Aggregator

Cops Shutter Rebooted German Language Cybercrime Market

3 days 1 hour ago

Spanish Police Bust German Accused of Relaunching 'Crimenetwork' Cybercrime Forum
Spanish police have arrested a German national suspected of a string of cybercrime offenses, including remotely administering from the sunny island of Mallorca a relaunched version of "Crimenetwork," a German-language cybercrime market for stolen data, forged documents and drugs.

Tables Turned: Gentlemen Ransomware Group Suffers Data Leak

BankInfoSecurity.com

3 days 1 hour ago

Internal Communications Dumped Online, Revealing Fresh Victims, Repeat Tactics
Ransomware group The Gentlemen, a relative newcomer to the cybercrime scene, suffered a leak of its internal communications, revealing previously non-public victims, a variety of tactics, techniques and tools, and a relentless focus on popping backup and storage infrastructure.

INC

Dark Feed IO

3 days 2 hours ago

You must login to view this content

cohenido

Apple security advisory (AV26-446)

CCCS - Alerts and advisories

3 days 2 hours ago

Canadian Centre for Cyber Security

Qilin

Dark Feed IO

3 days 2 hours ago

You must login to view this content

cohenido

Texas sues Netflix over alleged data practices that create ‘surveillance machinery’ without user consent

The Record

3 days 2 hours ago

In addition to fines, Texas is asking a judge to prevent Netflix from illegally collecting and sharing user data and to mandate that the company no longer use autoplay by default on kids’ profiles.

Tech Can't Stop These Threats — Your People Can

darkreading

3 days 2 hours ago

Security controls can do only so much. Here are four attacks where your employees are usually your first, and only, line of cyber defense.

A. Stryker

JetBrains security advisory (AV26-445)

CCCS - Alerts and advisories

3 days 2 hours ago

Canadian Centre for Cyber Security

CMD

Dark Feed IO

3 days 2 hours ago

You must login to view this content

cohenido

iOS 26.5 is out, bringing encrypted RCS messaging to iPhone and Android users

Help Net Security

3 days 3 hours ago

Apple is bringing long-awaited end-to-end encryption to Rich Communication Services (RCS) messaging between iPhone and Android users in iOS 26.5. The feature is launching in beta for iPhone users running iOS 26.5 on supported carriers and Android users using the latest version of Google Messages. “When RCS messages are end-to-end encrypted, they can’t be read while they’re sent between devices,” Apple said. “Users will know that a conversation is end-to-end encrypted when they see a … More →

The post iOS 26.5 is out, bringing encrypted RCS messaging to iPhone and Android users appeared first on Help Net Security.

Sinisa Markovic

SAWTAD Allegedly Leaked Exposing 2,211 Files (2.19 GB) of SAW Sensor Diaper Tech R&D and SPMet Metrology Archive

Dark Web Informer - Cyber Threat Intelligence

3 days 3 hours ago

A threat actor is selling a full archive described as one of the deepest technical leaks in the field of Surface Acoustic Wave (SAW) sensors and their application in smart diapers (Smart Diaper / Wetness Sensing).

Dark Web Informer

Скачал с официального сайта — получил вирус. Разработчики JDownloader советуют переустановить ОС

Securitylab.ru

3 days 3 hours ago

Сайт JDownloader восстановил работу после отключения из-за взлома.

CVE-2026-45222 | steipete summarize up to 0.14.1 ~/.summarize/daemon.json permission assignment

VulDB Recent Entries

3 days 3 hours ago

A vulnerability was found in steipete summarize up to 0.14.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file ~/.summarize/daemon.json. Executing a manipulation can lead to incorrect permission assignment. This vulnerability appears as CVE-2026-45222. The attack requires local access. There is no available exploit. It is best practice to apply a patch to resolve this issue.

vuldb.com

CVE-2026-43968 | ninenines cowlib 2.6.0 crlf injection

VulDB Recent Entries

3 days 3 hours ago

A vulnerability has been found in ninenines cowlib 2.6.0 and classified as problematic. Affected is an unknown function. Performing a manipulation results in crlf injection. This vulnerability is reported as CVE-2026-43968. The attack is possible to be carried out remotely. No exploit exists. Applying a patch is the recommended action to fix this issue.

vuldb.com

CVE-2026-43969 | ninenines cowlib 2.9.0 crlf injection

VulDB Recent Entries

3 days 3 hours ago

A vulnerability, which was classified as problematic, was found in ninenines cowlib 2.9.0. This impacts an unknown function. Such manipulation leads to crlf injection. This vulnerability is documented as CVE-2026-43969. The attack needs to be performed locally. There is not any exploit available. It is advisable to implement a patch to correct this issue.

vuldb.com

CVE-2026-42866 | Alfredredbird tookie-osint up to 4.1fix modules/modules.py write_txt/write_csv/write_json/scan_file path traversal

VulDB Recent Entries

3 days 3 hours ago

A vulnerability, which was classified as critical, has been found in Alfredredbird tookie-osint up to 4.1fix. This affects the function write_txt/write_csv/write_json/scan_file of the file modules/modules.py. This manipulation causes path traversal. This vulnerability is registered as CVE-2026-42866. The attack needs to be launched locally. No exploit is available. It is advisable to upgrade the affected component.

vuldb.com

CVE-2026-45224 | openclaw crabbox up to 0.8.x /workspace path traversal

VulDB Recent Entries

3 days 3 hours ago

A vulnerability classified as critical was found in openclaw crabbox up to 0.8.x. The impacted element is an unknown function of the file /workspace. The manipulation results in path traversal. This vulnerability is cataloged as CVE-2026-45224. The attack must be initiated from a local position. There is no exploit available. Upgrading the affected component is advised.

vuldb.com

CVE-2026-42864 | ManoManoTech firefighter-incident up to 0.0.53 jira_bot httpx.get missing authentication

VulDB Recent Entries

3 days 3 hours ago

A vulnerability classified as critical has been found in ManoManoTech firefighter-incident up to 0.0.53. The affected element is the function httpx.get of the file /api/v2/firefighter/raid/jira_bot. The manipulation leads to missing authentication. This vulnerability is listed as CVE-2026-42864. The attack may be initiated remotely. There is no available exploit. It is recommended to upgrade the affected component.

vuldb.com

CVE-2026-45223 | openclaw crabbox up to 0.8.x verifyUserToken authentication spoofing

VulDB Recent Entries

3 days 3 hours ago

A vulnerability described as critical has been identified in openclaw crabbox up to 0.8.x. Impacted is the function verifyUserToken. Executing a manipulation can lead to authentication bypass by spoofing. This vulnerability is tracked as CVE-2026-45223. The attack can be launched remotely. No exploit exists. Upgrading the affected component is recommended.

vuldb.com

CVE-2026-42871 | LabRedesCefetRJ WeGIA up to 3.6.x familiar_docfamiliar.php information disclosure

VulDB Recent Entries

3 days 3 hours ago

A vulnerability marked as problematic has been reported in LabRedesCefetRJ WeGIA up to 3.6.x. This issue affects some unknown processing of the file atendido/familiar_docfamiliar.php. Performing a manipulation results in information disclosure. This vulnerability is identified as CVE-2026-42871. The attack can be initiated remotely. There is not any exploit available. It is suggested to upgrade the affected component.

vuldb.com

Aggregator

Managed ad