Collecting Cyber-News from over 60 sources

Tag: vulnerability

Old Docker authorization bypass pops up despite previous patch

Apr 10, 2026 9:52 PM

Tags: access, api, botnet, cloud, container, credentials, data, docker, exploit, flaw, monitoring, tool, update, vulnerability

No one checked oversized requests: While the previous authorization bypass was triggered when request Content-Length was set to 0, no one checked at the time what would happen in the same function if the request exceeded a certain size.”When an API request body exceeds 1MB, Docker’s middleware silently drops the body before your authorization plugin…
The AI Supply Chain is Actually an API Supply Chain: Lessons from the LiteLLM Breach

Apr 10, 2026 8:52 PM

Tags: access, ai, api, attack, breach, control, data, detection, firewall, identity, infrastructure, injection, LLM, malicious, openai, supply-chain, tool, unauthorized, vulnerability, waf, zero-day

The recent supply chain attack involving Mercor and the LiteLLM vulnerability serves as a massive wake-up call for enterprise security teams. While the security industry has spent the last year fixating on prompt injections and model jailbreaks, this breach highlights a far more systemic vulnerability. The weakest link in enterprise AI is not necessarily the…
A.I. lockdown due to fear of Attacker benefits to find vulnerabilities

Apr 10, 2026 8:52 PM

Tags: vulnerability

First seen on thesecurityblogger.com Jump to article: www.thesecurityblogger.com/a-i-lockdown-due-to-fear-of-attacker-benefits-to-find-vulnerabilities/
A.I. lockdown due to fear of Attacker benefits to find vulnerabilities

Apr 10, 2026 8:52 PM

Tags: vulnerability

First seen on thesecurityblogger.com Jump to article: www.thesecurityblogger.com/a-i-lockdown-due-to-fear-of-attacker-benefits-to-find-vulnerabilities/
Third-Party Android Vulnerability Leaves Over 50M Users Exposed

Apr 10, 2026 8:52 PM

Tags: access, android, data-breach, exploit, flaw, malicious, microsoft, vulnerability

A flaw in the EngageLab SDK exposed 50 million Android users, allowing malicious apps to exploit trusted permissions and access sensitive data. The post Microsoft: Third-Party Android Vulnerability Leaves Over 50M Users Exposed appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-engagelab-sdk-android-vulnerability-malware-bridge/
TDL 019 – The Psychology Behind a Cyber Breach and the Leaders Who Survive It – Nim Nadarajah

Apr 10, 2026 7:52 PM

Tags: access, ai, apple, automation, breach, business, cctv, ceo, cio, ciso, cloud, computing, conference, control, corporate, crowdstrike, cve, cyber, cyberattack, cybersecurity, data, dns, edr, email, finance, firewall, governance, group, healthcare, incident, incident response, infrastructure, injection, insurance, Internet, jobs, law, LLM, metric, microsoft, msp, network, office, powershell, privacy, programming, psychology, risk, saas, service, siem, soar, soc, software, startup, strategy, supply-chain, switch, technology, threat, tool, training, usa, vulnerability, windows, zero-trust

Leading Through the Cyber Abyss In Episode 019 of The Defender’s Log, host David Redekop sits down with Nim Nadarajah, CISO and Managing Partner of Critical Matrix, to explore the evolving landscape of cybersecurity leadership. From the “annual pilgrimage” of RSAC 2026 to the front lines of incident response, the conversation shifts from technical bits…
TDL 019 – The Psychology Behind a Cyber Breach and the Leaders Who Survive It – Nim Nadarajah

Apr 10, 2026 7:52 PM

Tags: access, ai, apple, automation, breach, business, cctv, ceo, cio, ciso, cloud, computing, conference, control, corporate, crowdstrike, cve, cyber, cyberattack, cybersecurity, data, dns, edr, email, finance, firewall, governance, group, healthcare, incident, incident response, infrastructure, injection, insurance, Internet, jobs, law, LLM, metric, microsoft, msp, network, office, powershell, privacy, programming, psychology, risk, saas, service, siem, soar, soc, software, startup, strategy, supply-chain, switch, technology, threat, tool, training, usa, vulnerability, windows, zero-trust

