Veganism Social

Bobbys BytesAttention Linux users! Critical vulnerabilities (CVE-2025-32462, CVE-2025-32463) in the Sudo command-line utility could allow local users to gain root access. Make sure your systems are updated to Sudo version 1.9.17p1 immediately! <a href="https://mastodon.social/tags/LinuxSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#LinuxSecurity</a> <a href="https://mastodon.social/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cybersecurity</a> <a href="https://mastodon.social/tags/Sudo" class="mention hashtag" rel="nofollow noopener" target="_blank">#Sudo</a> <a href="https://mastodon.social/tags/PatchNow" class="mention hashtag" rel="nofollow noopener" target="_blank">#PatchNow</a> <a href="https://mastodon.social/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfoSec</a>

Boston Managed IT🚨 URGENT: SharePoint Vulnerability Actively Exploited 🚨 If your business is running SharePoint Server on-prem, you're at real risk. CVE-2025-53770 is being exploited in the wild — attackers can run code without credentials.📖 Read the full breakdown → 👉 <a href="https://zurl.co/duWOv" rel="nofollow noopener" translate="no" target="_blank">https://zurl.co/duWOv</a><a href="https://mastodon.social/tags/SharePoint" class="mention hashtag" rel="nofollow noopener" target="_blank">#SharePoint</a> <a href="https://mastodon.social/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://mastodon.social/tags/CVE202553770" class="mention hashtag" rel="nofollow noopener" target="_blank">#CVE202553770</a> <a href="https://mastodon.social/tags/BostonManagedIT" class="mention hashtag" rel="nofollow noopener" target="_blank">#BostonManagedIT</a> <a href="https://mastodon.social/tags/MSP" class="mention hashtag" rel="nofollow noopener" target="_blank">#MSP</a> <a href="https://mastodon.social/tags/PatchNow" class="mention hashtag" rel="nofollow noopener" target="_blank">#PatchNow</a> <a href="https://mastodon.social/tags/ITSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#ITSecurity</a> <a href="https://mastodon.social/tags/SmallBusinessIT" class="mention hashtag" rel="nofollow noopener" target="_blank">#SmallBusinessIT</a> <a href="https://mastodon.social/tags/CISAAlert" class="mention hashtag" rel="nofollow noopener" target="_blank">#CISAAlert</a> <a href="https://mastodon.social/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#Microsoft</a>

nemo™ 🇺🇦FortiWeb-Admins aufgepasst! 🚨 Für die kritische <a href="https://mas.to/tags/Sicherheitsl%C3%BCcke" class="mention hashtag" rel="nofollow noopener" target="_blank">#Sicherheitslücke</a> (CVE-2025-25257, CVSS 9.6) steht jetzt ein Exploit bereit – Angreifer können ohne Login SQL-Injection & Codeausführung erreichen. Jetzt dringend patchen! 🔒 Mehr Infos: <a href="https://www.heise.de/news/Exploit-verfuegbar-FortiWeb-Sicherheitsluecke-jetzt-patchen-10485654.html" rel="nofollow noopener" translate="no" target="_blank">https://www.heise.de/news/Exploit-verfuegbar-FortiWeb-Sicherheitsluecke-jetzt-patchen-10485654.html</a> <a href="https://mas.to/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cybersecurity</a> <a href="https://mas.to/tags/Fortinet" class="mention hashtag" rel="nofollow noopener" target="_blank">#Fortinet</a> <a href="https://mas.to/tags/PatchNow" class="mention hashtag" rel="nofollow noopener" target="_blank">#PatchNow</a> <a href="https://mas.to/tags/newz" class="mention hashtag" rel="nofollow noopener" target="_blank">#newz</a>Kurzlink: <a href="https://heise.de/-10485654" rel="nofollow noopener" translate="no" target="_blank">https://heise.de/-10485654</a>

BillIf you got any Windows server 0days, now is the time.<a href="https://www.bleepingcomputer.com/news/microsoft/microsoft-confirms-windows-server-update-services-wsus-sync-is-broken/" rel="nofollow noopener" translate="no" target="_blank">https://www.bleepingcomputer.com/news/microsoft/microsoft-confirms-windows-server-update-services-wsus-sync-is-broken/</a><a href="https://infosec.exchange/tags/windows" class="mention hashtag" rel="nofollow noopener" target="_blank">#windows</a> <a href="https://infosec.exchange/tags/patchnow" class="mention hashtag" rel="nofollow noopener" target="_blank">#patchnow</a>

Brian Greenberg :verified:🚨 Major zero-day alert: A vulnerability is being actively exploited in AMI’s MegaRAC BMC software, potentially impacting thousands of servers across AMD, ARM, Supermicro, and more. 🧠 Redfish interface flaw enables full root access 🔓 Attackers can bypass authentication entirely 🖥️ Supply chain vendors affected 🌐 BMCs exposed to the internet = catastrophic risk 📆 CISA deadline for mitigation: July 16This isn’t theoretical. Exploitation is happening now. If you haven’t patched and locked down your out-of-band server management, you’re leaving the door wide open.💬 Is your team treating BMCs as a core part of your threat surface?<a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://infosec.exchange/tags/ZeroDay" class="mention hashtag" rel="nofollow noopener" target="_blank">#ZeroDay</a> <a href="https://infosec.exchange/tags/VulnerabilityManagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#VulnerabilityManagement</a> <a href="https://infosec.exchange/tags/CISO" class="mention hashtag" rel="nofollow noopener" target="_blank">#CISO</a> <a href="https://infosec.exchange/tags/PatchNow" class="mention hashtag" rel="nofollow noopener" target="_blank">#PatchNow</a> <a href="https://arstechnica.com/security/2025/06/active-exploitation-of-ami-management-tool-imperils-thousands-of-servers/" rel="nofollow noopener" translate="no" target="_blank">https://arstechnica.com/security/2025/06/active-exploitation-of-ami-management-tool-imperils-thousands-of-servers/</a>

