Aggregator

A critical vulnerability in Apache ActiveMQ has been disclosed, allowing attackers to inject malicious HTTP security headers through improperly handled message properties, potentially leading to cross-site scripting and response manipulation attacks in affected deployments. Tracked as CVE-2026-42253, the issue impacts both Apache ActiveMQ and Apache ActiveMQ Web components. The flaw originates from the MessageServlet within […]

The post Critical Apache ActiveMQ Vulnerability Allows Malicious Security Header Injections appeared first on Cyber Security News.

Ivanti has disclosed a high-severity vulnerability in its Ivanti Neurons for ITSM platform that could allow attackers with valid credentials to escalate privileges and gain full administrative access.  The flaw, tracked as CVE-2026-9614, affects both cloud and on-premises deployments and has been assigned a CVSS score of 8.8, indicating a significant security risk in enterprise […]

The post Ivanti ITSM Vulnerability Lets Attackers Gain Admin Privilege appeared first on Cyber Security News.

BI.ZONE: перепродажа бонусных баллов наносит бизнесу системный ущерб.

Researchers at the University of Toronto, the Vector Institute, and the University of Cambridge have built and tested a proof-of-concept AI-driven worm that does not operate on a fixed list of exploits. Instead, it analyzes each target it encounters, reasons about how to attack it, and creates a strategy on the fly, all with the help of a small, free large language model (LLM) running directly on machines it has already compromised. A worm that … More →

The post Autonomous AI-driven worm can reason its way through corporate networks appeared first on Help Net Security.

A Malware-as-a-Service (MaaS) operation named WeedHack is targeting Minecraft users and allows threat actors to gain remote access to victims’ screens, webcams, and files through a web-based dashboard, McAfee researchers found. Minecraft, developed by Mojang Studios and released in 2011, is one of the best-selling video games of all time, with more than 350 million copies sold worldwide. Since January 2026, the campaign has infected more than 116,000 systems and continues to add between 2,000 … More →

The post Malware campaign targeting Minecraft users infects over 116,000 systems appeared first on Help Net Security.

A high-severity CRLF injection vulnerability in the Laravel framework, tracked as CVE-2026-48019, could allow attackers to interfere with outbound email processing in affected applications. The issue impacts Laravel versions up to 13.9.0 and versions before 12.60.0, and has been patched in 13.10.0 and 12.60.0. The vulnerability stems from improper neutralization of carriage return and line […]

The post Laravel CRLF Injection Vulnerability Enables an Attacker to Interfere with Outbound Email Processing appeared first on Cyber Security News.

Microsoft привезла Unix прямо в Windows.

A prompt injection flaw in Google Gemini's voice assistant let attackers hide malicious commands in notifications, enabling social engineering and more.

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.

• CVE-2026-45247 Mirasvit Full Page Cache Warmer Deserialization of Untrusted Data Vulnerability

This type of vulnerability is a frequent attack vector for malicious cyber actors and poses significant risks to the federal enterprise.

Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the KEV Catalog as a living list of known Common Vulnerabilities and Exposures (CVEs) that carry significant risk to the federal enterprise. BOD 22-01 requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information.

Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of KEV Catalog vulnerabilities as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the catalog that meet the specified criteria.

The Fragmented State of Modern Enterprise Identity Enterprise IAM is approaching a breaking point. As organizations scale, identity becomes increasingly fragmented across thousands of applications, decentralized teams, machine identities, and autonomous systems. The result is Identity Dark Matter: identity activity that sits outside the visibility of centralized IAM and beyond the reach of

本文分析 Red Hat Cloud Services 组织下 32 个 npm 包遭供应链投毒事件，还原其多阶段攻击链，并揭示其具备凭据窃取、GitHub/npm 自传播、持久化及防护对抗等能力。

Hackers are hiding dangerous malware inside what look like popular Minecraft mods and game clients, using YouTube videos and search engine tricks to pull unsuspecting players into their trap. The campaign, known as WeedHack, has been quietly running since January 2026 and has already racked up over 116,000 victims worldwide. What makes this campaign particularly […]

The post Hackers Use YouTube and SEO Poisoning to Spread WeedHack Minecraft Malware appeared first on Cyber Security News.

与其坐以待毙，不如训练自己（的模型）

Китайский ИИ ищет преступника до преступления.

Acer is working to address two maximum-severity zero-day vulnerabilities affecting its Wave 7 mesh routers. [...]

Alcasec, the "Robin Hood of Spanish Hackers," is jailed for 31 months after admitting to stealing and selling Spanish citizens' banking data.

Человек не заметит подвох, пока машина безвозвратно не удалит все файлы.