New Secure Boot flaw lets attackers install bootkit malware, patch now June 10, 2025 Security researchers have disclosed a new Secure Boot bypass tracked as CVE-2025-3052 that can be used to turn off security
ConnectWise rotating code signing certificates over security concerns June 10, 2025 ConnectWise is warning customers that it is rotating the digital code signing certificates used to sign ScreenConnect, ConnectWise Automate, and
DanaBot malware operators exposed via C2 bug added in 2022 June 10, 2025 A vulnerability in the DanaBot malware operation introduced in June 2022 update led to the identification, indictment, and dismantling of their
Texas Dept. of Transportation breached, 300k crash records stolen June 10, 2025 The Texas Department of Transportation (TxDOT) is warning that it suffered a data breach after a threat actor downloaded 300,000
Microsoft Outlook to block more risky attachments used in attacks June 10, 2025 Microsoft announced it will expand the list of blocked attachments in Outlook Web and the new Outlook for Windows starting
Windows 11 KB5060842 and KB5060999 cumulative updates released June 10, 2025 Microsoft has released Windows 11 KB5060842 and KB5060999 cumulative updates for versions 24H2 and 23H2 to fix security vulnerabilities and issues, including 66 flaws. Today’s
Google patched bug leaking phone numbers tied to accounts June 10, 2025 A vulnerability allowed researchers to brute-force any Google account’s recovery phone number simply by knowing a their profile name and an
Over 84,000 Roundcube instances vulnerable to actively exploited flaw June 10, 2025 Over 84,000 Roundcube webmail installations are vulnerable to CVE-2025-49113, a critical remote code execution (RCE) flaw with a public exploit.
Stolen Ticketmaster data from Snowflake attacks briefly for sale again June 10, 2025 The Arkana Security extortion gang briefly listed over the weekend what appeared to be newly stolen Ticketmaster data but is