Aggregator

GoFlateLoader Uses Massive PE Overlay to Deliver Lumma, Vidar, and StealC Infostealers

Cyber Security News
1 week 5 days ago

A new malware loader called GoFlateLoader has been quietly spreading across the internet, and what makes it stand out is not how complex it is but how effective a simple trick has made it. Written in the Go programming language, this loader has one job: to decode and drop dangerous information-stealing programs onto a victim’s […]

The post GoFlateLoader Uses Massive PE Overlay to Deliver Lumma, Vidar, and StealC Infostealers appeared first on Cyber Security News.

Tushar Subhra Dutta

CVE-2026-11956 | TwiN gatus 5.36.0 OIDC Session Cookie security/oidc.go setSessionCookie missing secure attribute (Issue 1689 / EUVD-2026-36236)

Vuldb Updates
1 week 5 days ago
A vulnerability classified as problematic was found in TwiN gatus 5.36.0. Impacted is the function setSessionCookie of the file security/oidc.go of the component OIDC Session Cookie Handler. Executing a manipulation can lead to sensitive cookie without secure attribute. This vulnerability is tracked as CVE-2026-11956. The attack can be launched remotely. No exploit exists. The reported GitHub issue was closed with the label "not planned".
vuldb.com

CVE-2026-11561 | Soagen Apinizer up to 2026.04.5 Expression Language Statement expression language injection (EUVD-2026-36238)

Vuldb Updates
1 week 5 days ago
A vulnerability marked as problematic has been reported in Soagen Apinizer up to 2026.04.5. Affected by this vulnerability is an unknown functionality of the component Expression Language Statement Handler. This manipulation causes improper neutralization of special elements used in an expression language statement. This vulnerability is handled as CVE-2026-11561. The attack can be initiated remotely. There is not any exploit available. It is suggested to upgrade the affected component.
vuldb.com

CVE-2026-38581 | damasac thaipalliative_lte up to 3.0 /substudy/ezform.php idFormMain sql injection (EUVD-2026-36241)

Vuldb Updates
1 week 5 days ago
A vulnerability classified as critical has been found in damasac thaipalliative_lte up to 3.0. This affects an unknown part of the file /substudy/ezform.php. Performing a manipulation of the argument idFormMain results in sql injection. This vulnerability was named CVE-2026-38581. The attack may be initiated remotely. There is no available exploit.
vuldb.com

CVE-2026-8406 | OS4ED openSIS-Classic 9.3 Messaging SentMail.php authorization (EUVD-2026-36245)

Vuldb Updates
1 week 5 days ago
A vulnerability, which was classified as problematic, has been found in OS4ED openSIS-Classic 9.3. This issue affects some unknown processing of the file modules/messaging/SentMail.php of the component Messaging Module. The manipulation leads to authorization bypass. This vulnerability is referenced as CVE-2026-8406. Remote exploitation of the attack is possible. No exploit is available. It is suggested to install a patch to address this issue.
vuldb.com

CVE-2026-11816 | keras-team keras up to 3.13.x Archive Extraction file_utils.py filter_safe_tarinfos path traversal (EUVD-2026-36244)

Vuldb Updates
1 week 5 days ago
A vulnerability, which was classified as critical, was found in keras-team keras up to 3.13.x. Impacted is the function filter_safe_tarinfos of the file keras/src/utils/file_utils.py of the component Archive Extraction Handler. The manipulation results in path traversal. This vulnerability is identified as CVE-2026-11816. The attack can be executed remotely. There is not any exploit available. You should upgrade the affected component.
vuldb.com

CVE-2026-10847 | Check Point Identity Agent prior 81.087.0000 on Windows uncontrolled search path (EUVD-2026-36247)

Vuldb Updates
1 week 5 days ago
A vulnerability was found in Check Point Identity Agent on Windows. It has been classified as problematic. This affects an unknown function. Performing a manipulation results in uncontrolled search path. This vulnerability is cataloged as CVE-2026-10847. The attack must be initiated from a local position. There is no exploit available. Upgrading the affected component is recommended.
vuldb.com

Critical Langflow Vulnerability Exploited to Execute Malicious Code

Cyber Security News
1 week 5 days ago

A critical security vulnerability in Langflow, tracked as CVE-2026-5027, is raising serious concerns after researchers confirmed that attackers can exploit the flaw to execute malicious code on affected systems. The issue stems from improper input validation in the application’s file upload functionality, which allows path-traversal attacks that can lead to arbitrary file writes. The vulnerability […]

The post Critical Langflow Vulnerability Exploited to Execute Malicious Code appeared first on Cyber Security News.

Abinaya

The Gentlemen Ransomware Claims 478 Victims, Can Spread Like a Worm

The Hackers News
1 week 5 days ago
A new analysis of The Gentlemen operation has revealed that the financially motivated threat group initially operated as an affiliate responsible for conducting double extortion attacks, while leveraging resources from various ransomware-as-a-service (RaaS) schemes like LockBit (aka Tenacious Mantis), Qilin (aka Pestilent Mantis), and Medusa (aka Venomous Mantis). According to a detailed report
The Hacker News

Cyber Force not included in Senate defense policy roadmap

The Record
1 week 5 days ago
An amendment by Sen. Kirsten Gillibrand (D-NY) to the chamber’s fiscal 2027 national defense authorization bill that would have created the digital-focused service was defeated 14-13 when the Senate Armed Services Committee took up the nearly $1.2 trillion legislation behind closed doors this week.

Hackers Abuse SniperDz PhaaS Ecosystem for Brand Impersonation and Browser Hijacking

Cyber Security News
1 week 5 days ago

A sophisticated Phishing-as-a-Service (PhaaS) platform called SniperDz has been quietly enabling a wide range of online fraud that goes far beyond basic credential theft. The platform provides cybercriminals with a ready-made toolkit to run convincing scams at scale, targeting victims across the Middle East and North Africa through social media platforms like Facebook and Instagram. […]

The post Hackers Abuse SniperDz PhaaS Ecosystem for Brand Impersonation and Browser Hijacking appeared first on Cyber Security News.

Tushar Subhra Dutta

Researcher Hacked Google Using AI and Earned $500,000 Bug Bounty

Cyber Security News
1 week 5 days ago

A security researcher known as brutecat has disclosed how an AI-driven fuzzing pipeline uncovered more than $500,000 in vulnerabilities across Google’s infrastructure in under three months, exposing systemic access-control failures hidden inside roughly 1,500 APIs. The researcher began by targeting Google’s discovery documents machine-readable API specifications, similar to Swagger docs, that list all available endpoints, parameters, and […]

The post Researcher Hacked Google Using AI and Earned $500,000 Bug Bounty appeared first on Cyber Security News.

Guru Baran

东亚最高的树

Solidot
1 week 5 days ago
研究人员在台大安溪附近发现了东亚已知最高的树,他们根据金庸小说将其命名为大安溪倚天劍。倚天劍高 84.1 米,树龄约一千年。世界上已知最高的树是加州红杉国家公园的 Hyperion,其高度约 116 米。台湾约 60% 的面积被森林覆盖,岛上估计有 9.5 亿棵树,其中有很多参天巨树。研究团队使用传统方法测量了倚天劍的高度:爬上树,从树顶垂下卷尺。

Managed ad