Google has fixed a high-severity Chrome zero-day vulnerability exploited to escape the browser’s sandbox and deploy malware in espionage attacks targeting Russian organizations. […] Go to Source Author: Sergiu Gatlan
Author Archives: Onsite Computing, Inc.
Google has released out-of-band fixes to address a high-severity security flaw in its Chrome browser for Windows that it said has been exploited in the wild as part of attacks targeting organizations in Russia. The vulnerability, tracked as CVE-2025-2783, has been described as a case of “incorrect handle provided in unspecified circumstances in Mojo on […]
Broadcom has issued security patches to address a high-severity security flaw in VMware Tools for Windows that could lead to an authentication bypass. Tracked as CVE-2025-22230, the vulnerability is rated 7.8 on the ten-point Common Vulnerability Scoring System (CVSS). “VMware Tools for Windows contains an authentication bypass vulnerability due to improper access control,” Broadcom said […]
CrushFTP warned customers of an unauthenticated HTTP(S) port access vulnerability and urged them to patch their servers immediately. […] Go to Source Author: Sergiu Gatlan
Experts say the leakage of US military plans to a reporter this month reflects a severe operational security failure on the part of US leadership. Go to Source Author: Alexander Culafi, Senior News Writer, Dark Reading
The company reports that no sensitive information was breached or stolen in the cyber intrusion and that its operations are running normally again. Go to Source Author: Kristina Beek, Associate Editor, Dark Reading
Cloudflare has announced that its R2 object storage and dependent services experienced an outage lasting 1 hour and 7 minutes, causing 100% write and 35% read failures globally. […] Go to Source Author: Bill Toulas
Broadcom released security updates today to fix a high-severity authentication bypass vulnerability in VMware Tools for Windows. […] Go to Source Author: Sergiu Gatlan
Free unofficial patches are available for a new Windows zero-day vulnerability that can let remote attackers steal NTLM credentials by tricking targets into viewing malicious files in Windows Explorer. […] Go to Source Author: Sergiu Gatlan
Though there is no confirmation as to when this extradition will occur, Alexander Moucka agreed to be transferred in writing before a judge. Go to Source Author: Kristina Beek, Associate Editor, Dark Reading