Aggregator
CVE-2026-50527 | Microsoft Framework up to 4.8.1 stack-based overflow (Nessus ID 327183)
MAX исчез из сторов? Не проблема. Госдума уже придумала решение — QR-коды в кафе и на кассе Пятёрочки
Hackers Don’t Crack Telegram 2FA—They Copy Your Already Logged-In Session
A macOS information-stealing malware is turning stolen Telegram desktop data into immediate account access. Instead of guessing passwords or breaking two-factor authentication, it copies the local files that prove a user has already logged in. When those files are restored on another Mac, Telegram can open and synchronize chats without showing its usual login screen. […]
The post Hackers Don’t Crack Telegram 2FA—They Copy Your Already Logged-In Session appeared first on Cyber Security News.
Russian cybercriminal used jailbroken Gemini CLI to rebuild botnet infrastructure in six minutes
A Russian-speaking threat actor known as “bandcampro” used a jailbroken Gemini CLI, Google’s open-source terminal-based AI agent, to deploy and operate a small command-and-control (C2) botnet, according to TrendAI. Operational overview (Source: TrendAI) In more than 200 sessions between March 19 and April 21, 2026, the threat actor worked with Gemini to deploy and operate infrastructure that controlled eight computers inside a dental clinic and gain access to the clinic’s OpenDental database. Posing as an … More →
The post Russian cybercriminal used jailbroken Gemini CLI to rebuild botnet infrastructure in six minutes appeared first on Help Net Security.
Что, если тёмная материя прячется не в космосе… а в пятом измерении, которое мы не способны увидеть?
GoSerpent: a persistent threat evolves with sophisticated data collection and exfiltration
CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.
- CVE-2026-25089 Fortinet FortiSandbox OS Command Injection Vulnerability
- CVE-2026-39808 Fortinet FortiSandbox OS Command Injection Vulnerability
- CVE-2026-58644 Microsoft SharePoint Deserialization of Untrusted Data Vulnerability
These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.
Binding Operational Directive (BOD) 26-04: Prioritizing Security Updates Based on Risk establishes vulnerability management requirements for Federal Civilian Executive Branch (FCEB) agencies. BOD 26-04 reinforces the importance of the KEV Catalog and requires federal agencies to prioritize rapid remediation of high-risk vulnerabilities, specifically those identified by Common Vulnerabilities and Exposures (CVEs) listed in CISA’s KEV Catalog on publicly exposed assets that grant total control of the asset post-exploitation, while deferring action for lower-risk vulnerabilities. BOD 26-04 further establishes basic expectations for when agencies must check whether threat actors compromised the system before the patch was applied.
While BOD 26-04 applies only to FCEB agencies, CISA encourages all organizations to adopt risk-based vulnerability management and prioritize remediation of KEV Catalog vulnerabilities. CISA will continue to add vulnerabilities to the catalog that meet the specified criteria.
Aware of an exploited vulnerability not currently listed in the KEV Catalog? Submit it for potential addition through CISA’s KEV Nomination Form. Potential KEV additions must have a CVE ID, evidence of exploitation, and clear mitigation guidance.
Scattered Spider hackers sentenced to 5.5 years over £29 million Transport for London hack
Windows 11 24H2 Home and Pro reach end of support in 90 days
20+ Hijacked Government Websites Became an Attack Channel
20+ Hijacked Government Websites Became an Attack Channel
Next.js Announces July Security Release to Fix 4 High-Severity and 5 Medium Flaws
Next.js maintainers have announced a scheduled security release for July to address nine vulnerabilities, four rated high severity and five rated medium severity. The patches are expected to be released on July 20, 2022, and will include updated versions for Next.js 16.2 and 15.5. Next.js July Security Release This announcement initiates a formal security release […]
The post Next.js Announces July Security Release to Fix 4 High-Severity and 5 Medium Flaws appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
"Selfish Bravado" Behind TfL Cyber-Attack, Judge Says as Pair Jailed
ValorC3 extends SaaS protection with immutable cloud backups
ValorC3 Data Centers today announced the general availability of Backup as a Service, a fully managed offering that protects the SaaS data businesses rely on most, including Microsoft 365, Entra ID and Salesforce. Every backup is immutable, so data stays recoverable after deletion, corruption or a ransomware attack. Most companies falsely assume SaaS vendors provide backup service. In reality, recent cloud governance tracking shows that 80% of organizations have experienced at least one cloud security … More →
The post ValorC3 extends SaaS protection with immutable cloud backups appeared first on Help Net Security.