GitLab Update: Patch For Multiple Vulnerabilities That Enables DoS Attack

Cyber Security News

GitLab Security Update - Patch For Multiple Vulnerabilities That Enables DoS Attack

GitLab has released critical security updates – versions 18.4.2, 18.3.4, and 18.2.8 for Community Edition (CE) and Enterprise Edition (EE), addre...

GitLab has released important security updates. The new versions are 18.4.2, 18.3.4, and 18.2.8 for both Community Edition (CE) and Enterprise Edition (EE). These updates fix several vulnerabilities that could lead to denial-of-service (DoS) attacks and allow unauthorized access. All self-managed GitLab installations are strongly advised to upgrade promptly to mitigate potential disruptions. GitLab.com and GitLab Dedicated customers are already fully protected by these patches.

Stacker News

GitLab Update: Patch For Multiple Vulnerabilities That Enables DoS Attack \ stacker news

GitLab has released important security updates. The new versions are 18.4.2, 18.3.4, and 18.2.8 for both Community Edition (CE) and Enterprise Edit...

The physics that reveals the universe could be destroyed in a blink https://iai.tv/articles/the-physics-that-reveals-the-universe-could-be-destroyed-in-a-blink-auid-3383 The false vacuum is a scientific idea about the universe being in an unstable energy state. This means that what we think of as “empty space” might not be truly stable, it could be sitting in a kind of temporary balance, like a ball resting in a shallow dip that could roll down into a deeper hole at any moment. If that happened, the universe could suddenly change or even be destroyed. Philosopher of science Mathias Vogel says that although such a collapse is very unlikely, the idea reveals a bigger issue. Science assumes that the laws of nature, like gravity or electromagnetism, are constant and reliable. But if the false vacuum idea is true, then even those laws could change, meaning they’re not as stable as we thought. Even if this cosmic collapse won’t happen anytime soon, the possibility forces us to rethink how secure our understanding of nature’s laws really is.

Stacker News

The physics that reveals the universe could be destroyed in a blink \ stacker news

The false vacuum is a scientific idea about the universe being in an unstable energy state. This means that what we think of as “empty space” m...

Severe Framelink Figma MCP Vulnerability Lets Hackers Execute Code Remotely

The Hacker News

Severe Framelink Figma MCP Vulnerability Lets Hackers Execute Code Remotely

Figma MCP flaw CVE-2025-53967 lets attackers execute arbitrary code; patch released in version 0.6.3. (

Cybersecurity researchers have disclosed details of a now-patched vulnerability in the popular figma-developer-mcp Model Context Protocol (MCP) server that could allow attackers to achieve code execution. The vulnerability, tracked as CVE-2025-53967 (CVSS score: 7.5), is a command injection bug stemming from the unsanitized use of user input, opening the door to a scenario where an attacker can send arbitrary system commands.

Stacker News

Severe Framelink Figma MCP Vulnerability Lets Hackers Execute Code Remotely \ stacker news

Cybersecurity researchers have disclosed details of a now-patched vulnerability in the popular figma-developer-mcp Model Context Protocol (MCP) ser...

CISA Warns of Windows Privilege Escalation Vulnerability Exploited in Attacks

Cyber Security News

CISA Warns of Windows Privilege Escalation Vulnerability Exploited in Attacks

CISA has issued an urgent security advisory, adding Microsoft Windows privilege escalation vulnerability CVE-2021-43226 to its Known Exploited Vuln...

CISA has issued an urgent security advisory, adding Microsoft Windows privilege escalation vulnerability CVE-2021-43226 to its Known Exploited Vulnerabilities (KEV) catalog on October 6, 2025. The vulnerability affects the Microsoft Windows Common Log File System (CLFS) Driver and poses significant security risks to enterprise environments.

Stacker News

CISA Warns of Windows Privilege Escalation Vulnerability Exploited in Attacks \ stacker news

CISA has issued an urgent security advisory, adding Microsoft Windows privilege escalation vulnerability CVE-2021-43226 to its Known Exploited Vuln...

Threat Actors Claim Breach Of Huawei Technologies Source Code and Internal Tools

Cyber Security News

Threat Actors Claim Breach Of Huawei Technologies Source Code and Internal Tools

A threat actor has claimed responsibility for a significant data breach at Huawei Technologies, a multinational technology corporation based in China.

A threat actor has claimed responsibility for a significant data breach at Huawei Technologies, a multinational technology corporation based in China. The actor is reportedly attempting to sell what they allege is the company’s internal source code and development tools on a dark web forum.

