Posts of last 24 hours
A vulnerability classified as critical was found in Little Orbit GameFirst Anti-Cheat up to 2025-07-07. The affected element is an unknown function in the library GFAC_Sys_x64.sys of the component Kernel Mode. The manipulation results in write-what-where condition.
This vulnerability is reported as CVE-2026-12168. The attack requires a local approach. No exploit exists.
https://vuldb.com/vuln/375943
A vulnerability, which was classified as problematic, has been found in Little Orbit GameFirst Anti-Cheat up to 2025-07-07. The impacted element is an unknown function in the library GFAC_Sys_x64.sys of the component Requests Handler. This manipulation causes null pointer dereference.
This vulnerability appears as CVE-2026-12166. The attack may be initiated remotely. There is no available exploit.
https://vuldb.com/vuln/375944
Expect more compressed patching cycles from Apple going forward, as attackers leverage artificial intelligence to reduce time to exploit.
https://www.darkreading.com/cybersecurity-operations/apple-patch-policy-ai
The Federal Bureau of Investigation (FBI) said today it worked with industry partners to seize hundreds of domains associated with NetNut, a sprawling residential proxy service operated by the publicly-traded Israeli company Alarum Technologies [NASDAQ: ALAR]. The action comes roughly two weeks after KrebsOnSecurity published findings from multiple security firms connecting NetNut to the Popa botnet, a collection of at least two million devices that have been compromised by malicious software with little or no consent from victims.
https://krebsonsecurity.com/2026/07/fbi-seizes-netnut-proxy-platform-popa-botnet/
Currently trending CVE - Hype Score: 2 - Cacti is an open source performance and fault management framework. In versions 1.2.30 and prior, the rfilter request parameter is retrieved via the raw accessor grv() (rather than gfrv() with FILTER_VALIDATE_IS_REGEX validation) and concatenated directly into RLIKE SQL clauses ...
https://cvemon.intruder.io/cves/CVE-2026-39948
Currently trending CVE - Hype Score: 1 - Cacti is an open source performance and fault management framework. In versions 1.2.30 and prior, the rfilter request variable was concatenated into a RLIKE SQL clause without sanitization. The endpoint does not require authentication (graph viewing supports guest access via the ...
https://cvemon.intruder.io/cves/CVE-2026-39893
Currently trending CVE - Hype Score: 1 - Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior have unauthenticated LFI through graph_theme and rrdtool IPC serialization hardening. This issue has been resolved in version 1.2.31.
https://cvemon.intruder.io/cves/CVE-2026-39938
Currently trending CVE - Hype Score: 1 - Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior have pre-authentication SQL Injection via unanchored FILTER_VALIDATE_REGEXP in graph_view.php. This issue has been fixed in version 1.2.31.
https://cvemon.intruder.io/cves/CVE-2026-39955
After gaining a foothold in thousands of Fortinet firewalls, the attackers are starting to monetize that access, and are also piling on a Nextcloud zero-day bug.
https://www.darkreading.com/threat-intelligence/fortibleed-actors-inc-lynx-ransomware-gangs
Google has significantly degraded NetNut, one of the biggest networks that turns home devices into rented relays for other people's traffic.
Working with the FBI, Lumen, and others, Google's Threat Intelligence Group (GTIG) said this week it had reduced the network's pool of usable devices by millions.
Google identifies NetNut, also tracked as Popa, as a network spread across home
https://thehackernews.com/2026/07/google-disrupts-netnut-residential.html