Security Feed
  1. Archives

Dec 22 2025 CISA flags ASUS Live Update CVE, but the attack is years old

Source

An ASUS Live Update vulnerability tracked as CVE-2025-59374 has been making the rounds in infosec feeds, with some headlines implying recent or ongoing exploitation. A closer look, however, shows the CVE documents a historic supply-chain attack in an End-of-Life (EoL) software product, not a new attack. [...]

Posted by Ax Sharma on Mon 22 December 2025 in BleepingComputer.

Tags: Security.

Categories

  1. Ars Technica
  2. AWS Security
  3. BleepingComputer
  4. Brian Krebs
  5. Bruce Schneier
  6. GCP Security
  7. Google Project Zero
  8. The Daily Swig
  9. The Guardian
  10. The Register
  11. Threatpost

Tag cloud

  • Security
  • Uncategorized
  • Security, Identity, & Compliance
  • Microsoft
  • Biz & IT
  • Security Blog
  • AI
  • Security & Identity
  • Google
  • CryptoCurrency
  • Announcements
  • Foundational (100)
  • Legal
  • Artificial Intelligence
  • A Little Sunshine
  • privacy
  • Mobile
  • Apple
  • squid
  • Advanced (300)
  • Intermediate (200)
  • hacking
  • Technical How-to
  • LLM
  • The Coming Storm

Security Feed. Powered by Pelican and m.css. Code is available on GitLab.