Stacker News

Threat Actors Claim Breach Of Huawei Technologies Source Code and Internal Tools \ stacker news

A threat actor has claimed responsibility for a significant data breach at Huawei Technologies, a multinational technology corporation based in Chi...

The Dangers and Opportunities of a Romanian National Bankruptcy

Hungarian Conservative

The Dangers and Opportunities of a Romanian National Bankruptcy - Hungarian Conservative

‘The best approach for Hungarian politicians is to try to help Romania find a new path. The globalist path that the country has been on for the p...

The best approach for Hungarian politicians is to try to help Romania find a new path. The globalist path that the country has been on for the past two decades is coming to an end. Romania needs to figure out new ways to engage with a new world. The country can no longer rely on external alliances or foreign financial inflows. It must fight for its future and its prosperity.

Stacker News

The Dangers and Opportunities of a Romanian National Bankruptcy \ stacker news

The best approach for Hungarian politicians is to try to help Romania find a new path. The globalist path that the country has been on for the past...

Tsunami threat passes in Philippines and Indonesia after powerful quake

BBC News

Tsunami threat passes in Philippines and Indonesia after powerful quake, warning agency says

The Pacific Tsunami Warning Center earlier warned of waves of up to 3m (10ft) above tide level reaching the Philippine coast.

Early on Friday, residents in the Philippines and Indonesia were left reeling after an earthquake struck off the coast of the Philippines' Mindanao region - triggering fears of a tsunami.

Stacker News

Tsunami threat passes in Philippines and Indonesia after powerful quake \ stacker news

Early on Friday, residents in the Philippines and Indonesia were left reeling after an earthquake struck off the coast of the Philippines' Mindanao...

UTA Latest Hollywood Player To Sound Sora Alarm

SAG-SFTRA Latest Hollywood Player To Come Out Swinging Against AI & Sora

SAG-AFTRA has followed UTA, CAA and the MPA in sounding the alarm at Sora 2, the newest version of Open AI’s video generating app

UTA has followed CAA and the MPA in sounding the alarm at Sora 2, the newest version of Open AI’s video generating app, saying today that “the use of property without compensation is exploitation, not innovation” “There is no substitute for human talent in our business, and we will continue to fight tirelessly for our clients to ensure that they are protected. When it comes to OpenAI’s Sora or any other platform that seeks to profit from our clients’ intellectual property and likeness, we stand with artists,” the agency said.

Stacker News

UTA Latest Hollywood Player To Sound Sora Alarm \ stacker news

UTA has followed CAA and the MPA in sounding the alarm at Sora 2, the newest version of Open AI’s video generating app, saying today that “the ...

Intel unveils Core Ultra series 3 chip in major test for ailing chipmaker

Intel unveils Core Ultra series 3 chip in major test for ailing chipmaker

Intel (INTC) on Thursday took the wraps off its new Core Ultra series 3 processor, code-named Panther Lake, the company's first chip built using its long-gestating 18A process technology. The chip is also the first processor to be manufactured at Intel's newly opened Fab 52 plant in Arizona. Intel said its 18A process is the world's most advanced process technology researched, developed, and built in America.

Stacker News

Intel unveils Core Ultra series 3 chip in major test for ailing chipmaker \ stacker news

Intel (INTC) on Thursday took the wraps off its new Core Ultra series 3 processor, code-named Panther Lake, the company's first chip built using it...

„Ideea SRI-ului a reușit. Orice utilizator trebuie identificat online”

HotNews.ro

Critici la legea majoratului digital: „Ideea SRI-ului a reușit. Orice utilizator trebuie identificat online” / Ce au reclamat Google, CNA ori ANCOM - HotNews.ro

Proiectul de lege privind majoratul online, adoptat luni de Senat, prin care minorii cu vârste de până la 16 ani nu vor putea accesa servicii on...

Proiectul de lege privind majoratul online, adoptat luni de Senat, prin care minorii cu vârste de până la 16 ani nu vor putea accesa servicii online decât cu acord parental, „introduce o obligație generală de identificare online pentru orice utilizator: Instagram, TikTok, Facebook, LinkedIn și orice site doar cu buletinul”, susține Asociația pentru Tehnologie și Internet (APTI). Critici asupra formei inițiale a proiectului au fost ridicate și de Google România, CNA și mai ales ANCOM, autoritatea care va verifica aplicarea legii, după ce va trece de Parlament.