Leading Through the Cyber Abyss In Episode 019 of The Defender’s Log, host David Redekop sits down with Nim Nadarajah, CISO and Managing Partner of Critical Matrix, to explore the evolving landscape of cybersecurity leadership. From the “annual pilgrimage” of RSAC 2026 to the front lines of incident response, the conversation shifts from technical bits…
Nearly 4K industrial control devices vulnerable to Iran-linked hacking campaign

Apr 10, 2026 6:52 PM

Tags: control, data-breach, hacking, infrastructure, Internet, iran, mitigation, vulnerability

A research firm tallied the internet-exposed devices Iran is targeting and recommended mitigations for any infrastructure operator using them. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/critical-infrastucture-plcs-iran-hacking-censys/817209/
Analysis: Anthropic Claude Mythos Won’t ‘Reshape Cybersecurity’

Apr 10, 2026 6:52 PM

Tags: ai, cybersecurity, vulnerability

While Anthropic’s purportedly ultra-powerful Claude Mythos AI model is poised to overhaul the way vulnerabilities are discovered and managed, the sweeping implications claimed for all of cybersecurity are overstated. First seen on crn.com Jump to article: www.crn.com/news/security/2026/analysis-anthropic-claude-mythos-won-t-reshape-cybersecurity
Nearly 4,000 industrial control devices vulnerable to Iran-linked hacking campaign

Apr 10, 2026 5:52 PM

Tags: control, data-breach, hacking, infrastructure, Internet, iran, mitigation, vulnerability

A research firm tallied the internet-exposed devices Iran is targeting and recommended mitigations for any infrastructure operator using them. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/critical-infrastucture-plcs-iran-hacking-censys/817209/
Nearly 4,000 industrial control devices vulnerable to Iran-linked hacking campaign

Apr 10, 2026 5:52 PM

Tags: control, data-breach, hacking, infrastructure, Internet, iran, mitigation, vulnerability

A research firm tallied the internet-exposed devices Iran is targeting and recommended mitigations for any infrastructure operator using them. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/critical-infrastucture-plcs-iran-hacking-censys/817209/
[Video] The TTP Ep. 22: The Collapse of the Patch Window

Apr 10, 2026 5:52 PM

Tags: ai, data-breach, exploit, threat, update, vulnerability

In this episode of The Talos Threat Perspective, we discuss how vulnerability exploitation is accelerating, and why attacker speed, AI, and exposed systems are affecting the patch window. First seen on blog.talosintelligence.com Jump to article: blog.talosintelligence.com/video-the-ttp-ep-22-the-collapse-of-the-patch-window/
Die Schwachstellen-Flut ist da und sie verändert alles

Apr 10, 2026 4:53 PM

Tags: ai, vulnerability

Wir können das Tempo der KI-gestützten Schwachstellenerkennung nicht kontrollieren, aber wir können kontrollieren, wie schnell wir reagieren. Die Flut kommt auf jeden Fall. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/die-schwachstellen-flut-ist-da-und-sie-veraendert-alles/a44573/
Crushing the Axios supply chain threat with Tenable Hexa AI: Use cases for agentic AI

Apr 10, 2026 4:53 PM

Tags: ai, attack, business, credentials, crypto, cve, data, data-breach, malicious, moveIT, network, okta, radius, risk, software, supply-chain, threat, update, vulnerability, zero-day

See how you can use Tenable Hexa AI to determine in minutes if you’re impacted by the Axios npm supply chain attack. Learn how easy it is to automate configuration of scans, identify impacted assets, prioritize remediation, and more using agentic AI from Tenable. Key takeaways: Tenable Hexa AI, the agentic engine of the Tenable…
Crushing the Axios supply chain threat with Tenable Hexa AI: Use cases for agentic AI

Apr 10, 2026 4:53 PM

Tags: ai, attack, business, credentials, crypto, cve, data, data-breach, malicious, moveIT, network, okta, radius, risk, software, supply-chain, threat, update, vulnerability, zero-day

See how you can use Tenable Hexa AI to determine in minutes if you’re impacted by the Axios npm supply chain attack. Learn how easy it is to automate configuration of scans, identify impacted assets, prioritize remediation, and more using agentic AI from Tenable. Key takeaways: Tenable Hexa AI, the agentic engine of the Tenable…
EngageSDK Vulnerability puts millions of crypto wallets at risk

