SecureBulletin

Tutti gli ultimi articoli da questa fonte

Torna alla Home
Accenture Data Breach: Hackers Claim Theft of 35 GB of Source Code and Azure Credentials
SecureBulletin
Accenture Data Breach: Hackers Claim Theft of 35 GB of Source Code and Azure Credentials

08/07/2026 10:59


A threat actor known as "888" claims to have stolen 35 GB of Accenture source code, RSA/SSH keys, and Azure access tokens, offering the data for sale...
The Gentlemen Ransomware: Custom EDR/AV Killers Fuel Rapid Global Expansion
SecureBulletin
The Gentlemen Ransomware: Custom EDR/AV Killers Fuel Rapid Global Expansion

08/07/2026 10:59


The Gentlemen ransomware group, tracked by Microsoft as Storm-2697, has claimed over 500 victims in 70+ countries using a custom EDR/AV-killing toolk...
GitLost: How a Single GitHub Issue Can Trick AI Agents Into Leaking Private Repos
SecureBulletin
GitLost: How a Single GitHub Issue Can Trick AI Agents Into Leaking Private Repos

08/07/2026 10:59


Researchers at Noma Labs disclosed GitLost, a prompt-injection flaw that let a single crafted GitHub Issue trick AI-powered Agentic Workflows into le...
Rogue Agent: Critical GCP Dialogflow Flaw Let Attackers Inject Malicious Code Into AI Chatbots
SecureBulletin
Rogue Agent: Critical GCP Dialogflow Flaw Let Attackers Inject Malicious Code Into AI Chatbots

08/07/2026 10:59


Varonis Threat Labs disclosed a critical Dialogflow CX flaw, dubbed Rogue Agent, that let attackers with a single edit permission inject persistent m...
Cavern Manticore: Iranian-Linked APT Abuses SysAid RMM and DLL Sideloading to Deploy Modular C2 Framework
SecureBulletin
Cavern Manticore: Iranian-Linked APT Abuses SysAid RMM and DLL Sideloading to Deploy Modular C2 Framework

07/07/2026 11:00


A newly identified Iranian-linked group, Cavern Manticore, is abusing the SysAid RMM platform and DLL sideloading via WinDirStat to deploy a modular ...
Januscape: 16-Year-Old Linux KVM Flaw (CVE-2026-53359) Lets Malicious VMs Corrupt Host Kernel Memory
SecureBulletin
Januscape: 16-Year-Old Linux KVM Flaw (CVE-2026-53359) Lets Malicious VMs Corrupt Host Kernel Memory

07/07/2026 11:00


A 16-year-old flaw in Linux KVM, tracked as CVE-2026-53359 and dubbed Januscape, lets a malicious guest VM corrupt host kernel memory via a use-after...
Tenda Router Backdoor (CVE-2026-11405) Lets Attackers Skip Login and Seize Full Admin Control
SecureBulletin
Tenda Router Backdoor (CVE-2026-11405) Lets Attackers Skip Login and Seize Full Admin Control

07/07/2026 11:00


A hardcoded authentication backdoor in Tenda FH1201, W15E, AC10, AC5, and AC6 routers (CVE-2026-11405) lets attackers log in as admin with any userna...
Critical BeyondTrust Flaws (CVSS 9.2) in Remote Support and PRA Let Attackers Bypass Access Controls
SecureBulletin
Critical BeyondTrust Flaws (CVSS 9.2) in Remote Support and PRA Let Attackers Bypass Access Controls

07/07/2026 11:00


BeyondTrust disclosed critical flaws (advisory BT26-03, CVSS 9.2) in Remote Support and Privileged Remote Access that let limited-privilege users byp...
New “Bad Epoll” Linux Zero-Day Lets Local Users Root Servers and Android Devices
SecureBulletin
New “Bad Epoll” Linux Zero-Day Lets Local Users Root Servers and Android Devices

06/07/2026 08:22


A newly disclosed Linux kernel flaw dubbed “Bad Epoll” (CVE-2026-46242) lets a local, unprivileged user escalate to root on Linux servers, deskto...
PamStealer: New macOS Infostealer Disguises Itself as the Maccy Clipboard Manager
SecureBulletin
PamStealer: New macOS Infostealer Disguises Itself as the Maccy Clipboard Manager

06/07/2026 08:22


PamStealer is a newly discovered macOS infostealer that impersonates the Maccy clipboard manager, using a two-stage AppleScript-to-Rust infection cha...