Aggregator

FBI, CISA warn on Microsoft Intune risks after Iran-linked cyberattack on Stryker

1 month ago

The attackers behind a recent attack on Stryker did not use malware, instead breaking into a legitimate Microsoft device management system called Intune and wiping the company’s data that way.

CVE-2026-29793 | Feathersjs up to 5.0.41 getObjectId data query logic injection (GHSA-p9xr-7p9p-gpqx)

Vuldb Updates

1 month ago

A vulnerability categorized as critical has been discovered in Feathersjs up to 5.0.41. The impacted element is the function getObjectId. The manipulation results in improper neutralization of special elements in data query logic. This vulnerability was named CVE-2026-29793. The attack may be performed from remote. There is no available exploit. It is advisable to upgrade the affected component.

vuldb.com

CVE-2026-29792 | Feathersjs up to 5.0.41 OAuth Service improper authentication (GHSA-wg9x-qfgw-pxhj)

Vuldb Updates

1 month ago

A vulnerability described as critical has been identified in Feathersjs up to 5.0.41. The affected element is an unknown function of the component OAuth Service. Such manipulation leads to improper authentication. This vulnerability is referenced as CVE-2026-29792. It is possible to launch the attack remotely. No exploit is available. Upgrading the affected component is recommended.

vuldb.com

CVE-2026-32112 | homeassistant-ai ha-mcp up to 6.x OAuth Endpoint cross site scripting (GHSA-pf93-j98v-25pv)

Vuldb Updates

1 month ago

A vulnerability marked as problematic has been reported in homeassistant-ai ha-mcp up to 6.x. This issue affects some unknown processing of the component OAuth Endpoint. The manipulation leads to cross site scripting. This vulnerability is referenced as CVE-2026-32112. Remote exploitation of the attack is possible. No exploit is available. It is suggested to upgrade the affected component.

vuldb.com

CVE-2026-32103 | withstudiocms up to 0.4.2 create-reset-link authorization (GHSA-h7vr-cg25-jf8c)

Vuldb Updates

1 month ago

A vulnerability has been found in withstudiocms studiocms up to 0.4.2 and classified as problematic. This affects an unknown part of the file /studiocms_api/dashboard/create-reset-link. This manipulation causes authorization bypass. This vulnerability is registered as CVE-2026-32103. Remote exploitation of the attack is possible. No exploit is available. The affected component should be upgraded.

vuldb.com

CVE-2026-32106 | withstudiocms up to 0.4.2 createUser Endpoint privileges management (GHSA-wj56-g96r-673q)

Vuldb Updates

1 month ago

A vulnerability labeled as critical has been found in withstudiocms studiocms up to 0.4.2. This issue affects some unknown processing of the component createUser Endpoint. The manipulation results in improper privilege management. This vulnerability is known as CVE-2026-32106. It is possible to launch the attack remotely. No exploit is available. The affected component should be upgraded.

vuldb.com

CVE-2026-1760 | GNOME SoupServer Persistent Connection request smuggling (EUVD-2026-5105 / Nessus ID 300863)

Vuldb Updates

1 month ago

A vulnerability has been found in GNOME SoupServer and classified as critical. This vulnerability affects unknown code of the component Persistent Connection Handler. Performing a manipulation results in http request smuggling. This vulnerability is identified as CVE-2026-1760. The attack can be initiated remotely. There is not any exploit available.

vuldb.com

Nitrogen

Dark Feed IO

1 month ago

You must login to view this content

cohenido

新能源危机迫使政府重新考虑对化石燃料的依赖

Solidot

1 month ago

正在爆发的新能源危机正促使全球决策者重新思考对化石燃料的依赖，提议扩大核能和可再生能源，推动能源供应来源多元化。欧洲上周公布了对核能的新金融担保，中国发改委的一个部门表示要加快可再生能源转型，多个亚洲国家建议居民在家办公节约能源，日本一直在讨论重启闲置的核反应堆。中国因拥有充足的应急石油储备和较高的电气化率而受到的影响相对较小，电动汽车占中国国内新车销量的半数以上，电网中逾 50% 的电力来自可再生能源。

Недоплатили при увольнении. Участник китайской хакерской группы сдал подельников из-за обиды на низкий гонорар

Securitylab.ru

1 month ago

Как обворовать криптокошельки на семь миллионов и поссориться из-за премии.

