Aggregator

A vulnerability classified as problematic has been found in undici up to 6.25.x/7.27.x/8.4.x. Affected is an unknown function of the component WebSocketStream API. Performing a manipulation results in resource consumption. This vulnerability was named CVE-2026-12151. The attack may be initiated remotely. There is no available exploit. It is recommended to upgrade the affected component.

A vulnerability described as critical has been identified in picklescan up to 0.0.26. This impacts the function _list_globals. Such manipulation leads to unchecked error condition. This vulnerability is uniquely identified as CVE-2025-71325. The attack can be launched remotely. No exploit exists. Upgrading the affected component is recommended.

A vulnerability marked as critical has been reported in PickleScan up to 0.0.32. This affects an unknown function of the file pty.spawn. This manipulation causes protection mechanism failure. This vulnerability is handled as CVE-2025-71322. The attack can be initiated remotely. There is not any exploit available. It is suggested to upgrade the affected component.

A vulnerability labeled as problematic has been found in Dell PowerFlex rack 3.7. The impacted element is an unknown function of the component Header Handler. The manipulation of the argument Host results in open redirect. This vulnerability is known as CVE-2025-32748. It is possible to launch the attack remotely. No exploit is available.

A vulnerability identified as problematic has been detected in Red Hat Hardened Images and Satellite 6. The affected element is an unknown function. The manipulation leads to missing authorization. This vulnerability is traded as CVE-2026-12515. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability categorized as critical has been discovered in picklescan up to 0.0.32. Impacted is an unknown function. Executing a manipulation can lead to deserialization. This vulnerability appears as CVE-2025-71321. The attack may be performed from remote. There is no available exploit. It is advisable to upgrade the affected component.

A vulnerability was found in picklescan up to 0.0.32. It has been rated as critical. This issue affects some unknown processing in the library kernel32.dll of the component Ctypes Module. Performing a manipulation results in incomplete blacklist. This vulnerability is reported as CVE-2025-71323. The attack is possible to be carried out remotely. No exploit exists. Upgrading the affected component is advised.

A vulnerability was found in picklescan up to 0.0.32. It has been declared as critical. This vulnerability affects unknown code. Such manipulation leads to incomplete blacklist. This vulnerability is documented as CVE-2025-71320. The attack can be executed remotely. There is not any exploit available. It is recommended to upgrade the affected component.

Austin, TX, USA, June 17th, 2026, CyberNewswire New SpyCloud research highlights the expansion of phishing attacks as AI and phishing-as-a-service fuel enterprise targeting. SpyCloud, the leader in identity threat protection, today released its 2026 Phishing Pulse Report, revealing that phishing attacks continue to increase in both volume and sophistication for enterprise organizations as artificial intelligence […]

The post SpyCloud Report Finds Phishing Attacks Surge as Employee Data Is Exposed at 86% of Fortune 100 Companies appeared first on Cyber Security News.

URL phishing is becoming harder to triage at scale. Suspicious links can hide behind redirects, fresh domains, and browser-side changes that basic URL checks often miss. For analysts, that means more time spent rebuilding what the page actually does before they can make a clear decision.  To respond faster, SOC teams need browser-level visibility: what the page loads, […]

The post URL Phishing Is Draining SOCs, How to Cut Triage Time and Catch Incidents Early   appeared first on Cyber Security News.

A long-standing vulnerability in OpenBSD’s networking stack has been disclosed, revealing that attackers can bypass PAP authentication entirely due to a decades-old logic flaw. The issue resides in the sppp_pap_input() function within OpenBSD’s sppp(4) subsystem, which manages synchronous PPP links used in PPPoE connectivity. During the PPP authentication phase, systems relying on the Password Authentication Protocol (PAP) validate user […]

The post 27-Year-Old OpenBSD Vulnerability Allows Attackers to Bypass PAP Authentication Entirely appeared first on Cyber Security News.

A single deceptive prompt. That is all it took for attackers to gain a foothold inside an organization, spread to over 11 systems, and deploy two separate remote access tools before anyone noticed. A new campaign using the ClickFix technique has shown how far one unguarded moment can go. ClickFix is a social engineering trick […]

The post Hackers Use ClickFix Prompt to Install MSI Package and Launch Hands-On-Keyboard Attack appeared first on Cyber Security News.

Researchers say FortiBleed used stolen and tested credentials to access exposed Fortinet firewalls, putting major organizations and public agencies at risk now.

As Kyiv takes steps toward formal accession to the EU, the bloc is integrating Ukraine with its pool of pre-approved cybersecurity incident response companies.

Хактивистка обнаружила в открытом доступе базу данных Dialog — закрытого общества, основанного Питером Тилем в 2006 году.

A comprehensive guide to the most commonly abused RMM tools, including technical guidance for detection and prevention 

A dangerous new cyber campaign is putting macOS users at serious risk, and it does not rely on software bugs to do its damage. Instead, the attackers trick people into handing over their own passwords and sensitive data by making everything look completely normal. What appears to be a routine software update turns out to […]

The post Hackers Use Fake Software Update Prompts to Steal Passwords and Crypto Wallet Data From macOS Users appeared first on Cyber Security News.

Этот материал думает по принципу нервной клетки — и обучают его не кодом, а светом.

A French-speaking attacker broke into a small French automotive business, planted a keylogger, and stole banking and email credentials. Ordinary stuff, until one move near the end. Before his command-and-control server went dark, he installed OpenSSH and Tailscale on a victim's machine, building a way back in that did not run through the C2 at all. When the Havoc server went offline the next