: Fixes: CVE-2023-45679: Attempt to free an uninitialized memory pointer in vorbis_deinit() CVE-2023-45680: Null pointer dereference in vorbis_deinit() CVE-2023-45681: Out of bounds heap buffer write CVE-2023-45676: Multi-byte write heap buffer overflow in start_decoder() CVE-2023-45677: Heap buffer out of bounds write in start_decoder() CVE-2023-45682: Wild…
-
xmlrpc-c-1.60.04-2.fc42
FEDORA-2025-a835dd04a0 Packages in this update: xmlrpc-c-1.60.04-2.fc42 Update description: Automatic update for xmlrpc-c-1.60.04-2.fc42. Changelog * Thu Jan 2 2025 Jonathan Wright <jonathan@almalinux.org> – 1.60.4-2 – Use global macro to override make smp_flags * Thu Jan 2 2025 Jonathan Wright <jonathan@almalinux.org> – 1.60.4-1 – update to 1.60.4 rhbz#2334236 – re-enable builds against libxml2, no more bundled libexpat…
-
xmlrpc-c-1.60.04-1.fc42
FEDORA-2025-482675dee5 Packages in this update: xmlrpc-c-1.60.04-1.fc42 Update description: Automatic update for xmlrpc-c-1.60.04-1.fc42. Changelog * Thu Jan 2 2025 Jonathan Wright <jonathan@almalinux.org> – 1.60.4-1 – update to 1.60.4 rhbz#2334236 – re-enable builds against libxml2, no more bundled libexpat – fixes rhbz#2310136 – fixes rhbz#2310146 – fixes rhbz#2310152 * Wed Sep 4 2024 Miroslav Suchý <msuchy@redhat.com> –…
-
Google Is Allowing Device Fingerprinting
Lukasz Olejnik writes about device fingerprinting, and why Google’s policy change to allow it in 2025 is a major privacy setback. Read More
-
Global Campaign Targets PlugX Malware with Innovative Portal
Sekoia’s innovative PlugX malware disinfection campaign removed active threats across ten countries Read More
-
New DoubleClickjacking Attack Bypasses Protections
DoubleClickjacking bypasses X-Frame-Options and SameSite cookies in double-click sequences, exposing UI authentication flaws Read More
-
Fireside chat with Graham Cluley about risks of AI adoption in 2025
Join me, and the experts from Rubrik, on Weds January 15 2025, where we’ll be having a fireside chat with Dark Reading all about the known and unknown risks of adopting AI. Read More
-
HIPAA Rules Update Proposed to Combat Healthcare Data Breaches
The US government has set out proposals to increase security obligations on healthcare providers to protect patient data amid surging cyber-attacks in the sector Read More