White House pours cold water on cyber ‘letters of marque’ speculation

The Record

1 month ago

The Trump administration is not considering cyber “letters of marque” or allowing private companies to carry out cyberattacks on behalf of the U.S. government, senior White House officials said this week, pushing back on growing speculation about the role of industry in U.S. cyber operations.

Ядерный объект, одна ошибка, миллисекунды до трагедии — робот читает ваши мысли и останавливает руку над красной кнопкой

Securitylab.ru

1 month ago

Голосовые команды — слишком медленный способ предотвратить беду.

When tax season becomes cyberattack season: Phishing and malware campaigns using tax-related lures

Threat intelligence | Microsoft Security Blog

1 month ago

During tax season, threat actors reliably take advantage of the urgency and familiarity of time-sensitive emails, including refund notices, payroll forms, filing reminders, and requests from tax professionals, to push malicious attachments, links, or QR codes.

The post When tax season becomes cyberattack season: Phishing and malware campaigns using tax-related lures appeared first on Microsoft Security Blog.

Microsoft Threat Intelligence and Microsoft Defender Security Research Team

When tax season becomes cyberattack season: Phishing and malware campaigns using tax-related lures

Threat intelligence | Microsoft Security Blog

1 month ago

The post When tax season becomes cyberattack season: Phishing and malware campaigns using tax-related lures appeared first on Microsoft Security Blog.

Microsoft Threat Intelligence and Microsoft Defender Security Research Team

[Virtual Event] Shields Up: Key Technologies Reshaping Cybersecurity Defenses

darkreading

1 month ago

DragonForce

Dark Feed IO

1 month ago

You must login to view this content

cohenido

Russian hackers exploit Zimbra flaw in Ukrainian govt attacks

Bleeping Computer.

1 month ago

Hackers part of APT28, a state-backed threat group linked to Russia's military intelligence service (GRU), are exploiting a Zimbra Collaboration Suite (ZCS) vulnerability in attacks targeting Ukrainian government entities. [...]

Sergiu Gatlan

Intezer AI SOC removes MDR limits with autonomous triage and optimization

Help Net Security

1 month ago

Intezer has expanded capabilities in its AI SOC platform designed for teams who have outgrown their traditional managed detection and response (MDR) services. Internal SOC teams can now focus on supervising outcomes rather than grinding through alerts, with Intezer providing autonomous triage and investigation, continuous optimization for their SIEM and EDR detection rules and expert human support whenever needed. When internal teams lack the capacity to investigate alerts around the clock, they often turn to … More →

The post Intezer AI SOC removes MDR limits with autonomous triage and optimization appeared first on Help Net Security.

Industry News

Russian APT targets Ukraine via Zimbra XSS flaw CVE-2025-66376

Security Affairs

1 month ago

Russian APT exploits a critical XSS flaw in Zimbra, tracked as CVE-2025-66376, running scripts via HTML emails to target users in Ukraine. Russia-linked threat actor exploits a high-severity XSS vulnerability, tracked as CVE-2025-66376 (CVSS score of 7.2), in Zimbra Collaboration. Attackers exploited insufficiently sanitized HTML emails to run scripts when opened, targeting users in Ukraine. […]

Pierluigi Paganini

DarkSword: Researchers uncover another iOS exploit kit

Help Net Security

1 month ago

A powerful iPhone hacking toolkit dubbed “DarkSword” has been used since November 2025 to compromise devices by exploiting zero-day iOS vulnerabilities, Google researchers have shared. iOS vulnerabilities exploited by DarkSword Two weeks ago, Google Threat Intelligence Group (GTIG) and iVerify disclosed the existence of Coruna, a spy-grade iOS exploit kit that has been used in a commercial surveillance operation, by state-linked threat actors engaged in cyber espionage, and cybercriminals. While Coruna contains five full iOS … More →

The post DarkSword: Researchers uncover another iOS exploit kit appeared first on Help Net Security.

Zeljka Zorz

Aggregator

Managed ad