Android Update Patches FreeType Vulnerability Exploited as Zero-Day

/in

Android’s May 2025 security update includes patches for an exploited vulnerability in the FreeType open source rendering engine.

The post Android Update Patches FreeType Vulnerability Exploited as Zero-Day appeared first on SecurityWeek.

SecurityWeek – ​Read More

Google Fixes Actively Exploited Android System Flaw in May 2025 Security Update

/in

Google has released its monthly security updates for Android with fixes for 46 security flaws, including one vulnerability that it said has been exploited in the wild.
The vulnerability in question is CVE-2025-27363 (CVSS score: 8.1), a high-severity flaw in the System component that could lead to local code execution without requiring any additional execution privileges.
“The most severe of

The Hacker News – ​Read More

Critical Langflow Flaw Added to CISA KEV List Amid Ongoing Exploitation Evidence

/in

A recently disclosed critical security flaw impacting the open-source Langflow platform has been added to the Known Exploited Vulnerabilities (KEV) catalog by the U.S. Cybersecurity and Infrastructure Security Agency (CISA), citing evidence of active exploitation.
The vulnerability, tracked as CVE-2025-3248, carries a CVSS score of 9.8 out of a maximum of 10.0.
“Langflow contains a missing

The Hacker News – ​Read More

Meta, Cisco put open-source LLMs at the core of next-gen SOC workflows

/in

RSAC 2025: Cisco and Meta put open-source AI at the heart of enterprise threat defense

Cisco’s Foundation-sec-8B LLM & Meta’s AI Defenders redefine cybersecurity with open-source AI for scalable SOCs.Read More

Security News | VentureBeat – ​Read More

Chat App Used by Trump Admin Suspends Operation Amid Hack

/in

TM SGNL, a chat app by US-Israeli firm TeleMessage used by Trump officials, halts operations after a breach…

Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – ​Read More

AI Domination: RSAC 2025 Social Media Roundup

/in

Documented in a series of social media posts, cybersecurity experts shared with Dark Reading their insights on RSAC 2025 throughout the week.

darkreading – ​Read More

Signal Clone Used by Mike Waltz Pauses Service After Reports It Got Hacked

/in

The communications app TeleMessage, which was spotted on former US national security adviser Mike Waltz’s phone, has suspended “all services” as it investigates reports of at least one breach.

Security Latest – ​Read More

Peru denies it was hit by ransomware attack following Rhysida claims

/in

The prolific ransomware gang claimed to have taken over the Peruvian government’s domain.

The Record from Recorded Future News – ​Read More

Phony Hacktivist Pleads Guilty to Disney Data Leak

/in

After stealing sensitive data from Disney, Ryan Mitchell Kramer claimed to be part of a Russian hacktivist group protecting artists’ rights and ensuring they receive fair compensation for their work.

darkreading – ​Read More

Hackers launch ‘serious’ attacks against Georgia school district, New Mexico university

/in

Multiple school districts and a university in New Mexico are suffering from cyberattacks wreaking havoc as the end of the school year approaches.

The Record from Recorded Future News – ​Read More