SecurityWeek1h
Nvidia Riva Vulnerabilities Allow Unauthorized Use of AI Services
Vulnerabilities in Nvidia Riva could allow hackers to abuse speech and translation AI services that are typically expensive.
GitLab patches critical authentication bypass vulnerabilities
GitLab released security updates for Community Edition (CE) and Enterprise Edition (EE), fixing nine vulnerabilities, among ...
Infosecurity Magazine14d
BYOVD Attacks Exploit Zero-Day in Paragon Partition Manager
Threat actors are exploiting a zero-day bug in Paragon Partition Manager's BioNTdrv.sys driver during ransomware attacks ...
CRN9mon
CISA Confirms Windows Privilege Escalation Flaw Has Seen Exploitation
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) confirmed that a Microsoft Windows privilege escalation vulnerability has seen exploitation in attacks. The vulnerability (tracked ...
Hosted on MSN2mon
Microsoft fixes under-attack privilege-escalation holes in Hyper-V
Patch Tuesday The first Patch Tuesday of 2025 has seen Microsoft address three under-attack privilege-escalation flaws in its Hyper-V hypervisor, plus plenty more problems that deserve your ...
The Hacker News13d
Google's March 2025 Android Security Update Fixes Two Actively Exploited Vulnerabilities
Google has released its monthly Android Security Bulletin for March 2025 to address a total of 44 vulnerabilities, including ...
The Hacker News8d
Elastic Releases Urgent Fix for Critical Kibana Vulnerability Enabling Remote Code Execution
Elastic patched a critical Kibana flaw (CVE-2025-25012, CVSS 9.9) enabling arbitrary code execution. Update to version 8.17.3 ...
For March’s Patch Tuesday, 57 fixes — and 7 zero-days
Compared to past months, the number of security fixes released for March is down, but that doesn’t mean IT admins won’t be ...