Authenticated attackers can exploit the security flaw to trigger a use-after-free and potentially execute arbitrary code.
The post Critical Vulnerability Puts 60,000 Redis Servers at Risk of Exploitation appeared first on SecurityWeek.
Category Added in a WPeMatico Campaign
Discord Says User Information Stolen in Third-Party Data Breach
Names, usernames, email addresses, contact information, IP addresses, and billing information was compromised.
The post Discord Says User Information Stolen in Third-Party Data Breach appeared first on SecurityWeek.
Microsoft and Steam Take Action as Unity Vulnerability Puts Games at Risk
The flaw could lead to local code execution, allowing attackers to access confidential information on devices running Unity-built applications.
The post Microsoft and Steam Take Action as Unity Vulnerability Puts Games at Risk appeared first on SecurityWeek.
Hackers Extorting Salesforce After Stealing Data From Dozens of Customers
Salesforce says the extortion attempts are related to past or unsubstantiated incidents, and not to fresh intrusions.
The post Hackers Extorting Salesforce After Stealing Data From Dozens of Customers appeared first on SecurityWeek.
Data Breach at Doctors Imaging Group Impacts 171,000 People
Doctors Imaging Group is informing customers about a cybersecurity incident nearly a year after it occurred.
The post Data Breach at Doctors Imaging Group Impacts 171,000 People appeared first on SecurityWeek.
$4.5 Million Offered in New Cloud Hacking Competition
Wiz has teamed up with Microsoft, Google and AWS and is inviting cloud security researchers to its Zeroday.Cloud competition.
The post $4.5 Million Offered in New Cloud Hacking Competition appeared first on SecurityWeek.
Beer Giant Asahi Says Data Stolen in Ransomware Attack
The brewing giant has reverted to manual order processing and shipment as operations at its Japanese subsidiaries are disrupted.
The post Beer Giant Asahi Says Data Stolen in Ransomware Attack appeared first on SecurityWeek.
Oracle E-Business Suite Zero-Day Exploited in Cl0p Attacks
Oracle has informed customers that it has patched a critical remote code execution vulnerability tracked as CVE-2025-61882.
The post Oracle E-Business Suite Zero-Day Exploited in Cl0p Attacks appeared first on SecurityWeek.
In Other News: PQC Adoption, New Android Spyware, FEMA Data Breach
Other noteworthy stories that might have slipped under the radar: cybercriminals offer money to BBC journalist, LinkedIn user data will train AI, Tile tracker vulnerabilities.
The post In Other News: PQC Adoption, New Android Spyware, FEMA Data Breach appeared first on SecurityWeek.
Oneleet Raises $33 Million for Security Compliance Platform
The cybersecurity startup will expand its engineering team, add more AI capabilities, and invest in go-to-market efforts.
The post Oneleet Raises $33 Million for Security Compliance Platform appeared first on SecurityWeek.