vidaXL: Datenabfluss bei Onlineshop
Heise Security 18.08.2025 20:45
Der Onlineshop vidaXL meldet einen Einbruch in Server mit Kundendaten. Daten können abgeflossen sein, die authentischeres Phishing ermöglichen.
Microsoft Windows Vulnerability Exploited to Deploy PipeMagic RansomExx Malware
The Hacker News 18.08.2025 18:03
Cybersecurity researchers have lifted the lid on the threat actors' exploitation of a now-patched security flaw in Microsoft Windows to deploy the PipeMagic malware in RansomExx ransomware attacks.
The attacks involve the exploitation of CVE-2025-29824, a privilege escalation vulnerability impacting the Windows Common Log File System (CLFS) that was addressed by Microsoft in April 2025,
Workday: Datenleck beim HR-Software-Anbieter
Heise Security 18.08.2025 14:58
Bei einem IT-Vorfall beim Cloud-Dienst Workday, der HR- und Finanzen für Unternehmen organisiert, haben Kriminelle Zugriff erlangt.
UK’s Colt hit by cyberattack, support systems offline amid ransom threat
CSO Online 18.08.2025 14:11
Colt Technology Services, a UK-based telecom giant connecting 900 data centers across Europe, Asia, and North America, has been hit by a cyberattack that began on August 12.
Initially labelled a “technical issue” by the company, the disruption evolved into a confirmed cyberattack as Colt took down internal support systems, including its online portal and Voice API platform, in a bid to protect its core customer infrastructure.
AMI Aptio BIOS: Rechteausweitung ermöglicht Firmware-Manipulation
Heise Security 18.08.2025 11:22
Im AMI Aptio- und AptioV-BIOS haben IT-Forscher eine Sicherheitslücke entdeckt, die die Ausweitung der Rechte im System ermöglicht.
Workday Reveals CRM Breach
Infosecurity Magazine 18.08.2025 10:45
Workday has revealed a breach of its third-party CRM systems in what could be the latest ShinyHunters attack