Aggregator

$250 million cryptocurrency heist funded luxury fashion, nightclub parties, and private jets

Help Net Security
1 month 1 week ago

20-year-old California resident Marlon Ferro, known online as “GothFerrari,” was sentenced to 78 months in prison for his role in a cryptocurrency theft operation tied to more than $250 million in stolen digital assets. Federal prosecutors said Ferro participated in a criminal network active between late 2023 and early 2025. Members of the group, based in California, Connecticut, New York, Florida, and overseas, carried out roles that included database hacking, target identification, fraudulent phone calls, … More →

The post $250 million cryptocurrency heist funded luxury fashion, nightclub parties, and private jets appeared first on Help Net Security.

Sinisa Markovic

CMD

Dark Feed IO
1 month 1 week ago

You must login to view this content

cohenido

PAN-OS RCE Exploit Under Active Use Enabling Root Access and Espionage

The Hackers News
1 month 1 week ago
Palo Alto Networks has disclosed that threat actors may have attempted to unsuccessfully exploit a recently disclosed critical security flaw as early as April 9, 2026. The vulnerability in question is CVE-2026-0300 (CVSS score: 9.3/8.7), a buffer overflow vulnerability in the User-ID Authentication Portal service of Palo Alto Networks PAN-OS software that could allow an unauthenticated attacker
The Hacker News

CVE-2026-8094 | Mozilla Firefox up to 140.10.1 WebRTC Remote Code Execution

VulDB Recent Entries
1 month 1 week ago
A vulnerability classified as critical has been found in Mozilla Firefox up to 140.10.1. Affected by this issue is some unknown functionality of the component WebRTC. Performing a manipulation results in Remote Code Execution. This vulnerability is reported as CVE-2026-8094. The attack is possible to be carried out remotely. No exploit exists. It is recommended to upgrade the affected component.
vuldb.com

CVE-2026-8091 | Mozilla Firefox up to 115.35.1/140.10.1 Playback memory corruption

VulDB Recent Entries
1 month 1 week ago
A vulnerability described as critical has been identified in Mozilla Firefox up to 115.35.1/140.10.1. Affected by this vulnerability is an unknown functionality of the component Playback Component. Such manipulation leads to memory corruption. This vulnerability is documented as CVE-2026-8091. The attack can be executed remotely. There is not any exploit available. Upgrading the affected component is recommended.
vuldb.com

CVE-2026-8090 | Mozilla Firefox up to 115.35.1/140.10.1/150.0.1 Networking use after free

VulDB Recent Entries
1 month 1 week ago
A vulnerability marked as critical has been reported in Mozilla Firefox up to 115.35.1/140.10.1/150.0.1. Affected is an unknown function of the component Networking. This manipulation causes use after free. This vulnerability is registered as CVE-2026-8090. Remote exploitation of the attack is possible. No exploit is available. It is suggested to upgrade the affected component.
vuldb.com

CVE-2026-8098 | code-projects Feedback System 1.0 /admin/checklogin.php email sql injection

VulDB Recent Entries
1 month 1 week ago
A vulnerability was found in code-projects Feedback System 1.0. It has been declared as critical. Impacted is an unknown function of the file /admin/checklogin.php. Such manipulation of the argument email leads to sql injection. This vulnerability is referenced as CVE-2026-8098. It is possible to launch the attack remotely. Furthermore, an exploit is available.
vuldb.com

Managed ad