ISC News Articles
Recent news articles refferecing the vendors vulnerabilities.
The Hacker NewsCVE-2025-40778ThreatsDay Bulletin: DNS Poisoning Flaw, Supply-Chain Heist, Rust Malware Trick and New RATs Rising
Threat actors refine tactics with DNS attacks, new RATs, and Rust-based malware. Stay ahead with this week’s top ThreatsDay intelligence brief.
3 days ago
CyberSecurityNewsCVE-2025-40778PoC Exploit Released for BIND 9 Vulnerability that Let Attackers Forge DNS Records
A public exploit code demonstrating how attackers could exploit CVE-2025-40778, a critical vulnerability in BIND 9 that enables DNS cache poisoning.
4 days ago
Help Net SecurityCVE-2025-40778PoC code drops for remotely exploitable BIND 9 DNS flaw (CVE-2025-40778) - Help Net Security
PoC code for a high-severity vulnerability (CVE-2025-40778) affecting BIND 9 DNS resolvers could be leveraged fo cache poisoning attacks.
5 days ago
Techzine GlobalDutch NCSC predicts abuse of DNS server software BIND 9
NCSC warns against abuse of BIND 9 vulnerabilities that enable cache poisoning. Updates are available, and organizations must act quickly.
6 days ago
The Cyber ExpressCVE-2025-40778CVE-2025-40778: BIND 9 DNS Flaw Exposes 706K Servers
Over 706,000 BIND 9 DNS resolvers are vulnerable to cache poisoning via CVE-2025-40778. ISC urges immediate upgrades to patched versions.
6 days ago
Cyber PressCVE-2025-40778Over 706,000 BIND 9 Resolvers Exposed to Cache Poisoning Attacks – PoC Released
Tracked as CVE-2025-40778, the vulnerability affects over 706,000 exposed instances worldwide, according to internet scanning firm Censys.
6 days ago
GBHackers NewsCVE-2025-40778706,000+ BIND 9 DNS Resolvers Exposed to Cache Poisoning - PoC Released
A vulnerability affecting more than 706,000 BIND 9 DNS resolvers worldwide has been disclosed with proof-of-concept exploit code now publicly available.
6 days ago
706,000+ BIND 9 Resolver Instances Vulnerable to Cache Poisoning Exposed Online - PoC Released
A high-severity vulnerability in BIND 9 resolvers has been disclosed, potentially allowing attackers to poison caches and redirect internet traffic to malicious sites.
1 week ago
CybersecurityNewsCVE-2025-40778706,000+ BIND 9 Resolver Instances Vulnerable to Cache Poisoning Exposed Online - PoC Released
A high-severity vulnerability in BIND 9 resolvers has been disclosed, potentially allowing attackers to poison caches and redirect internet traffic to malicious sites.
1 week ago
CVE-2025-40778 and CVE-2025-40780: Cache Poisoning Vulnerabilities in BIND 9 Expose DNS Servers to the Risk of Attacks | SOC Prime
Explore the CVE-2025-40778 and CVE-2025-40780 analysis, new BIND 9 Cache poisoning vulnerabilities, with the details on our SOC Prime blog.
1 week ago
Multiple BIND 9 DNS Vulnerabilities Enable Cache Poisoning and Denial of Service Attacks
The Internet Systems Consortium (ISC) disclosed three high-severity vulnerabilities in BIND 9 on October 22, 2025, potentially allowing remote attackers to conduct cache poisoning attacks or cause denial-of-service (DoS) conditions on affected DNS resolvers.
1 week ago
Ars TechnicaCache poisoning vulnerabilities found in 2 DNS resolving apps
At least one CVE could weaken defenses put in place following 2008 disclosure.
1 week ago
Isc KbCVE-2025-40776CVE-2025-40776: Birthday Attack against Resolvers supporting ECS
A resolver configured to send ECS options to authoritative servers can be compelled to make queries that slightly increase the odds of guessing the source port and other details necessary to bypass the original birthday cache poisoning attack mitigations. As a result of this weakness, a resolver wit...
【セキュリティ ニュース】「BIND 9」に緊急脆弱性 - 1パケットでDoS攻撃が可能(1ページ目 / 全2ページ):Security NEXT
「BIND 9」にサービス拒否の脆弱性が明らかとなった。リモートからDoS攻撃が可能になるとして、関連機関ではアップデートを呼びかけている。 :Security NEXT
TheSecMasterCVE-2024-11187Fix CVE-2024-11187: BIND 9 CPU Exhaustion Flaw
Learn how to mitigate the CVE-2024-11187 vulnerability in BIND 9 DNS servers. Step-by-step guide for fixing CPU exhaustion and securing your infrastructure.
SecNews.grΕνημερώσεις BIND διορθώνουν τέσσερα σοβαρά σφάλματα DoS
Η Internet Systems Consortium (ISC) κυκλοφόρησε ενημερώσεις ασφαλείας για το BIND που αντιμετωπίζουν σοβαρά σφάλματα DoS.
Security AffairsBIND updates fix high-severity DoS bugs in the DNS software suite
The Internet Systems Consortium (ISC) released BIND security updates that fixed remotely exploitable DoS bugs in the DNS software suite.
IT-Sicherheit: UNIX und Windows bedroht - Update für IT-Sicherheitswarnung zu Internet Systems Consortium BIND (Risiko: mittel)
Eine für Internet Systems Consortium BIND herausgegebene Sicherheitswarnung hat vom BSI ein Update erhalten. Welche Produkte von der Sicherheitslücke betroffen sind, lesen Sie hier auf news.de.
Linux SecurityUbuntu 6909-1: Bind Security Advisory Updates
Ubuntu 6909-1: Bind Security Advisory Updates - Ubuntu Security Notice USN-6909-1 July 23, 2024 bind9 vulnerabilities A security issue affects these
Defend EdgeCVE-2024-4076ISC Releases Security Advisories for BIND 9 - Defend Edge
The Internet Systems Consortium (ISC) released security advisories to address vulnerabilities affecting multiple versions of ISC’s Berkeley Internet Name Domain (BIND) 9. A cyber threat actor could exploit one of these vulnerabilities to cause a denial-of-service condition. CISA encourages users and...