Information security
fromThe Hacker News
2 months agoCISA Flags Critical ASUS Live Update Flaw After Evidence of Active Exploitation
A supply-chain-compromised ASUS Live Update client (CVE-2025-59374) containing embedded malicious code is actively exploited, allowing targeted devices to perform unintended actions.