Apr 10, 2026 4:53 PM

Tags: android, crypto, cyber, data, risk, theft, unauthorized, vulnerability

A newly disclosed vulnerability in the widely used Android library EngageSDK has raised serious concerns across the cryptocurrency ecosystem, potentially exposing millions of users to data theft and unauthorized access. Security researchers identified a critical “intent redirection” vulnerability in EngageSDK, a third-party Android SDK commonly used for push notifications and in-app messaging. The issue allows…
Industrial Controllers Still Vulnerable As Conflicts Move to Cyber

Apr 10, 2026 4:53 PM

Tags: cyber, government, technology, vulnerability

The US government warns programmable logic controllers are being targeted, and research turns up 179 vulnerable operational technology (OT) devices. First seen on darkreading.com Jump to article: www.darkreading.com/ics-ot-security/industrial-controllers-vulnerable-conflicts-cyber
Hackers Exploit GitHub Copilot Flaw to Exfiltrate Sensitive Data

Apr 10, 2026 3:52 PM

Tags: api, cve, cvss, cyber, data, exploit, flaw, github, hacker, injection, malicious, vulnerability

A high-severity flaw in GitHub Copilot Chat recently allowed attackers to silently steal sensitive data like API keys and private source code. Tracked as CVE-2025-59145 with a critical CVSS score of 9.6, this vulnerability required no malicious code execution. Instead, hackers used a clever prompt injection technique known as >>CamoLeak.<< A security researcher publicly disclosed…
Hackers Exploit GitHub Copilot Flaw to Exfiltrate Sensitive Data

Apr 10, 2026 3:52 PM

Tags: api, cve, cvss, cyber, data, exploit, flaw, github, hacker, injection, malicious, vulnerability

A high-severity flaw in GitHub Copilot Chat recently allowed attackers to silently steal sensitive data like API keys and private source code. Tracked as CVE-2025-59145 with a critical CVSS score of 9.6, this vulnerability required no malicious code execution. Instead, hackers used a clever prompt injection technique known as >>CamoLeak.<< A security researcher publicly disclosed…
Claude uncovers a 13″‘year”‘old ActiveMQ RCE bug within minutes

Apr 10, 2026 2:52 PM

Tags: ai, attack, cve, cybersecurity, exploit, flaw, rce, remote-code-execution, vulnerability

AI accelerated discovery: ActiveMQ has been here before. The platform has a track record of high-impact vulnerabilities tied to management surfaces and unsafe assumptions around trusted inputs. From older web console flaws to deserialization bugs and protocol-level RCEs, administrative functionalities have consistently become attack vectors.But none of the previous flaws were found the way CVE-2026-34197…
Marimo RCE Flaw CVE-2026-39987 Exploited Within 10 Hours of Disclosure

Apr 10, 2026 1:53 PM

Tags: cve, data, exploit, flaw, open-source, rce, remote-code-execution, vulnerability

A critical security vulnerability in Marimo, an open-source Python notebook for data science and analysis, has been exploited within 10 hours of public disclosure, according to findings from Sysdig.The vulnerability in question is CVE-2026-39987 (CVSS score: 9.3), a pre-authenticated remote code execution vulnerability impacting all versions of Marimo prior to and including First seen on…
HPE Aruba Private 5G Vulnerability Opens Door to Credential Theft Attacks

Apr 10, 2026 11:53 AM

Tags: 5G, attack, credentials, cve, cyber, flaw, login, network, risk, theft, threat, vulnerability

A newly disclosed security flaw in HPE Aruba Networking Private 5G Core On-Prem is putting enterprise networks at severe risk of credential theft. Documented under the security bulletin HPESBNW05032EN_US, this vulnerability targets the platform’s graphical user interface and allows threat actors to silently harvest administrative login details. The security defect, officially tracked as CVE-2026-23818, stems…
TP-Link Devices at Risk as Multiple Security Flaws Enable Takeover

Apr 10, 2026 11:53 AM

Tags: control, cyber, cybersecurity, data, flaw, Internet, network, risk, router, vulnerability

Cybersecurity researchers have uncovered five significant security vulnerabilities in the TP-Link Archer AX53 v1.0 router. If left unpatched, these critical flaws could allow attackers to take full control of the device, steal sensitive network data, and compromise connected systems. Because routers serve as the primary gateway for all internet traffic, compromising this device gives attackers…
New React Server Components Flaw Could Let Attackers Trigger DoS

Apr 10, 2026 10:51 AM

Tags: attack, cve, cyber, dos, exploit, flaw, risk, service, threat, vulnerability

