Lamashtu
You must login to view this content
Aggregator
Lamashtu
3 days 7 hours ago
You must login to view this content
cohenido
Broadcom VMware security advisory (AV26-444)
3 days 7 hours ago
Canadian Centre for Cyber Security
Попросили включить экран — и получили доступ к сети. Иранские шпионы освоили корпоративные чаты — и это работает
3 days 7 hours ago
Разбираем по шагам новую схему иранских хакеров.
FCC pushes ban on security updates for foreign-made routers, drones to 2029
3 days 7 hours ago
The router deadline, originally slated for March 1, 2027, has been pushed back to at least January 1, 2029, according to the announcement from the FCC’s Office of Engineering and Technology (OET).
96% случаев шантажа в тестах. Anthropic рассказала, как отучила Claude угрожать людям ради выживания
3 days 7 hours ago
Anthropic раскрыла неожиданный метод борьбы с манипулятивным поведением моделей.
Brain Cipher
3 days 8 hours ago
You must login to view this content
cohenido
Zimperium Mobile App Response Agent helps security teams counter mobile attacks
3 days 8 hours ago
Zimperium launched Mobile App Response Agent, enabling security teams to respond faster than ever before to fraud and security threats. Leveraging Zimperium’s expertise in mobile security, Mobile App Response Agent is part of Zimperium’s Mobile App Protection Suite (MAPS), empowering SOC and fraud teams to assess attacks on their mobile app before they result in fraud or a breach by reducing the time required for investigation, confirmation and response from hours or days, to just … More →
The post Zimperium Mobile App Response Agent helps security teams counter mobile attacks appeared first on Help Net Security.
Industry News
Google Threat Intelligence Group Reports First Known AI-Developed Zero-Day Exploit
3 days 8 hours ago
Google's Threat Intelligence Group has documented what it describes as the first confirmed instance of threat actors leveraging artificial intelligence to engineer a zero-day exploit, marking a significant escalation in how AI is being weaponized for cyberattacks.
Dark Web Informer
CVE-2026-8349 | omec-project amf up to 2.1.1 NGAP Message memory corruption (Issue 672)
3 days 8 hours ago
A vulnerability was found in omec-project amf up to 2.1.1. It has been declared as problematic. This vulnerability affects unknown code of the component NGAP Message Handler. Executing a manipulation can lead to memory corruption.
This vulnerability is tracked as CVE-2026-8349. The attack can be launched remotely. Moreover, an exploit is present.
It is best practice to apply a patch to resolve this issue.
vuldb.com
CVE-2026-8346 | D-Link DIR-816 1.10CNB05_R1B011D88210 portForward ip_address command injection
3 days 8 hours ago
A vulnerability was found in D-Link DIR-816 1.10CNB05_R1B011D88210. It has been classified as critical. This affects the function portForward. Performing a manipulation of the argument ip_address results in command injection.
This vulnerability is identified as CVE-2026-8346. The attack can be initiated remotely. Additionally, an exploit exists.
vuldb.com
CVE-2026-8345 | D-Link DIR-816 1.10CNB05_R1B011D88210 singlePortForward sub_445E7C ip_address command injection
3 days 8 hours ago
A vulnerability was found in D-Link DIR-816 1.10CNB05_R1B011D88210 and classified as critical. Affected by this issue is the function sub_445E7C of the file /goform/singlePortForward. Such manipulation of the argument ip_address leads to command injection.
This vulnerability is referenced as CVE-2026-8345. It is possible to launch the attack remotely. Furthermore, an exploit is available.
vuldb.com
CVE-2026-8344 | D-Link DIR-816 1.10CNB05_R1B011D88210 /goform/formDMZ.cgi sub_445E7C command injection
3 days 8 hours ago
A vulnerability has been found in D-Link DIR-816 1.10CNB05_R1B011D88210 and classified as critical. Affected by this vulnerability is the function sub_445E7C of the file /goform/formDMZ.cgi. This manipulation causes command injection.
The identification of this vulnerability is CVE-2026-8344. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
vuldb.com
Submit #811475: Linux Foundation Projects SD-Core 2.1.1 Memory Corruption [Accepted]
3 days 8 hours ago
Submit #811475 / VDB-362663
shovon0203
Submit #811380: D-Link DIR816 DIR-816A2_FWv1.10CNB05_R1B011D88210.img Command Injection [Accepted]
3 days 8 hours ago
Submit #811380 / VDB-362662
stksgg
Submit #811379: D-Link DIR816 DIR-816A2_FWv1.10CNB05_R1B011D88210.img Command Injection [Accepted]
3 days 8 hours ago
Submit #811379 / VDB-362661
stksgg
Submit #811378: D-Link DIR 878 DIR-816A2_FWv1.10CNB05_R1B011D88210.img Command Injection [Accepted]
3 days 8 hours ago
Submit #811378 / VDB-362660
stksgg
Red Hat extends open source technology into space
3 days 8 hours ago
Red Hat and Voyager Technologies announced the successful deployment of Red Hat Enterprise Linux 10.1 and Red Hat Universal Base Image (UBI) to Voyager’s LEOcloud Space Edge IaaS Micro Datacenter aboard the International Space Station (ISS). This collaboration extends a container-optimized, enterprise Linux platform into orbit, providing a more consistent and hardened operating foundation for AI-ready workloads to run in space. The milestone advances the evolution of space-based cloud services and orbital data centers (ODCs), … More →
The post Red Hat extends open source technology into space appeared first on Help Net Security.
Industry News
Spring security advisory (AV26-443)
3 days 8 hours ago
Canadian Centre for Cyber Security
针对wasm反CFF的尝试
3 days 8 hours ago
本文简单探索针对wasm反CFF的技术方案,提供测试用例及PoC。