Posts of last 24 hours
Securonix said the Veil#Drop campaign abuses Google Blogspot to deliver PureLog Stealer in memory
https://www.infosecurity-magazine.com/news/veil-drop-blogspot-purelog-stealer/
Fake Interpol investigation emails are targeting small businesses with Proton Drive links that deliver ransomware, encrypt files, and route victims to Tox chat.
https://hackread.com/fake-interpol-investigation-emails-ransomware-small-businesses/
数字游戏是未来,索尼正式宣布其 PS 游戏机从 2028 年 1 月起不再发售新游戏的实体光盘版本。这也意味着未来的的 PS 游戏机不会再发售包含蓝光光驱的型号。索尼称 2028 年 1 月之前已发售或即将发售的游戏实体光盘版不受影响。消费者普遍偏爱数字媒介而不是实体光盘,索尼表示它只是顺应这一趋势罢了。
https://www.solidot.org/story?sid=84733
Apple’s “Hide My Email” feature is currently affected by an unpatched vulnerability that allows attackers to discover the real email address behind an anonymized alias, according to researcher Tyler Murphy and independent tests by 404 Media. Apple’s Hide My Email, part of iCloud+, generates unique relay addresses intended to keep a user’s primary inbox private […]
The post Apple ‘Hide My Email’ Vulnerability Exposes Users’ Real Email Addresses appeared first on Cyber Security News.
https://cybersecuritynews.com/apple-hide-my-email-vulnerability/
Год назад 29% экспертов были готовы полностью довериться автономному пентесту — теперь таких лишь 9%
Cobalt зафиксировала кризис автопентеста.
https://www.securitylab.ru/news/574340.php
Threat intelligence is only as useful as the context behind it. Criminal IP explains how its integration enriches threat indicators in OpenCTI with risk scoring, infrastructure intelligence, and phishing analysis. [...]
https://www.bleepingcomputer.com/news/security/turning-indicators-into-intelligence-in-opencti-with-criminal-ip/
Torrance, California, USA, 1st July 2026, CyberNewswire
https://hackread.com/turning-indicators-into-intelligence-in-opencti-with-criminal-ip/
A vulnerability, which was classified as critical, has been found in Mozilla Firefox up to 147. This impacts an unknown function of the component Messaging System. Performing a manipulation results in Remote Code Execution.
This vulnerability is known as CVE-2026-2777. Remote exploitation of the attack is possible. No exploit is available.
It is advisable to upgrade the affected component.
https://vuldb.com/vuln/347566
A vulnerability, which was classified as critical, was found in Mozilla Firefox up to 147. Affected is an unknown function of the component HTML Component. Executing a manipulation can lead to sandbox issue.
This vulnerability is handled as CVE-2026-2778. The attack can be executed remotely. There is not any exploit available.
You should upgrade the affected component.
https://vuldb.com/vuln/347567
A vulnerability has been found in Mozilla Firefox up to 147 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to memory corruption.
This vulnerability is uniquely identified as CVE-2026-2792. The attack is possible to be carried out remotely. No exploit exists.
The affected component should be upgraded.
https://vuldb.com/vuln/347568