A newly disclosed high-severity vulnerability in React Server Components could allow unauthenticated attackers to trigger a Denial of Service (DoS) condition. Tracked as CVE-2026-23869, this flaw poses a significant risk to web applications using specific server-side rendering packages. Because the exploit requires no privileges and involves low attack complexity, threat actors can easily target vulnerable…
Juniper Networks Default Credential Vulnerability Allows Unauthorized Full Access

Apr 10, 2026 9:52 AM

Tags: access, control, credentials, cve, cvss, cyber, flaw, network, unauthorized, vulnerability

Juniper Networks has issued a critical security alert regarding a severe vulnerability in its Support Insights (JSI) Virtual Lightweight Collector (vLWC). Tracked as CVE-2026-33784, this default credential flaw carries a near-maximum CVSS v3.1 severity score of 9.8. If left unresolved, the vulnerability allows remote, unauthenticated attackers to seize complete control over affected network devices. The…
ChatGPT, Claude, and Gemini Among 11 AI Models Vulnerable to One-Line Jailbreak

Apr 10, 2026 8:51 AM

Tags: ai, chatgpt, cyber, exploit, intelligence, malicious, programming, vulnerability

A newly discovered jailbreak technique named >>sockpuppeting<< successfully forces 11 leading artificial intelligence models, including ChatGPT, Claude, and Gemini, to bypass their safety guardrails. By exploiting a standard application programming interface (API) feature with a single line of code, attackers can trick these models into generating malicious outputs without requiring complex mathematical optimisation. When a…
EngageLab SDK Flaw Exposed 50M Android Users, Including 30M Crypto Wallet Installs

Apr 10, 2026 8:51 AM

Tags: access, android, crypto, data, data-breach, flaw, microsoft, programming, software, unauthorized, vulnerability

Details have emerged about a now-patched security vulnerability in a widely used third-party Android software development kit (SDK) called EngageLab SDK that could have put millions of cryptocurrency wallet users at risk.”This flaw allows apps on the same device to bypass Android security sandbox and gain unauthorized access to private data,” the Microsoft Defender First…
AWS Fixes Severe RCE, Privilege Escalation Flaws in Research and Engineering Studio

Apr 10, 2026 7:53 AM

Tags: cloud, cyber, flaw, open-source, rce, remote-code-execution, vulnerability

AWS recently issued a critical security bulletin addressing severe vulnerabilities in its Research and Engineering Studio (RES). RES is an open-source web portal that allows administrators to create and manage secure cloud-based research environments. Security researchers identified three major flaws in the platform that could lead to remote code execution (RCE) and privilege escalation. If…
Hackers have been exploiting an unpatched Adobe Reader vulnerability for months

Apr 10, 2026 1:52 AM

Tags: access, adobe, attack, ciso, control, data, email, exploit, hacker, incident response, malicious, malware, monitoring, resilience, risk, sans, software, technology, threat, tool, update, vulnerability

A high risk exploit: Kellman Meghu, chief technology officer at Canadian incident response firm DeepCove Security, called the exploit “a very high risk.”So far it looks as though this particular malware just exfiltrates data, he said. But it implies there is an ability or capability to turn it into a vehicle for remote code execution.…
What to Know About CyberAv3ngers: The IRGC-Linked Group Targeting Critical Infrastructure

Apr 10, 2026 1:52 AM

Tags: access, advisory, ai, attack, authentication, automation, backup, cctv, chatgpt, cisa, communications, compliance, control, credentials, crypto, cve, cyber, cybersecurity, data, data-breach, defense, detection, dns, email, exploit, finance, firewall, flaw, government, group, healthcare, infrastructure, intelligence, international, Internet, iot, iran, kev, leak, linux, malicious, malware, mitigation, mitre, monitoring, network, office, openai, password, radius, resilience, risk, router, service, siem, software, strategy, switch, technology, threat, tool, update, vpn, vulnerability, vulnerability-management

An Iran-affiliated threat group has evolved from defacing water utility displays to deploying custom ICS malware and exploiting Rockwell Automation PLCs across multiple U.S. critical infrastructure sectors. Key takeaways: CyberAv3ngers is a state-directed threat group operating under Iran’s IRGC Cyber-Electronic Command. The U.S. Treasury sanctioned six named officials in February 2024 and the State Department…