New Linux Flaws Allow Password Hash Theft via Core Dumps in Ubuntu, RHEL, Fedora

/in

Two information disclosure flaws have been identified in apport and systemd-coredump, the core dump handlers in Ubuntu, Red Hat Enterprise Linux, and Fedora, according to the Qualys Threat Research Unit (TRU).
Tracked as CVE-2025-5054 and CVE-2025-4598, both vulnerabilities are race condition bugs that could enable a local attacker to obtain access to access sensitive information. Tools like

The Hacker News – ​Read More

U.S. DoJ Seizes 4 Domains Supporting Cybercrime Crypting Services in Global Operation

/in

A multinational law enforcement operation has resulted in the takedown of an online cybercrime syndicate that offered services to threat actors to ensure that their malicious software stayed undetected from security software.
To that effect, the U.S. Department of Justice (DoJ) said it seized four domains and their associated server facilitated the crypting service on May 27, 2025, in

The Hacker News – ​Read More

‘Earth Lamia’ Exploits Known SQL, RCE Bugs Across Asia

/in

A “highly active” Chinese threat group is taking proverbial candy from babies, exploiting known bugs in exposed servers to steal data from organizations in sensitive sectors.

darkreading – ​Read More

FBI Warns of Filipino Tech Company Running Sprawling Crypto Scams

/in

The US Treasury said cryptocurrency investment schemes like the ones facilitated by Funnull Technology Inc. have cost Americans billions of dollars annually.

darkreading – ​Read More

A Hacker May Have Deepfaked Trump’s Chief of Staff in a Phishing Campaign

/in

Plus: An Iranian man pleads guilty to a Baltimore ransomware attack, Russia’s nuclear blueprints get leaked, a Texas sheriff uses license plate readers to track a woman who got an abortion, and more.

Security Latest – ​Read More

Hospitals in Maine, New Hampshire limit services after cyberattack on Catholic health org

/in

Three hospitals run by Catholic healthcare organization Covenant Health are dealing with a cyberattack that forced the facilities to shut off all access to data systems.

The Record from Recorded Future News – ​Read More

Senators call on Trump admin to reinstate cyber review board for Salt Typhoon investigation

/in

Several Senate Democrats called on Homeland Security Secretary Kristi Noem to reestablish the Cyber Safety Review Board (CSRB) so it could continue looking into China-linked hacks.

The Record from Recorded Future News – ​Read More

White House investigating how Trump’s chief of staff’s phone was hacked

/in

Hackers reportedly accessed Wiles’ phone contacts, which were used to impersonate her.

Security News | TechCrunch – ​Read More

Is T-Mobile secretly recording your phone’s screen? How to check and turn it off

/in

A new feature has customers worried, but T-Mobile says it’s meant to be helpful. Either way, you can disable it. Here’s how.

Latest stories for ZDNET in Security – ​Read More

US Sanctions Philippine Company for Supporting Crypto Scams

/in

The US Treasury Department US has slapped sanctions on Funnull Technology for providing support to cryptocurrency investment scams.

The post US Sanctions Philippine Company for Supporting Crypto Scams appeared first on SecurityWeek.

SecurityWeek – ​Read More