Qualcomm Fixes 3 Zero-Days Used in Targeted Android Attacks via Adreno GPU

/in

Qualcomm has shipped security updates to address three zero-day vulnerabilities that it said have been exploited in limited, targeted attacks in the wild.
The flaws in question, which were responsibly disclosed to the company by the Google Android Security team, are listed below –

CVE-2025-21479 and CVE-2025-21480 (CVSS score: 8.6) – Two incorrect authorization vulnerabilities in the Graphics

The Hacker News – ​Read More

Qualcomm Flags Exploitation of Adreno GPU Flaws, Urges OEMs to Patch Urgently

/in

Chipmaker says there are indications from Google Threat Analysis Group that a trio of flaws “may be under limited, targeted exploitation.”

The post Qualcomm Flags Exploitation of Adreno GPU Flaws, Urges OEMs to Patch Urgently appeared first on SecurityWeek.

SecurityWeek – ​Read More

vBulletin Vulnerability Exploited in the Wild

/in

Exploitation of the vBulletin vulnerability tracked as CVE-2025-48827 and CVE-2025-48828 started shortly after disclosure.

The post vBulletin Vulnerability Exploited in the Wild appeared first on SecurityWeek.

SecurityWeek – ​Read More

Maximize Your Minecraft: Optimal PC Setup and Server Hosting Essentials

/in

Among all ages, Minecraft still rules the gaming scene as a preferred choice. The game provides a broad…

Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – ​Read More

Iranian Robbinhood Ransomware Operator Pleads Guilty in US City Attacks

/in

Iranian Robbinhood ransomware operator pleads guilty to major US city attacks, crippling services in Baltimore, Greenville, and more since 2019.

Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – ​Read More

The Secret Defense Strategy of Four Critical Industries Combating Advanced Cyber Threats

/in

The evolution of cyber threats has forced organizations across all industries to rethink their security strategies. As attackers become more sophisticated — leveraging encryption, living-off-the-land techniques, and lateral movement to evade traditional defenses — security teams are finding more threats wreaking havoc before they can be detected. Even after an attack has been identified, it can

The Hacker News – ​Read More

Alleged Conti, TrickBot Gang Leader Unmasked

/in

Russian national Vitaly Nikolaevich Kovalev is believed to be the leader of the Conti and TrickBot cybercrime groups.

The post Alleged Conti, TrickBot Gang Leader Unmasked appeared first on SecurityWeek.

SecurityWeek – ​Read More

Chrome to Distrust Chunghwa Telecom and Netlock Certificates

/in

Patterns of concerning behavior led Google to remove trust in certificates from Chunghwa Telecom and Netlock from Chrome.

The post Chrome to Distrust Chunghwa Telecom and Netlock Certificates appeared first on SecurityWeek.

SecurityWeek – ​Read More

Backdoors in Python and NPM Packages Target Windows and Linux

/in

Checkmarx uncovers cross-ecosystem attack: fake Python and NPM packages plant backdoor on Windows and Linux, enabling data theft plus remote control.

Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – ​Read More

Technical Details Published for Critical Cisco IOS XE Vulnerability

/in

The critical flaw, tracked as CVE-2025-20188 (CVSS score of 10/10), allows attackers to execute arbitrary code remotely.

The post Technical Details Published for Critical Cisco IOS XE Vulnerability appeared first on SecurityWeek.

SecurityWeek – ​Read More