Aggregator
ZDI-CAN-32609: deepset
ZDI-CAN-32106: NVIDIA
ZDI-CAN-30184: Oracle
ZDI-CAN-29835: Oracle
ZDI-CAN-31118: Quest
GhostApproval: один клонированный репозиторий — и хакер уже в вашем SSH
反卫星武器和人工智能技术位列朝鲜最新军事愿望清单榜首
Only 28% of financial workforce MFA is phishing-resistant
Passwords remain part of many workforce authentication flows in financial organizations, making phishing and credential theft major identity security risks, according to a new Secret Double Octopus report. Key challenges preventing universal implementation of phishing-resistant MFA (Source: Secret Double Octopus) Workforce authentication trends Banks and financial organizations use a mix of authentication methods, combining phishing-resistant technologies with methods that remain vulnerable to phishing attacks. Password plus OTP remains more common among organizations with up to … More →
The post Only 28% of financial workforce MFA is phishing-resistant appeared first on Help Net Security.
CVE-2026-5069 | wpmanageninja Fluent Forms Plugin up to 6.2.1 Payment Cancellation subscription_id improper authorization
CVE-2026-44918 | OpenStack Ironic up to 29.0.5/32.0.1/35.0.1/37.0.0 Authorization improper authorization
CVE-2026-54423 | OpenStack Ironic up to 29.0.5/32.0.1/35.0.1/37.0.0 IPMI Management Interface send_raw access control
CVE-2026-11392 | thimpress WP Hotel Booking Plugin up to 2.3.1 check_in_date/check_out_date cross site scripting
CVE-2026-11818 | arraytics WPCafe Plugin up to 3.0.14 Notification Flow Workflows authorization
Промпт-инъекции нового поколения, спящие команды и подделка маркеров. В CrowdStrike нашли новые способы запретить искусственному интеллекту говорить «нет»
CVE-2026-14894 | WebRehab Super Forms Plugin up to 6.3.313 AJAX submit_form unrestricted upload
New infosec products of the week: July 10, 2026
Here’s a look at the most interesting products from the past week, featuring releases from Attestiv, Automox, Codenotary, and First Recon AI. Codenotary launches AI security platform that learns from AI agent behavior Codenotary has announced AgentMon 3, the latest generation of its enterprise AI security platform, introducing adaptive runtime security policies. These continuously evolve as AI agents operate across an organization by learning from customer-specific workflows, observed behavioral patterns, and threats. Automox MCP Server … More →
The post New infosec products of the week: July 10, 2026 appeared first on Help Net Security.