LMG SecurityHundreds of Brother printer models are affected by a critical, unpatchable vulnerability (CVE-2024-51978) that allows attackers to generate the default admin password using the device’s serial number—information that’s easily discoverable via other flaws.748 total models across Brother, Fujifilm, Ricoh, Toshiba, and Konica Minolta are impacted, with millions of devices at risk globally.Attackers can: • Gain unauthenticated admin access • Pivot to full remote code execution • Exfiltrate credentials for LDAP, FTP, and more • Move laterally through your networkBrother says the vulnerability cannot be fixed in firmware and requires a change in manufacturing. For now, mitigation = change the default admin password immediately.Our pentest team regularly highlights printer security as a critical path to system compromise—and today’s news is another example that underscores this risk. This is your reminder: Printers are not “set-and-forget” devices. Treat them like any other endpoint—monitor, patch, and lock them down.Need help testing your network for exploitable print devices? Contact us and our pentest team can help!Read the Dark Reading article for more details on the Brother Printers vulnerability: <a href="https://www.darkreading.com/endpoint-security/millions-brother-printers-critical-unpatchable-bug" rel="nofollow noopener" translate="no" target="_blank">https://www.darkreading.com/endpoint-security/millions-brother-printers-critical-unpatchable-bug</a><a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://infosec.exchange/tags/PenetrationTesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#PenetrationTesting</a> <a href="https://infosec.exchange/tags/Pentest" class="mention hashtag" rel="nofollow noopener" target="_blank">#Pentest</a> <a href="https://infosec.exchange/tags/Pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#Pentesting</a> <a href="https://infosec.exchange/tags/PrinterSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#PrinterSecurity</a> <a href="https://infosec.exchange/tags/BrotherPrinters" class="mention hashtag" rel="nofollow noopener" target="_blank">#BrotherPrinters</a> <a href="https://infosec.exchange/tags/CVE202451978" class="mention hashtag" rel="nofollow noopener" target="_blank">#CVE202451978</a> <a href="https://infosec.exchange/tags/Infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#Infosec</a> <a href="https://infosec.exchange/tags/IT" class="mention hashtag" rel="nofollow noopener" target="_blank">#IT</a> <a href="https://infosec.exchange/tags/SMB" class="mention hashtag" rel="nofollow noopener" target="_blank">#SMB</a> <a href="https://infosec.exchange/tags/CISO" class="mention hashtag" rel="nofollow noopener" target="_blank">#CISO</a> <a href="https://infosec.exchange/tags/Cyberaware" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cyberaware</a> <a href="https://infosec.exchange/tags/DFIR" class="mention hashtag" rel="nofollow noopener" target="_blank">#DFIR</a> <a href="https://infosec.exchange/tags/ITSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#ITSecurity</a> <a href="https://infosec.exchange/tags/ZeroTrust" class="mention hashtag" rel="nofollow noopener" target="_blank">#ZeroTrust</a> <a href="https://infosec.exchange/tags/PatchNow" class="mention hashtag" rel="nofollow noopener" target="_blank">#PatchNow</a> <a href="https://infosec.exchange/tags/Pentest" class="mention hashtag" rel="nofollow noopener" target="_blank">#Pentest</a>

nemo™ 🇺🇦🚨 Firefox just patched 2 critical zero-days exploited at <a href="https://mas.to/tags/Pwn2Own" class="mention hashtag" rel="nofollow noopener" target="_blank">#Pwn2Own</a> Berlin! 🦊💻 Hackers earned $100K for finding flaws that could expose sensitive data or enable code execution. Users are urged to update ASAP for protection! 🔒 Read more: <a href="https://thehackernews.com/2025/05/firefox-patches-2-zero-days-exploited.html" rel="nofollow noopener" translate="no" target="_blank">https://thehackernews.com/2025/05/firefox-patches-2-zero-days-exploited.html</a> <a href="https://mas.to/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://mas.to/tags/ZeroDay" class="mention hashtag" rel="nofollow noopener" target="_blank">#ZeroDay</a> <a href="https://mas.to/tags/Firefox" class="mention hashtag" rel="nofollow noopener" target="_blank">#Firefox</a> <a href="https://mas.to/tags/PatchNow" class="mention hashtag" rel="nofollow noopener" target="_blank">#PatchNow</a> <a href="https://mas.to/tags/newz" class="mention hashtag" rel="nofollow noopener" target="_blank">#newz</a>

Recent searches

Search options

Administered by:

Server stats:

#PatchNOW