Sudo Vulnerability Exploited

Cyber Security News by CyberSum.net

Published on October 6, 2025 at 09:00 AM

3 sources

A proof-of-concept exploit has been released for CVE-2025-32463, a critical local privilege escalation vulnerability affecting the Sudo binary, allowing attackers to gain root access on Linux systems, with a critical severity score of 9.3 out of 10, and the vulnerability impacts Sudo versions 1.9.14 through 1.9.17, representing a significant portion of current Linux deployments, and system administrators should prioritize updating to the latest patched version to eliminate the risk of exploitation, and implementing security frameworks such as AppArmor or SELinux can provide additional layers of protection.

Also Read

Famous Chollima Uses Fake Job Offers to Spread Malware

Cisco Talos has exposed a malware campaign by Famous Chollima, a threat group aligned with the Lazarus APT. The campaign uses fake job offers to infect developers with BeaverTail and OtterCookie malware, which now include keylogging and cryptocurrency wallet stealing capabilities. The infection chain begins with a trojanized Node.js project called Chessfi, leading to the execution of a combined malware payload. The campaign targets cryptocurrency browser extensions and evolves to blend espionage with financial crime, aligning with the focus on cryptocurrency theft to evade sanctions.

By Cyber Security News by CyberSum.netOctober 17, 2025 at 09:00 AM