Aggregator

A vulnerability categorized as very critical has been discovered in aquasecurity trivy-vscode-extension 1.8.12. The affected element is an unknown function. Such manipulation leads to embedded malicious code. This vulnerability is uniquely identified as CVE-2026-28353. The attack can be launched remotely. No exploit exists.

A vulnerability marked as problematic has been reported in Chamilo LMS up to 1.11.33. This impacts an unknown function. The manipulation leads to cross site scripting. This vulnerability is referenced as CVE-2025-55208. Remote exploitation of the attack is possible. No exploit is available. It is suggested to upgrade the affected component.

A vulnerability described as problematic has been identified in perfood couch-auth 0.26.0. This affects an unknown part. Such manipulation leads to observable timing discrepancy. This vulnerability is referenced as CVE-2025-70949. It is possible to launch the attack remotely. No exploit is available.

A vulnerability has been found in fedora-python lxml_html_clean up to 0.4.3 and classified as problematic. The affected element is the function lxml_html_clean. The manipulation leads to escaping of output. This vulnerability is traded as CVE-2026-28350. It is possible to initiate the attack remotely. There is no exploit available. The affected component should be upgraded.

Armadin has raised $189.9 million in Seed and Series A funding. Led by Accel, with participation from Google Ventures, Kleiner Perkins, Menlo Ventures, In-Q-Tel, and follow-on investment from 8VC and Ballistic Ventures, this marks the largest combined Seed and Series A funding round in cybersecurity history. Armadin’s mission is to prepare organizations for the speed and scale of AI-driven threats. Closing the hyperattack gap AI-powered attackers are launching faster, more complex campaigns that overwhelm security … More →

The post Armadin secures $189.9 million to counter AI-driven cyber threats appeared first on Help Net Security.

Что делать, если искусственный интеллект вышел из-под контроля.

当一只老鼠开始奔跑，某种变化便悄然发生。不是那些显而易见的变化——加速的心跳、升温的肌肉、爪子击打跑轮的节奏声——而是更为安静的某种事物。它起始于肠道盘旋的幽暗之处，借由血液与生化信号，一路传递至海马体。那是一片海马形状的薄薄组织，记忆在此成形，情绪在此扎根。发表《脑医学》的一项新研究，已开始绘制这段隐秘的旅程。研究者的发现表明，运动激活了肠道细菌与大脑之间的分子联系。研究考察了成年雄性 Sprague-Dawley 大鼠在自由使用跑轮八周后，其肠道微生物群、循环代谢物及海马基因表达所发生的变化。研究团队发现，运动降低了两种细菌属的相对丰度：Alistipes 与 Clostridium，二者均与色氨酸代谢相关。色氨酸是一种必需氨基酸，也是血清素的前体，在肠-脑信号传导中具有重要地位。

ANY.RUN’s analysts are observing a sharp increase in phishing activity abusing Microsoft’s OAuth Device Code flow, with more than 180 phishing URLs detected in just one week. This technique represents a shift from credential phishing to token-based account takeover, making detection significantly harder for many SOC teams.  Key Takeaways  How the Attack Works  In this campaign, attackers abuse Microsoft’s device […]

The post OAuth Device Code Phishing: A New Microsoft 365 Account Breach Vector appeared first on ANY.RUN's Cybersecurity Blog.

Seven minors who distributed online programs designed to facilitate DDoS attacks have been identified by Poland’s Central Bureau for Combating Cybercrime (CBZC). They were between 12 and 16 at the time of the crime. CBZC officer during a cybercrime investigation (Source: Poland’s Central Bureau for Combating Cybercrime) According to investigators, using the tools they administered, the minors attacked popular websites, including auction and sales portals, IT domains, hosting services and accommodation booking sites. The activity … More →

The post Teen crew caught selling DDoS attack tools appeared first on Help Net Security.

A vulnerability classified as problematic was found in langchain-ai langgraph up to 1.0.9. Impacted is an unknown function of the component SQLite Checkpoint. Such manipulation leads to deserialization. This vulnerability is traded as CVE-2026-28277. Access to the local network is required for this attack to succeed. There is no exploit available.

A vulnerability classified as problematic was found in Wagtail up to 6.3.7/7.0.5/7.2.2/7.3.0. This affects an unknown function. Executing a manipulation can lead to cross site scripting. This vulnerability appears as CVE-2026-28222. The attack may be performed from remote. There is no available exploit. Upgrading the affected component is advised.

A vulnerability, which was classified as problematic, has been found in Wagtail up to 6.3.7/7.0.5/7.2.2/7.3.0. This impacts an unknown function of the component wagtail.contrib.simple_translation. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2026-28223. It is possible to initiate the attack remotely. There is no exploit available. It is advisable to upgrade the affected component.

A vulnerability was found in CKeditor5 up to 47.5.x and classified as problematic. Impacted is an unknown function of the component General HTML Support Feature. The manipulation results in HTML injection. This vulnerability is reported as CVE-2026-28343. The attack can be launched remotely. No exploit exists. It is suggested to upgrade the affected component.

A vulnerability, which was classified as critical, was found in zephyrproject-rtos Zephyr up to 4.3. Impacted is the function dns_unpack_name of the component DNS Handler. Such manipulation leads to out-of-bounds write. This vulnerability is referenced as CVE-2026-1678. It is possible to launch the attack remotely. No exploit is available.

A vulnerability labeled as problematic has been found in OliveTin. Affected is an unknown function of the component PasswordHash API Endpoint. Such manipulation leads to resource consumption. This vulnerability is uniquely identified as CVE-2026-28342. The attack can be launched remotely. No exploit exists. Applying a patch is advised to resolve this issue.

A vulnerability labeled as critical has been found in fedora-python lxml_html_clean up to 0.4.3. This affects the function _has_sneaky_javascript. Executing a manipulation can lead to escaping of output. The identification of this vulnerability is CVE-2026-28348. The attack may be launched remotely. There is no exploit available. The affected component should be upgraded.

A vulnerability identified as problematic has been detected in TP-Link EAP610 up to 1.5.x. This affects an unknown function of the component HTTP Service. This manipulation causes denial of service. This vulnerability is registered as CVE-2025-7375. The attack requires access to the local network. No exploit is available. You should upgrade the affected component.

A vulnerability labeled as problematic has been found in International Datacasting IDC SFX2100 SuperFlex Satellite Receiver. This vulnerability affects unknown code of the component Configuration Handler. Such manipulation leads to insufficiently protected credentials. This vulnerability is referenced as CVE-2026-29128. The attack can only be performed from a local environment. No exploit is available.

A vulnerability identified as problematic has been detected in HCLSoftware Sametime up to 12.0.25 on iOS. The impacted element is an unknown function of the component Application Log. The manipulation leads to sensitive information in log files. This vulnerability is traded as CVE-2026-21786. An attack has to be approached locally. There is no exploit available. You should upgrade the affected component.

A vulnerability categorized as critical has been discovered in EC-CUBE. Affected by this issue is some unknown functionality of the component MFA. The manipulation results in authentication bypass using alternate channel. This vulnerability was named CVE-2026-30777. The attack may be performed from remote. There is no available exploit. It is advisable to upgrade the affected component.