Aggregator

Submit #785841 / VDB-357135

Submit #785836 / VDB-357134

For the latest discoveries in cyber research for the week of 13th April, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES The Los Angeles Police Department has reported a data breach involving a digital storage system used by the L.A. City Attorney’s Office. The exposure included 7.7 terabytes and more than 337,000 files, […]

The post 13th April – Threat Intelligence Report appeared first on Check Point Research.

Cloudflare Sandboxes give AI agents a persistent, isolated environment: a real computer with a shell, a filesystem, and background processes that starts on demand and picks up exactly where it left off.

We’re introducing Durable Object Facets, allowing Dynamic Workers to instantiate Durable Objects with their own isolated SQLite databases. This enables developers to build platforms that run persistent, stateful code generated on-the-fly.

If you tried to download software from CPUID’s website late last week, you might have downloaded malware instead. “Investigations are still ongoing, but it appears that a secondary feature (basically a side API) was compromised for approximately six hours between April 9 and April 10, causing the main website to randomly display malicious links (our signed original files were not compromised),” Samuel Demeulemeester, a contributor to CPUID, stated on Friday, and apologized to affected users. … More →

The post Hackers hijacked CPUID downloads, served STX RAT to victims appeared first on Help Net Security.

A vulnerability was found in Apache SkyWalking MCP up to 0.1.0. It has been declared as critical. The affected element is an unknown function of the component Header Handler. The manipulation of the argument SW-URL results in server-side request forgery. This vulnerability is reported as CVE-2026-34476. The attack can be launched remotely. No exploit exists. It is recommended to upgrade the affected component.

A vulnerability was found in Apache SkyWalking MCP up to 0.1.0. It has been classified as critical. Impacted is the function set_skywalking_url. The manipulation leads to injection. This vulnerability is documented as CVE-2026-34884. The attack can be initiated remotely. There is not any exploit available. Upgrading the affected component is recommended.

A vulnerability was found in SourceCodester Basic Library System 1.0 and classified as critical. This issue affects some unknown processing of the file /system/system/admins/assessments/examproper/exam-update.php. Executing a manipulation can lead to sql injection. This vulnerability is registered as CVE-2026-36919. It is possible to launch the attack remotely. No exploit is available.

A vulnerability has been found in SourceCodester Basic Library System 1.0 and classified as critical. This vulnerability affects unknown code of the file /load_student.php. Performing a manipulation results in sql injection. This vulnerability is cataloged as CVE-2026-36874. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability, which was classified as critical, was found in SourceCodester Basic Library System 1.0. This affects an unknown part of the file /load_admin.php. Such manipulation leads to sql injection. This vulnerability is listed as CVE-2026-36873. The attack may be performed from remote. There is no available exploit.

A vulnerability, which was classified as critical, has been found in SourceCodester Basic Library System 1.0. Affected by this issue is some unknown functionality of the file /load_book.php. This manipulation causes sql injection. This vulnerability is tracked as CVE-2026-36872. The attack is possible to be carried out remotely. No exploit exists.

Monday is back, and the weekend’s backlog of chaos is officially hitting the fan. We are tracking a critical zero-day that has been quietly living in your PDFs for months, plus some aggressive state-sponsored meddling in infrastructure that is finally coming to light. It is one of those mornings where the gap between a quiet shift and a full-blown incident response is basically

Китайский кристалл приблизил создание ядерных часов — навигация без GPS станет реальностью.

Outbound Workers for Sandboxes provide a programmable, zero-trust egress proxy for AI agents. This allows developers to inject credentials and enforce dynamic security policies without exposing sensitive tokens to untrusted code.

A vulnerability has been found in BeyondTrust Remote Support & Privileged Remote Access up to PRA 24.3.4/RS 25.3.1 and classified as critical. This vulnerability affects unknown code. This manipulation causes os command injection. The identification of this vulnerability is CVE-2026-1731. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. The affected component should be upgraded.

OpenSSF warns hackers impersonate Linux Foundation leaders on Slack, tricking developers into installing malware that can compromise entire systems.

More than $12 million has been frozen, and over 20,000 victims have been identified in an international law enforcement operation targeting cryptocurrency and investment scammers. Authorities also uncovered more than $45 million in suspected cryptocurrency fraud losses worldwide. One UK victim identified during the operation is thought to have lost more than £52,000 to the fraud. According to the FBI’s report, cryptocurrency remained a central element in fraud-related activity, with losses totaling $11.3 billion. Investment … More →

The post $12 million frozen, 20,000 victims identified in crypto scam crackdown appeared first on Help Net Security.

安卓内核Hook技术实现分析与应用