Skip to content

News
Cybercrime
Risk
Policy
Privacy
Research
Cloud
Insurance

LinkedIn
Facebook

Website Planet

High-severity cache-poisoning vulnerability in BIND 9; patches issued after PoC published

News, Risk, Vulnerabilities

October 29, 2025

CVE-2025-40778 is a high-severity cache-poisoning vulnerability in BIND 9 that can allow remote attackers to inject forged DNS records. Proof-of-concept code is public and fixed versions are available; administrators are urged to apply patches immediately.
Microsoft issues out-of-band fix for WSUS vulnerability CVE-2025-59287

Cybercrime, News, Risk, Vendors, Vulnerabilities

October 24, 2025

Microsoft released an out-of-band cumulative update to address CVE-2025-59287, a critical WSUS deserialization vulnerability being exploited in the wild; admins should apply the patch or disable WSUS/block ports 8530 and 8531 until systems can be rebooted after updating.
Misconfigured Rainwalk Pet database left 158 GB of owner and pet records exposed

Cybercrime, Privacy, Research, Risk, Vulnerabilities

October 7, 2025

A misconfigured Rainwalk Pet database exposed about 158 GB of customer and pet records, including names, contact details, partial credit card numbers, veterinary bills and microchip numbers, the article said; the data remained publicly accessible for almost a month before being secured.

About
Editorial Policy
Privacy
Contact