Heart

Economic evaluation of the TriageHF Plus clinical pathway for device-based remote monitoring in heart failure

Background In 2024, the UK National Institute of Health and Care Excellence (NICE) recommended TriageHF alerts as an option ...

Illegal Downloads of ‘One Battle After Another’ Contain Dangerous Malware

Bitdefender reports that some torrents of One Battle After Another currently available online contain PowerShell scripts and ...
The Hacker News

FreePBX Patches Critical SQLi, File-Upload, and AUTHTYPE Bypass Flaws Enabling RCE

FreePBX patched 2025 flaws allowing SQL injection, file upload attacks, and an auth bypass only when webserver AUTHTYPE was ...

Google links more Chinese hacking groups to React2Shell attacks

Over the weekend, ​Google's threat intelligence team linked five more Chinese hacking groups to attacks exploiting the ...
SecurityWeek

Unpatched Gogs Zero-Day Exploited for Months

Threat actors have exploited a zero-day vulnerability in the Gogs self-hosted Git service to compromise over 700 ...

Hackers exploit unpatched Gogs zero-day to breach 700 servers

An unpatched zero-day vulnerability in Gogs, a popular self-hosted Git service, has enabled attackers to gain remote code ...
The Hacker News

Unpatched Gogs Zero-Day Exploited Across 700+ Instances Amid Active Attacks

Unpatched Gogs flaw CVE-2025-8110 enables file overwrite and code execution, driving over 700 confirmed compromises.
Dark Reading

Attackers Exploited Gogs Zero-Day Flaw for Months

Wiz disclosed a still-unpatched vulnerability in self-hosted Git service Gogs, which is a bypass for a previous RCE bug ...

Research claims legacy .NET proxy behavior creates fresh path to remote system compromise

In the Barracuda Networks Inc. case, a single unauthenticated SOAP request was sufficient to force the application to import ...

Microsoft fixes critical Office zero-day security flaw. Update ASAP!

Microsoft fixed over 50 security vulnerabilities with December's big Patch Tuesday. One of them is already being actively ...
CSO Online

Hidden .NET HTTP proxy behavior can open RCE flaws in apps — a security issue Microsoft won’t fix

Researcher warns that many .NET applications might be vulnerable to arbitrary file writes because .NET’s HTTP client proxy ...
SecurityWeek

Microsoft Patches 57 Vulnerabilities, Three Zero-Days

Microsoft has released patches for 57 vulnerabilities, including a Windows zero-day flaw exploited in attacks.