Aggregator

Also: CISA Protocol Concerns, AI Agents Push Past Cybersecurity Controls
In this week's panel, four ISMG editors unpacked the cyber dimensions of the Stryker attack amid the escalating Iran-Israel-U.S. tensions, the growing controversy around CISA leadership and alleged protocol breaches, and a new set of concerns related to AI agents bypassing security controls.

New Handala Site Is Also Available
U.S. federal agents seized four web domains associated with Iranian hacking operations days after a threat actor going by Handala posted screenshots it said came from inside the IT systems of medical device manufacturer Stryker. The registrars used to create them are located in the United States.

A vulnerability, which was classified as critical, has been found in doobidoo mcp-memory-service up to 10.25.0. Impacted is an unknown function of the component HTTP Dashboard. The manipulation leads to permissive cross-domain policy with untrusted domains. This vulnerability is referenced as CVE-2026-33010. Remote exploitation of the attack is possible. No exploit is available. It is advisable to upgrade the affected component.

A vulnerability was found in MariaDB Server up to 11.4.9/11.8.5/12.2.1. It has been classified as critical. This impacts the function JSON_SCHEMA_VALID. Performing a manipulation results in heap-based buffer overflow. This vulnerability is cataloged as CVE-2026-32710. It is possible to initiate the attack remotely. There is no exploit available. Upgrading the affected component is recommended.

A vulnerability classified as critical was found in GenericMappingTools gmt up to 6.6.0. This issue affects the function gmt_remote_dataset_id of the file src/gmt_remote.c. Executing a manipulation can lead to stack-based buffer overflow. The identification of this vulnerability is CVE-2026-33147. The attack can only be executed locally. There is no exploit available. A patch should be applied to remediate this issue.

A vulnerability, which was classified as critical, was found in GPAC. The affected element is the function gf_xml_parse_bit_sequence_bs of the file utils/xml_bin_custom.c of the component MP4Box. The manipulation results in out-of-bounds write. This vulnerability is identified as CVE-2026-33144. The attack can be executed remotely. There is not any exploit available. It is advisable to implement a patch to correct this issue.

A vulnerability was found in libfuse up to 3.18.1. It has been classified as problematic. Affected by this issue is the function incorrectly of the file /dev/fuse. The manipulation leads to null pointer dereference. This vulnerability is listed as CVE-2026-33179. The attack must be carried out locally. There is no available exploit. Upgrading the affected component is recommended.

A vulnerability categorized as critical has been discovered in cryptomator up to 2.8.2 on iOS. This issue affects some unknown processing of the file vault.cryptomator of the component API Endpoint. Such manipulation leads to origin validation error. This vulnerability is documented as CVE-2026-32318. The attack can be executed remotely. There is not any exploit available. It is advisable to upgrade the affected component.

A vulnerability classified as critical has been found in blakeblackshear frigate up to 0.16.2. This impacts an unknown function of the file /ffprobe of the component HTTP Request Handler. This manipulation causes server-side request forgery. This vulnerability is handled as CVE-2026-33126. The attack can be initiated remotely. There is not any exploit available. It is recommended to upgrade the affected component.

嗯，用户让我帮忙总结一下这篇文章的内容，控制在一百个字以内。首先，我需要仔细阅读文章，抓住主要信息。 文章主要讲的是内存价格高涨，导致微软决定优化Windows 11的性能，减少系统对内存的占用。这样用户就能运行更多的应用程序了。微软的目标是让Windows 11在中低端设备上也能流畅运行，特别是8GB内存的PC。 接下来，微软在博客中提到会提高内存效率，降低基本内存占用，并且在高负载下保持性能稳定。他们还计划将WebView2应用换成原生框架，这样能节省内存并提升响应速度。 好的，现在我要把这些信息浓缩到100字以内。要涵盖内存价格影响、微软优化措施、目标设备类型以及具体优化方法。 可能的结构是：内存价格高涨促使微软优化Windows 11，减少内存占用以支持更多应用运行。目标是让中低端设备流畅运行，尤其是8GB内存PC。优化措施包括提高内存效率、降低系统占用，并将WebView2替换为原生框架以节省资源。 检查一下字数是否合适，确保不超过限制。可能还需要调整用词使其更简洁明了。 内存价格高涨促使微软优化Windows 11性能，减少系统对内存的占用以支持更多应用运行。目标是让中低端设备流畅运行，尤其是8GB内存PC。微软将提高内存效率、降低系统占用，并将WebView2替换为原生框架以节省资源。

