1. A critical vulnerability in Fortinet FortiClient EMS is currently being exploited in active attacks. (bleepingcomputer.com)
2. The European Commission confirmed a data breach following a cyberattack on the Europa.eu platform claimed by the ShinyHunters extortion gang. (bleepingcomputer.com)
3. Pro-Iran hacktivist group Handala breached the personal email account of FBI Director Kash Patel and published sensitive documents. (bleepingcomputer.com)
4. Three China-linked threat clusters are targeting a Southeast Asian government in a complex operation deploying malware such as HIUPAN and PUBLOAD. (thehackernews.com)
5. A critical unauthenticated remote code execution vulnerability in Langflow, tracked as CVE-2026-33017, has been added to the CISA KEV catalog. (reddit.com)
6. Security researchers identified a critical memory overread vulnerability in Citrix NetScaler, tracked as CVE-2026-3055. (reddit.com)
7. A file read vulnerability in the Smart Slider 3 WordPress plugin affects over 500,000 websites and allows unauthorized access to arbitrary files. (bleepingcomputer.com)
8. TeamPCP conducted a supply chain attack that utilized audio steganography to hide malware inside WAV files. (reddit.com)
9. Microsoft retracted the Windows 11 update KB5079391 due to installation errors causing 0x80073712 failures. (bleepingcomputer.com)
10. Research indicates that AI-assisted malware development has reached operational maturity with the emergence of modular frameworks like VoidLink. (research.checkpoint.com)
11. An audit of 100 AI agent servers revealed that even industry standard implementations failed to secure against common threats. (reddit.com)
12. Security researchers released a tool called ndpspoof to perform spoofing and evade RA Guard in IPv6 networks. (reddit.com)
Be First to Comment