Espresso

Sign in Subscribe

Cybersecurity

Microsoft Patches BPF Race Flaw in WSL2 and Azure Linux, Deploys CSAF/VEX Attestations to Advance Kernel Security

Microsoft Patches BPF Race Flaw in WSL2 and Azure Linux, Deploys CSAF/VEX Attestations to Advance Kernel Security

TL;DR * CVE-2025-39863 use-after-free in Broadcom Wi-Fi driver (brcmfmac) exploited via timer-race, affects Azure Linux and AKS nodes; patch deployed upstream * Microsoft patches CVE-2025-39886 BPF allocation flaw in WSL2 and CBL-Mariner kernels, publishes CSAF/VEX attestations for Azure Linux * F2FS remount flaw (CVE-2023-53447) causes kernel crashes during concurrent file operations;

React RCE CVE-2025-55182 Exploited by Botnets, BlackForce MFA Kit Emerges, Azure Linux Patched, AI Pen-Tester Artemis Rises

React RCE CVE-2025-55182 Exploited by Botnets, BlackForce MFA Kit Emerges, Azure Linux Patched, AI Pen-Tester Artemis Rises

TL;DR * CVE-2025-55182 Patched in React Server Components After 137,200 IPs Exposed to RCE via Flight Protocol * BlackForce Phishing Kit Sold on Telegram for €200–300 Uses Legitimate React Code to Bypass MFA Detection * Microsoft Azure Linux Affected by CVE-2025-49177 XFixes Extension Vulnerability Enabling Remote Code Execution * AI Agent

Apache, urllib3, Chrome Patch Critical Vulnerabilities: What You Need to Know

Apache, urllib3, Chrome Patch Critical Vulnerabilities: What You Need to Know

TL;DR * Apache HTTP Server patches critical CVE-2025-55753 integer overflow in mod_md, preventing resource exhaustion and ACME renewal denial-of-service * CVE-2025-66471 in urllib3 allows denial-of-service via compressed response bombs; fix released in v2.6.0 for Python web frameworks and cloud agents * Critical RCE vulnerability CVE-2025-58098 in Apache HTTP Server&

Major Cyber Threats: WinRAR Flaw, Gemini Exfiltration, Fortinet Vulns, Russian Attacks

Major Cyber Threats: WinRAR Flaw, Gemini Exfiltration, Fortinet Vulns, Russian Attacks

TL;DR * CISA issues urgent alert for critical WinRAR path traversal vulnerability (CVE-2025-6218) actively exploited in the wild – immediate patching required by December 30, 2025 * Google Gemini Enterprise RAG architecture vulnerable to prompt injection attacks allowing silent exfiltration of Gmail, Calendar, and Google Docs data without user interaction * Fortinet patches

Google Chrome Integrates UAC and AOS to Block AI Prompt-Injection Attacks, While Linux Kernel Patches Critical Memory Leak

Google Chrome Integrates UAC and AOS to Block AI Prompt-Injection Attacks, While Linux Kernel Patches Critical Memory Leak

TL;DR * CVE-2025-55182 React2Shell vulnerability exposes 39% of cloud environments to remote code execution, enabling theft of cloud secrets and API keys * Qilin ransomware gang claims breach of Inotiv, stealing 200 GB of data in August 2025 cyberattack affecting 9,500 individuals * Google Chrome integrates Gemini AI with User Alignment

Windows 11 25H2 Update, Cloudflare WAF, and AI Code Assistants Hit Security Issues

Windows 11 25H2 Update, Cloudflare WAF, and AI Code Assistants Hit Security Issues

TL;DR * Microsoft’s Windows 11 25H2 update regression triggers File Explorer crashes and login issues on ~1% of consumers * Global Cloudflare WAF mis‑configuration on Dec. 5 caused 28 % of US traffic to return 500‑error pages * AI‑powered code assistants (Copilot, Cursor) vulnerable to prompt injections that can