Aggregator

VECT 2.0 Ransomware Irreversibly Destroys Files Over 131KB on Windows, Linux, ESXi

The Hackers News
1 month 3 weeks ago
Threat hunters are warning that the cybercriminal operation known as VECT 2.0 acts more like a wiper than a ransomware due to a critical flaw in its encryption implementation across Windows, Linux, and ESXi variants that renders recovery impossible even for the threat actors. The fact that VECT's locker permanently destroys large files rather than encrypting them means even victims who opt to
The Hacker News

Signal Phishing Campaign Targets German Officials in Suspected Russian Operation

Security Affairs
1 month 3 weeks ago
Suspected Russian phishing via Signal targeted German officials, exploiting trust to access accounts and sensitive political communications. A new wave of cyber operations targeting European political leadership is once again highlighting how modern espionage increasingly relies on deception rather than technical exploits. Recent investigations by German authorities point to a large-scale phishing campaign conducted via […]
Pierluigi Paganini

CVE-2026-7319 | elinsky execution-system-mcp 0.1.0 add_action Tool server.py _get_context_file_path context path traversal

VulDB Recent Entries
1 month 3 weeks ago
A vulnerability has been found in elinsky execution-system-mcp 0.1.0 and classified as critical. The impacted element is the function _get_context_file_path of the file src/execution_system_mcp/server.py of the component add_action Tool. This manipulation of the argument context causes path traversal. This vulnerability is handled as CVE-2026-7319. The attack can be initiated remotely. Additionally, an exploit exists.
vuldb.com

Sevii unveils Cyber Swarm Defense Mode to stop AI-driven attacks at scale

Help Net Security
1 month 3 weeks ago

Sevii has unveiled a new capability designed to stop high-volume, AI-powered cyberattacks at machine speed and scale, without the burden of unpredictable AI token costs. Sevii’s Cyber Swarm Defense Mode (CSD) addresses a critical gap created by AI, namely the inability to sustain cyber performance and cost efficiency during large-scale, AI-driven attack swarms. As technologies like Mythos expand attack surfaces and compress the window between vulnerability discovery and exploitation, legacy security tools struggle to keep … More →

The post Sevii unveils Cyber Swarm Defense Mode to stop AI-driven attacks at scale appeared first on Help Net Security.

Industry News

Alleged Chinese hacker extradited to US over cyberattacks targeting COVID-19 research

Help Net Security
1 month 3 weeks ago

Chinese national Xu Zewei was extradited from Italy to the United States to face charges tied to an alleged cyber espionage campaign that breached thousands of computers worldwide. Xu is charged alongside Zhang Yu, who remains at large. According to court documents, officers of China’s Ministry of State Security (MSS), including its Shanghai State Security Bureau (SSSB), directed the hacking. Xu allegedly carried out the intrusions while working for Shanghai Powerock Network Co. Ltd., a … More →

The post Alleged Chinese hacker extradited to US over cyberattacks targeting COVID-19 research appeared first on Help Net Security.

Sinisa Markovic

Beyond “Best Effort”: Why Carrier Grade 5G Slicing Matters More Than Ever

Netscout
1 month 3 weeks ago
In today’s hyperconnected world, “best effort” is no longer good enough. Not for network operators. Not for enterprises. And certainly not for the high‑stakes environments where uptime equals revenue, safety, and customer trust. When a global Tier 1 carrier needed flawless network performance during a major stadium...
Agnes Mends-Crentsil

CVE-2026-7318 | elie mcp-project 0.1.0 research_server.py search_papers topic path traversal

VulDB Recent Entries
1 month 3 weeks ago
A vulnerability, which was classified as critical, was found in elie mcp-project 0.1.0. The affected element is the function search_papers of the file research_server.py. The manipulation of the argument topic results in path traversal. This vulnerability is known as CVE-2026-7318. Attacking locally is a requirement. Furthermore, an exploit is available. The project was informed of the problem early through an issue report but has not responded yet.
vuldb.com

CVE-2026-5781 | MphRx Minerva 3.6.0 Graphical User Interface /minerva/moUser/update Identifier improper authorization (EUVD-2026-26040)

VulDB Recent Entries
1 month 3 weeks ago
A vulnerability, which was classified as critical, has been found in MphRx Minerva 3.6.0. Impacted is an unknown function of the file /minerva/moUser/update of the component Graphical User Interface. The manipulation of the argument Identifier leads to improper authorization. This vulnerability is traded as CVE-2026-5781. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com

Managed ad