好，我现在需要帮用户总结一篇文章的内容，控制在100字以内。用户的要求很明确，不需要特定的开头，直接写文章描述即可。首先，我得仔细阅读文章内容，抓住主要信息。 文章讲的是美国国防部计划将Palantir公司的Maven AI系统列为美军的核心系统。副部长范伯格在3月9日的信中提到，这一决定是为了让Maven的技术在军队中广泛应用，并获得长期资金支持。预计今年9月正式生效。Maven系统用于分析战场数据和识别目标，已经在对伊朗的行动中协助了数千次精准打击。监管权将在30天内转移至五角大楼的首席数字人工智能办公室，未来合同由陆军负责。 接下来，我需要把这些要点浓缩到100字以内。要确保涵盖主要信息：国防部的计划、Maven系统的功能、应用情况、时间安排以及监管权的变化。 可能会这样组织句子：美国国防部计划将Palantir的Maven AI系统列为美军核心系统，以确保其广泛使用和长期资金支持。该系统已协助美军对伊朗实施精准打击，并将在9月正式生效。监管权将转移至五角大楼办公室。 这样大概在100字左右，涵盖了关键点。 美国国防部计划将Palantir的Maven AI系统列为美军核心系统，以确保其广泛使用和长期资金支持。该系统已协助美军对伊朗实施精准打击，并将在9月正式生效。监管权将转移至五角大楼办公室。

A vulnerability was found in NickeManarin ScreenToGif up to 2.42.1. It has been declared as problematic. Affected is an unknown function in the library version.dll. Executing a manipulation can lead to untrusted search path. This vulnerability is registered as CVE-2026-33156. The attack needs to be launched locally. No exploit is available.

A vulnerability classified as problematic was found in Effect-TS effect up to 3.19.x. Affected is the function RpcServer.toWebHandler/HttpApp.toWebHandlerRuntime of the component API Call Handler. Such manipulation leads to race condition. This vulnerability is uniquely identified as CVE-2026-32887. The attack can be launched remotely. No exploit exists. Upgrading the affected component is advised.

A vulnerability was found in SyncFusion 30.1.37 and classified as problematic. This vulnerability affects unknown code of the component Document-Editor. The manipulation results in cross site scripting. This vulnerability is identified as CVE-2025-63260. The attack can be executed remotely. There is not any exploit available.

A vulnerability classified as critical was found in sigmade Git-MCP-Server up to 785aa159f262a02d5791a5d8a8e13c507ac42880. Affected by this vulnerability is the function child_process.exec of the file src/gitUtils.ts of the component show_merge_diff/quick_merge_summary/show_file_diff. The manipulation results in os command injection. This vulnerability is cataloged as CVE-2026-4496. The attack must be initiated from a local position. Furthermore, there is an exploit available. This product operates on a rolling release basis, ensuring continuous delivery. Consequently, there are no version details for either affected or updated releases. It is advisable to implement a patch to correct this issue. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability, which was classified as critical, has been found in Totolink WA300 5.2cu.7112_B20190227. Affected by this issue is the function recvUpgradeNewFw of the file /cgi-bin/cstecgi.cgi. This manipulation causes os command injection. This vulnerability is registered as CVE-2026-4497. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

A vulnerability labeled as problematic has been found in GNU C Library up to 2.43. Affected by this vulnerability is the function gethostbyaddr_r of the file nsswitch.conf. The manipulation results in out-of-bounds read. This vulnerability is known as CVE-2026-4437. It is possible to launch the attack remotely. No exploit is available.

A vulnerability described as critical has been identified in AWStats 8.0. This affects the function Open. The manipulation results in command injection. This vulnerability is known as CVE-2025-63261. It is possible to launch the attack remotely. No exploit is available.

A vulnerability marked as problematic has been reported in GNU C Library up to 2.43. Affected by this issue is the function gethostbyaddr/gethostbyaddr_r of the file nsswitch.conf. This manipulation causes improper input validation. This vulnerability is handled as CVE-2026-4438. The attack can be initiated remotely. There is not any exploit available.

A vulnerability marked as problematic has been reported in BrowserCompany of New York ArcSearch up to 1.12.6 on Android. The impacted element is an unknown function of the component Web Handler. The manipulation leads to improper restriction of rendered ui layers. This vulnerability is traded as CVE-2026-2378. It is possible to initiate the attack remotely. There is no exploit available. It is suggested to upgrade the affected component.