TL-RL-FusionNet: An Adaptive and Efficient Reinforcement Learning-Driven Transfer Learning Framework for Detecting Evolving Ransomware Threats

Modern ransomware exhibits polymorphic and evasive behaviors by frequently modifying execution patterns to evade detection. This dynamic nature disrupts feature spaces and limits the effectiveness of static or predefined models. To address this challenge, we propose TL-RL-FusionNet, a reinforceme...

EUVD-2026-21848

Bluetooth ACPI Drivers provided by Dynabook Inc. contain a stack-based buffer overflow vulnerability. An attacker may execute arbitrary code by modifying certain registry values...

CVE-2026-35553

Bluetooth ACPI Drivers provided by Dynabook Inc. contain a stack-based buffer overflow vulnerability. An attacker may execute arbitrary code by modifying certain registry values...

MAL-2025-82765 Malicious code in zany_unicorn_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 647fb15d2b2e5b946a772ccc7552f5dd44cda46e6c411db4646bba3873d96b95 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Fujitsu UpdateNavi和UpdateNaviInstallService 安全漏洞

Fujitsu UpdateNavi and UpdateNaviInstallService are both products of Fujitsu Japan.Fujitsu UpdateNavi is an application updater.UpdateNaviInstallService is an application updater. A security vulnerability exists in Fujitsu UpdateNavi V1.4 L10 through L33 and UpdateNaviInstallService versions...

PNGPlug Loader Delivers ValleyRAT Malware Through Fake Software Installers

Cybersecurity researchers are calling attention to a series of cyber attacks that have targeted Chinese-speaking regions like Hong Kong, Taiwan, and Mainland China with a known malware called ValleyRAT. The attacks leverage a multi-stage loader dubbed PNGPlug to deliver the ValleyRAT payload,...

Microsoft MSHTML Flaw Exploited to Deliver MerkSpy Spyware Tool

Unknown threat actors have been observed exploiting a now-patched security flaw in Microsoft MSHTML to deliver a surveillance tool called MerkSpy as part of a campaign primarily targeting users in Canada, India, Poland, and the U.S. "MerkSpy is designed to clandestinely monitor user activities,...

PT-2024-10388 · Palo Alto Networks · Palo Alto Networks Globalprotect

Name of the Vulnerable Software and Affected Versions: Palo Alto Networks GlobalProtect affected versions not specified Description: The issue is related to an insufficient certification validation in the GlobalProtect app, allowing attackers to connect the app to arbitrary servers. This can enab...

DarkGate Malware Activity Spikes as Developer Rents Out Malware to Affiliates

A new malspam campaign has been observed deploying an off-the-shelf malware called DarkGate. "The current spike in DarkGate malware activity is plausible given the fact that the developer of the malware has recently started to rent out the malware to a limited number of affiliates," Telekom...

NEC PC Settings Tool vulnerable to missing authentication for critical function

Overview PC Settings Tool is an application pre-installed on computers provided by NEC by default. PC Settings Tool Library contained in the application is vulnerable to missing authentication for critical function CWE-306. Haruki Yadani of LAC Co., Ltd. reported this vulnerability to IPA...

CVE-2022-23744

Check Point Endpoint before version E86.50 failed to protect against specific registry change which allowed to disable endpoint protection by a local administrator...

CVE-2021-3041

A local privilege escalation vulnerability exists in the Palo Alto Networks Cortex XDR agent on Windows platforms that enables an authenticated local Windows user to execute programs with SYSTEM privileges. This requires the user to have the privilege to create files in the Windows root directory...

Description of the update package for Communications Server 2007 R2, Web Components: March, 2011

Describes a bug that is resolved in the update package for Office Communications Server 2007 R2, Web Components that is dated March 2011.SummaryThis article describes the issue that is fixed in the update package for Microsoft Office Communications Server 2007 R2, Web Components that is dated...

March 8, 2016, update for Office 2016 (KB3114514)

March 8, 2016, update for Office 2016 KB3114514 This article describes update KB3114514 for Microsoft Office 2016, which was released on March 8, 2016. This update has a prerequisite. Be aware that the update on the Microsoft Download Center applies to the Microsoft Installer .msi-based edition o...

Using MixMode and Carbon Black to Spot a Watering Hole Attack

For those not familiar with watering hole attacks, they are attacks on a specific place—such as a restaurant—that many people visit. They generally involve malicious code being injected into an iframe on the company’s website. In the case of a restaurant, for example, the online menu would be a...

Sophos Endpoint Protection 10.7 - Tamper-Protection Bypass

Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/SOPHOS-ENDPOINT-PROTECTION-v10.7-TAMPER-PROTECTION-BYPASS-CVE-2018-4863.txt + ISR: Apparition Security Vendor: ============= www.sophos.com Product: =========== Sophos...

Synaptics TouchPad Driver Debug Tool Information Disclosure Vulnerability

Synaptics TouchPad drivers is the United States Synaptics company developed specifically for notebook computers a touchpad driver. debug tool is one of the debugging tool. A security vulnerability exists in the debug tool of the Synaptics TouchPad driver. A local attacker can exploit this...

Sysinternals Regmon 6.11 Local Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11042/info Regmon is reported prone to a local denial of service vulnerability. This issue presents itself because the application fails to handle exceptional conditions and references unvalidated pointers to kernel...

Watering Hole Attack Hits US Department of Labor Website

The United States Department of Labor website is the latest high-profile government site to fall victim to a watering hole attack. Researchers at a number of security companies reported today that the site was hosting malware and redirecting visitors to a site hosting the Poison Ivy remote access...

Description of the update for Lync 2010: March 2012

Describes the issues that are fixed in the March 2012 update for Lync 2010.SummaryThis article describes the update for Microsoft Lync 2010 that is dated March 2012.This article describes the following items about the update package:The issues that the update package fixes.The prerequisites for...