Aggregator
CVE-2026-2587 | Eclipse Glassfish up to 7.0.x/8.0.0 Gadget expression language injection
CVE-2026-2586 | Eclipse Glassfish 7.1.0/8.0.0 Administration Console code injection (EUVD-2026-30939)
Hackers Hijacking Four-Faith Industrial Routers for Botnet Activity
Hackers are actively exploiting Four-Faith industrial routers to build botnets, leveraging a critical vulnerability identified as CVE-2024-9643. Security researchers from CrowdSec report a sharp rise in exploitation attempts targeting these devices, signaling a shift from initial probing to large-scale abuse. CVE-2024-9643 is a critical authentication bypass flaw affecting Four-Faith F3x36 industrial cellular routers. The vulnerability […]
The post Hackers Hijacking Four-Faith Industrial Routers for Botnet Activity appeared first on Cyber Security News.
Compromised GitHub Action Exfiltrates Workflow Credentials to Attacker Domain
A widely used GitHub Action called actions-cool/issues-helper has been compromised, with every version tag in the repository silently redirected to a malicious commit. The attack places stolen CI/CD pipeline credentials directly in the hands of an attacker, raising serious concerns for development teams around the world that rely on this action in their automated workflows. […]
The post Compromised GitHub Action Exfiltrates Workflow Credentials to Attacker Domain appeared first on Cyber Security News.
Exposing Fox Tempest: A malware-signing service operation
Fox Tempest is a financially motivated threat actor operating a malware‑signing‑as‑a‑service (MSaaS) used by other cybercriminals, including Vanilla Tempest and Storm groups, to more effectively distribute malicious code, including ransomware.
The post Exposing Fox Tempest: A malware-signing service operation appeared first on Microsoft Security Blog.
RALord
You must login to view this content
Critical Apache Flink Vulnerability Enables Remote code execution Attacks
A newly disclosed critical vulnerability in Apache Flink, tracked as CVE-2026-35194, exposes distributed data processing environments to remote code execution (RCE) attacks via SQL injection flaws in the platform’s code generation engine. The flaw lies in Apache Flink’s SQL code-generation mechanism, where user-supplied input is improperly sanitized before being embedded in dynamically generated Java code. This […]
The post Critical Apache Flink Vulnerability Enables Remote code execution Attacks appeared first on Cyber Security News.
Слежка за близкими стала индустрией. Касперский оценил рынок киберсталкинга
Microsoft disrupts cybercrime service that abused software verification systems en masse
Fox Tempest, a financially-motivated threat group, allowed ransomware operators and other cybercriminals to slip malware-laced software past security controls.
The post Microsoft disrupts cybercrime service that abused software verification systems en masse appeared first on CyberScoop.
Microsoft Takes Down Fox Tempest for Providing Ransomware-Enabling Signing Tool
DirtyDecrypt PoC Released for Linux Kernel CVE-2026-31635 LPE Vulnerability
[Control systems] CISA ICS security advisories (AV26–475)
答读者来信
【课程】图片拍摄地点分析方法与技术1-3(含视频)
New Shai-Hulud malware wave compromises 600 npm packages
Дешёвая ракета против дешёвого дрона. Армия США ищет перехватчик стоимостью меньше миллиона долларов
7-Eleven confirms data breach claimed by the ShinyHunters gang
Qilin
You must login to view this content