Stacker News

„Ideea SRI-ului a reușit. Orice utilizator trebuie identificat online” \ stacker news

Proiectul de lege privind majoratul online, adoptat luni de Senat, prin care minorii cu vârste de până la 16 ani nu vor putea accesa servicii on...

Bitcoin as a reserve currency: What is the 'debasement' trade?

Bitcoin as a reserve currency: What is the 'debasement' trade?

Bitcoin (BTC-USD) hit fresh record highs on Monday. CoinDesk Indices managing director Andy Baehr joins Yahoo Finance to discuss the US dollar (DX=F, DX-Y.NYB) "debasement" trade and how crypto has emerged as a potential alternative value holder to the world's reserve currency, alongside gold (GC=F). To watch more expert insights and analysis on the latest market action, check out more Market Catalysts.

Stacker News

Bitcoin as a reserve currency: What is the 'debasement' trade? \ stacker news

Bitcoin (BTC-USD) hit fresh record highs on Monday. CoinDesk Indices managing director Andy Baehr joins Yahoo Finance to discuss the US dollar (DX=...

BBVA Joins Blockchain Drive With SWIFT to Reshape Real-Time Global Payments

Bitcoin News

BBVA Joins Blockchain Drive With SWIFT to Reshape Real-Time Global Payments

BBVA is embracing blockchain-powered global payments with bold support for SWIFT’s real-time settlement network, citing speed, transparency, stab...

BBVA is embracing blockchain-powered global payments with bold support for SWIFT’s real-time settlement network, citing speed, transparency, stablecoins, and tokenized asset capabilities.

Stacker News

BBVA Joins Blockchain Drive With SWIFT to Reshape Real-Time Global Payments \ stacker news

BBVA is embracing blockchain-powered global payments with bold support for SWIFT’s real-time settlement network, citing speed, transparency, stab...

Cristiano Ronaldo becomes first billionaire footballer

BBC Sport

Cristiano Ronaldo becomes first billionaire footballer - Bloomberg

Portugal striker Cristiano Ronaldo is worth $1.4bn (£1.04bn), according to financial information and media firm Bloomberg.

The Bloomberg Billionaires Index,, external which tracks the world's richest people based on their net worth, has measured the 40-year-old Portugal and Al-Nassr striker's wealth for the first time. The valuation takes into account career earnings, investments and endorsements and says Ronaldo's net worth is $1.4bn (£1.04bn). It says he earned more than $550m (£410m) in salary between 2002 and 2023, and breaks down his reported earnings through deals and sponsorship, including a decade-long deal with Nike worth almost $18m (£13.4m) a year.

Stacker News

Cristiano Ronaldo becomes first billionaire footballer \ stacker news

The Bloomberg Billionaires Index,, external which tracks the world's richest people based on their net worth, has measured the 40-year-old Portugal...

Iran abolishes mandatory hijab for women https://azon.global/en/posts/International-Life/iran-abolishes-mandatory-hijab-for-women-4648 Iran has abolished the mandatory hijab law - it is now a personal choice for every woman. Mohammadreza Bahoner, a member of the Council for the Examination of the Existence of Existing Documents, announced that the "Law on Chastity" no longer exists.

Stacker News

Iran abolishes mandatory hijab for women \ stacker news

Iran has abolished the mandatory hijab law - it is now a personal choice for every woman. Mohammadreza Bahoner, a member of the Council for the Exa...

SoftBank to buy ABB robotics unit for $5.4 billion as it boosts its AI play

CNBC

SoftBank to buy ABB robotics unit for $5.4 billion as it boosts its AI play

SoftBank Group on Monday said it had agreed to buy the robotics division of Swiss engineering firm ABB for $5.4 billion.

SoftBank Group on Monday said it had agreed to buy the robotics division of Swiss engineering firm ABB for $5.4 billion, as the Japanese giant looks to bolster its artificial intelligence plays. The deal, which is subject to regulatory approval globally, means ABB will no longer look to spin off its robotics business as a separately listed company.

Stacker News

SoftBank to buy ABB robotics unit for $5.4 billion as it boosts its AI play \ stacker news

SoftBank Group on Monday said it had agreed to buy the robotics division of Swiss engineering firm ABB for $5.4 billion, as the Japanese giant look...

