SecurityWeek

New Paper and Tool Help Security Teams Move Beyond Blind Reliance on CISA’s KEV Catalog

The cybersecurity of business is not the function of CISA. CISA’s remit is to raise the security of FECB agencies, and KEV is ...
PCQuest

One command, full recon: Why AutoPentestX matters for Linux pentesters

AutoPentestX is an open-source Linux penetration testing toolkit that automates scanning, CVE mapping, and reporting without unsafe exploitation.
Security Boulevard

AI-powered penetration testing: Definition, Tools and Process

AI-powered penetration testing is an advanced approach to security testing that uses artificial intelligence, machine learning, and autonomous agents to simulate real-world cyberattacks, identify ...
Dark Reading

Attackers Exploit Zero-Day in End-of-Life D-Link Routers

Attackers are actively exploiting a zero-day vulnerability in multiple discontinued D-Link DSL gateway devices to execute arbitrary shell commands on affected products. Most of the gateways under ...
PC Gamer

Action RPG players will exploit anything in the name of efficiency, which is why Path of Exile 2 players are locking themselves in the campaign for profit

Third Person Shooter I wish I wasn't missing out on new quests in Arc Raiders just because I'm not willing to grind the old ones every two months Third Person Shooter There's a huge Arc Raiders ...
CSOonline

Hackers exploit Microsoft OAuth device codes to hijack enterprise accounts

Cybercriminals and state-sponsored hackers are increasingly exploiting Microsoft’s legitimate OAuth 2.0 device authorization process to hijack enterprise accounts, bypassing multifactor authentication ...
Infosecurity-magazine.com

React2Shell Exploit Campaigns Tied to North Korean Cyber Intrusion Tactics

Security researchers at Sysdig have observed new campaigns exploiting React2Shell which appear to have the hallmarks of North Korean hackers. React2Shell is a remote code execution vulnerability in ...
GameSpot

Battlefield 6 And Redsec 1.1.1.5 Update Patches Out An Infamous Exploit

GameSpot may get a commission from retail offers. Battlefield 6 and the battle royale game Redsec are getting a new update on November 11, featuring a number of quality-of-life updates and bug fixes.
CoinDesk

Balancer Hit by Apparent Exploit as $110M in Crypto Moves to New Wallets

Balancer, a decentralized finance (DeFi) protocol with over $750 million in value locked, appears to have been hit by its biggest exploit yet, with on-chain data showing upward of $110 million in ...
Infosecurity-magazine.com

New Rootkit Campaign Exploits Cisco SNMP Flaw to Gain Persistence

A campaign that exploited a Cisco Simple Network Management Protocol vulnerability to install Linux rootkits on exposed network devices has been observed. The exploit, tracked as CVE-2025-20352 and ...
The Escapist

Unity Engine exploit dating from 2017 sparks emergency patches across gaming industry

A major security vulnerability affecting Unity engine versions dating back to 2017 has triggered emergency patches across the gaming industry on October 3, with both indie and AAA developers rushing ...