Aggregator

The U.S. Federal Bureau of Investigation (FBI) warned the transportation and logistics industry of a sharp rise in cyber-enabled cargo theft, with estimated losses in the United States and Canada reaching nearly $725 million in 2025. [...]

A vulnerability classified as problematic has been found in Open5GS up to 2.7.7. This issue affects the function amf_namf_callback_handle_sdm_data_change_notify of the file /namf-callback/v1/{id}/sdmsubscription-notify of the component AMF SBI Endpoint. This manipulation of the argument changeItem.newValue causes denial of service. This vulnerability is handled as CVE-2026-7518. The attack can be initiated remotely. Additionally, an exploit exists. The project was informed of the problem early through an issue report but has not responded yet.

Submit #804096 / VDB-360333

In yet another software supply chain attack, threat actors have managed to compromise the popular Python package Lightning to push two malicious versions to conduct credential theft. According to Aikido Security, OX Security, Socket, and StepSecurity, the two malicious versions are versions 2.6.2 and 2.6.3, both of which were published on April 30, 2026. The campaign is assessed to be an

Безопасность архивов теперь зависит исключительно от скорости установки обновлений.

The minor was taken into police custody on April 25 on suspicion of involvement in a data breach affecting the National Agency for Secure Documents (ANTS), which processes applications for passports, national identity cards, residence permits and driver’s licenses.

A vulnerability described as problematic has been identified in U-SPEED N300 Router 1.0.0. This vulnerability affects unknown code of the component API Endpoint. The manipulation results in cross-site request forgery. This vulnerability is known as CVE-2026-36960. It is possible to launch the attack remotely. No exploit is available.

A vulnerability marked as critical has been reported in Krayin CRM 2.1.5. This affects an unknown part of the component Compose Email Handler. The manipulation leads to privilege escalation. This vulnerability is traded as CVE-2026-36340. It is possible to initiate the attack remotely. There is no exploit available. It is suggested to upgrade the affected component.

Submit #804023 / VDB-360332

A vulnerability labeled as problematic has been found in Progress MOVEit Automation up to 2024.1.7/2025.0.8/2025.1.4. Affected by this issue is some unknown functionality. Executing a manipulation can lead to improper input validation. This vulnerability appears as CVE-2026-5174. The attack may be performed from remote. There is no available exploit. The affected component should be upgraded.

A vulnerability identified as very critical has been detected in Progress MOVEit Automation up to 2024.1.7/2025.0.8. Affected by this vulnerability is an unknown functionality. Performing a manipulation results in authentication bypass by primary weakness. This vulnerability is reported as CVE-2026-4670. The attack is possible to be carried out remotely. No exploit exists. You should upgrade the affected component.

A vulnerability categorized as problematic has been discovered in RTI Connext Professional. Affected is an unknown function. Such manipulation leads to xml external entity reference. This vulnerability is documented as CVE-2025-14543. The attack needs to be performed locally. There is not any exploit available. It is advisable to upgrade the affected component.

A vulnerability was found in RafyMrX TOKO-ONLINE-ROTI 1.0. It has been rated as problematic. This impacts an unknown function of the file detail_produk.php. This manipulation causes cross site scripting. This vulnerability is registered as CVE-2026-38940. Remote exploitation of the attack is possible. No exploit is available.

A vulnerability was found in andrewtch88 mvc-ecommerce 1.0. It has been declared as problematic. This affects an unknown function of the file product_catalogue.php. The manipulation results in cross site scripting. This vulnerability is cataloged as CVE-2026-38939. The attack may be launched remotely. There is no exploit available.

Qilin ransomware is one of the most active and damaging threats in the cyber landscape today. The group has steadily evolved its tactics since it first appeared in 2022, and its latest technique of enumerating Remote Desktop Protocol (RDP) authentication history on compromised servers gives it a fast, quiet way to map out a network […]

The post Qilin Ransomware Enumerates RDP Authentication History on a Compromised Server appeared first on Cyber Security News.

Думали, дарвиновский отбор работает только на живых существ? Зря.

Suspects accused of distributing malware and selling access to stolen Roblox accounts on Russian marketplaces

今日暂未更新资讯~
更多最新文章，请访问SecWiki

2026 年 4 月 30 日下午 8 点 50，墨菲安全研发的通用安全AI Agent 墨思监测发现，月下载量超1000万的 AI 训练框架 Lightning / PyTorch Lightning 的 PyPI 包遭遇供应链投毒，且截至发现时投毒版本仍未下架。

A large-scale phishing campaign is actively targeting organizations across the United States, using fake event invitations to deceive employees into handing over their corporate login credentials. The operation is wide in reach and strikes some of the most sensitive sectors in the country, including banking, government, technology, and healthcare, pointing to a deliberate effort to […]

The post Targeted Large-Scale Campaign Attacking U.S. Organizations with Fake Event Invitations appeared first on Cyber Security News.