Aggregator
CVE-2026-15804 | MetaGuru HCM up to 7.5.2 sql injection (EUVD-2026-44598)
CVE-2026-15583 | Grafana MCP Server up to 0.17.1 URL X-Grafana-URL server-side request forgery (EUVD-2026-44597)
CVE-2026-14251 | Red Hat OpenShift GitOps ClusterRole Reconciler Name denial of service (EUVD-2026-44596)
网络安全信息与动态周报2026年第28期(7月6日-7月12日)
300余项隐患清零!360"破阵子"渗透测试智能体为国家重点行业做安全体检
Fortinet adds AI controls and data loss prevention to FortiEndpoint
Fortinet has announced new capabilities for its unified endpoint platform, FortiEndpoint, designed to help organizations securely adopt AI, protect sensitive data, and reduce risk. By bringing AI visibility and control, native data security, endpoint risk scoring, and FortiAI-assisted operations into FortiEndpoint, Fortinet enables security teams to better govern AI usage, reduce sensitive data exposure, enforce risk-aware access, and simplify security operations across distributed environments. “Organizations need a simpler and more effective way to manage security … More →
The post Fortinet adds AI controls and data loss prevention to FortiEndpoint appeared first on Help Net Security.
US charges alleged operators of Russian bulletproof hosting service
“金鹰计划”启动:美国政府依托前沿AI构建漏洞发现与修复协同体系
伊朗利用电信漏洞实时监视美军位置,疑似用于作战打击行动
微软周二例行安全更新修复了 570 个漏洞
570 уязвимостей и три 0Day. Июльский Patch Tuesday стал крупнейшим за всю историю Microsoft
Product showcase: Trust Chain TPRM turns vendor compliance evidence into verified assurance
Trust Chain is an AI-native third-party risk management (TPRM) solution by Strike Graph that replaces the security questionnaire model with validated evidence of compliance. Rather than asking vendors to self-report their security posture, Trust Chain requires vendors to submit evidence, which is then evaluated using Strike Graph’s patent-pending Verify AI technology. The evaluation tests each submission against the requesting organization’s specific requirements. The result is verified assurance rather than vendor attestation, delivered in a fraction … More →
The post Product showcase: Trust Chain TPRM turns vendor compliance evidence into verified assurance appeared first on Help Net Security.
FaceTime Scammers Combine Credential Theft, Remote-Access Apps, and iOS Exploits for Device Takeover.
Apple-focused scam operations are increasingly using FaceTime as a high-trust social-engineering channel to steal credentials and, in higher-risk cases, prepare victims for device compromise. Apple said threat actors may approach targets via phone calls, FaceTime, SMS, email, and other communications, posing as a legitimate organization. The company stressed that users should never disclose passwords, verification […]
The post FaceTime Scammers Combine Credential Theft, Remote-Access Apps, and iOS Exploits for Device Takeover. appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Aurorium: антидетект, который решил не повторять чужой шум в Canvas
宇航员首次在太空照 X 光
Учёные наконец-то создали плащ-невидимку. Но работает он лишь в полной темноте
Microsoft Fixes Multiple Windows RDP Flaws Exposing Sensitive Data Over the Network
Microsoft has addressed multiple information-disclosure vulnerabilities in the Windows Remote Desktop Protocol (RDP). This widely used service enables remote administration and access to Windows systems. The five flaws could permit attackers to retrieve information from vulnerable hosts, potentially exposing data held in application memory during an RDP session. Microsoft Fixes Multiple Windows RDP Flaws All […]
The post Microsoft Fixes Multiple Windows RDP Flaws Exposing Sensitive Data Over the Network appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.