Zabbix Agent for Windows Vulnerability Let Attackers Escalate Privileges

Cyber Security News

Zabbix Agent and Agent 2 for Windows Vulnerability Let Attackers Escalate Privileges

A critical security vulnerability has been discovered in Zabbix Agent and Agent 2 for Windows that allows attackers with local system access to esc...

A critical security vulnerability has been discovered in Zabbix Agent and Agent 2 for Windows that allows attackers with local system access to escalate their privileges through DLL injection attacks. The flaw, tracked as CVE-2025-27237 with a CVSS score of 7.3 (High), affects multiple versions of the popular network monitoring solution and has prompted immediate security updates from Zabbix.

Stacker News

Zabbix Agent for Windows Vulnerability Let Attackers Escalate Privileges \ stacker news

A critical security vulnerability has been discovered in Zabbix Agent and Agent 2 for Windows that allows attackers with local system access to esc...

OpenSSH Vulnerability Exploited Via ProxyCommand to Execute Remote Code

Cyber Security News

OpenSSH Vulnerability Exploited Via ProxyCommand to Execute Remote Code - PoC Released

A new command injection vulnerability in OpenSSH, tracked as CVE-2025-61984, has been disclosed, which could allow an attacker to achieve remote co...

A new command injection vulnerability in OpenSSH, tracked as CVE-2025-61984, has been disclosed, which could allow an attacker to achieve remote code execution on a victim’s machine. The vulnerability is a bypass of a previous fix for a similar issue (CVE-2023-51385) and exploits how the ProxyCommand feature interacts with the underlying system shell when handling specially crafted usernames.

Stacker News

OpenSSH Vulnerability Exploited Via ProxyCommand to Execute Remote Code \ stacker news

A new command injection vulnerability in OpenSSH, tracked as CVE-2025-61984, has been disclosed, which could allow an attacker to achieve remote co...

Gemini CLI to Your Kali Linux Terminal To Automate Penetration Testing Tasks

Cyber Security News

Gemini CLI to Your Kali Linux Terminal To Automate Penetration Testing Tasks

With the release of Kali Linux 2025.3, a major update introduces an innovative tool that combines artificial intelligence and cybersecurity: the Ge...

With the release of Kali Linux 2025.3, a major update introduces an innovative tool that combines artificial intelligence and cybersecurity: the Gemini Command-Line Interface (CLI). This new open-source package integrates Google’s powerful Gemini AI directly into the terminal, offering penetration testers and security professionals an intelligent assistant designed to streamline and automate complex security workflows.

Stacker News

Gemini CLI to Your Kali Linux Terminal To Automate Penetration Testing Tasks \ stacker news

With the release of Kali Linux 2025.3, a major update introduces an innovative tool that combines artificial intelligence and cybersecurity: the Ge...

Nobel Prize in physics goes to a trio for discoveries in quantum mechanics https://www.cnn.com/2025/10/07/science/nobel-prize-physics-clarke-devoret-martinis-quantum-mechanics-intl The 2025 Nobel Prize in physics has been awarded to a trio of scientists – a Briton, a Frenchman and an American – for their ground-breaking discoveries in the field of quantum mechanics. John Clarke, Michel Devoret and John Martinis will share the prize “for the discovery of macroscopic quantum mechanical tunnelling and energy quantization in an electric circuit,” the Nobel Committee announced Tuesday at a ceremony in Stockholm, Sweden.

Stacker News

Nobel Prize in physics goes to a trio for discoveries in quantum mechanics \ stacker news

The 2025 Nobel Prize in physics has been awarded to a trio of scientists – a Briton, a Frenchman and an American – for their ground-breaking di...

US Supreme Court allows order forcing Google to make app store reforms https://www.reuters.com/sustainability/boards-policy-regulation/us-supreme-court-allows-order-forcing-google-make-app-store-reforms-2025-10-06/ The U.S. Supreme Court declined on Monday to halt key parts of a judge's order requiring Alphabet's (GOOGL.O), opens new tab Google to make major changes to its app store Play, as the company prepares to appeal a decision in a lawsuit brought by "Fortnite" maker Epic Games. The justices turned down Google's request to temporarily freeze parts of the injunction won by Epic in its lawsuit accusing the tech giant of monopolizing how consumers access apps on Android devices and pay for transactions within apps.

Stacker News

US Supreme Court allows order forcing Google to make app store reforms \ stacker news

The U.S. Supreme Court declined on Monday to halt key parts of a judge's order requiring Alphabet's (GOOGL.O), opens new tab Google to make major c...