Multiple security vulnerabilities have been disclosed in GitHub Desktop as well as other Git-related projects that, if successfully exploited, could permit an attacker to gain unauthorized access to a user's Git credentials.

A group of academics has disclosed details of over 100 security vulnerabilities impacting LTE and 5G implementations that could be exploited by an attacker to disrupt access to service and even gain a foothold into the cellular core network.

"The campaign spans multiple industries, including healthcare, banking, and marketing, with the telecom industry having the highest number of organizations targeted," warned NetSkope researchers.

The medium-severity vulnerability is CVE-2020-11023 (CVSS score: 6.1/6.9), a nearly five-year-old cross-site scripting (XSS) bug that could be exploited to achieve arbitrary code execution.

Researchers uncovered multiple vulnerabilities, dubbed PANdora’s Box, in Palo Alto Networks firewalls, enabling Secure Boot bypass and firmware exploits. These flaws reportedly require specific conditions and have not yet been maliciously exploited.

Google on Wednesday shed light on a financially motivated threat actor named TRIPLESTRENGTH for its opportunistic targeting of cloud environments for cryptojacking and on-premise ransomware attacks.

Cybersecurity researchers have disclosed details of a new BackConnect (BC) malware that has been developed by threat actors linked to the infamous QakBot loader. The BackConnect(s) in use include 'DarkVNC,' alongside the IcedID BackConnect (KeyHole).

Cisco has released software updates to address a critical security flaw impacting Meeting Management that could permit a remote, authenticated attacker to gain administrator privileges on susceptible instances.

SonicWall warned of a critical security flaw, tracked as CVE-2025-23006 and with a CVSS score of 9.8/10, impacting its Secure Mobile Access (SMA) 1000 Series appliances that it said has been likely exploited in the wild as a zero-day.

The UDP protocol-based attack took place on October 29, 2024, targeting one of its customers, an unnamed internet service provider (ISP) from Eastern Asia. The activity originated from a Mirai-variant botnet.