July 05, 2025
July 05, 2025 Hash 18eebfa9d3fcb086b44db016fecd801b7 2c4f480797d490445b330c449e74c71e3 32de15c32969a2ed94599a9753ee75d23 URL 1http[:]//bafybeiese3bgyfewt2r3dxvgups2blc3rwh2utvidirxgxq527mhcv3ydy[.]ipfs[.]nftstorage[.]link/ 2http[:]//fate-foregoing-farmhouse[.]glitch[.]me/ 3http[:]//failedfrustratingthesis[.]com/ IP 1162[.]43[.]88[.]88 2178[.]204[.]110[.]158 3103[.]174[.]9[.]66...
GitLab Product Security Update Advisory
Overview We have released security updates to fix vulnerabilities in GitLab products. Users of affected products are advised to update to the latest version. Affected Products CVE-2025-0673 GitLab CE/EE Versions: 17.7 and later but not earlier than 17.10.8GitLab CE/EE Versions: 17.11 and later but not earlier
Sudo Security Update Advisory (CVE-2025-32463)
Overview we have released a security update that addresses a vulnerability in sudo. Users of affected products are advised to update to the latest version. Affected Products CVE-2025-32463 Sudo Versions: 1.9.14 and above and 1.9.17p1 and below Resolved Vulnerabilities Root privilege escalation vulnerability
July 04, 2025
July 04, 2025 Hash 145bf035f15dec591871526312a88c703 296a3ecdd3e195998a31ebef46dd9aa94 3030d5d038b3223a98c8ee0cebf030e05 URL 1http[:]//tronstar[.]top/ 2https[:]//paardenwijzer[.]com/ 3https[:]//kevinmbuck[.]com/ IP 1103[.]189[.]235[.]159 246[.]101[.]1[.]225 3165[.]154[.]36[.]71...
Mobile Security & Malware Issue 1st Week of July, 2025
ASEC Blog publishes “Mobile Security & Malware Issue 1st Week of July, 2025”
Atlassian Product Security Update Advisory (CVE-2025-22157)
Overview We have released security updates to fix vulnerabilities in Atlassian products. Users of affected products are advised to update to the latest version. Affected Products CVE-2025-22157 Jira Data Center and Server versions: 10.5.0 and later and 10.5.1 and earlierJira Data Center and Server versions: 10.4.0
MCP Inspector Security Update Advisory (CVE-2025-49596)
Overview We have released a security update to address a vulnerability in MCP Inspector. Affected product users are advised to update to the latest version. Affected Products CVE-2025-49596 MCP Inspector Version: 0.14.1 and earlier Resolved Vulnerabilities Remote code execution vulnerability due to lack
Apache Tomcat July Vulnerability Security Update Advisory
Overview Apache Tomcat(https://tomcat.apache.org/) has released a security update that addresses a vulnerability in its shipped products. Users of affected products are advised to update to the latest version. Affected Products Apache Tomcat 9.0.0.M1 – 9.0.106 Resolved Vulnerabilities Denial of Service Attack Vulnerability in Apache Tomcat
XwormRAT Being Distributed Using Steganography
AhnLab SEcurity intelligence Center (ASEC) collects information on malware distributed through phishing emails by using its own “email honeypot system.” Based on this information, ASEC publishes the “Phishing Email Trend Report” and “Infostealer Trend Report” on the ASEC Blog every month. Recently, XwormRAT has been confirmed to be distributed using
Microsoft Edge browser (138.0.3351.65) version security update advisory
Overview Microsoft(https://www.microsoft.com) has released a security update that fixes vulnerabilities in products it has supplied. Users of affected products are advised to update to the latest version. Affected Products Microsoft Edge (Chromium-based) 138.0.7204.96/.97 and earlier Microsoft Edge 138.0.3351.65 and earlier Resolved Vulnerabilities One vulnerability with
