Malicious code in eslint-config-minecraft-scripting (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 965724c03399dbf45fac622dbfa8cb38e94e6cf7e3c137390da6e2818b9f073b The package eslint-config-minecraft-scripting was found to contain malicious code. Source: ghsa-malware...

MAL-2026-634 Malicious code in eslint-config-minecraft-scripting (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 965724c03399dbf45fac622dbfa8cb38e94e6cf7e3c137390da6e2818b9f073b The package eslint-config-minecraft-scripting was found to contain malicious code. Source: ghsa-malware...

MAL-2026-631 Malicious code in cowsay-caps (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 17661a2b5a74d9c2f32dceee01043881ce230427c3121c4bdd6f43987e49765e The package cowsay-caps was found to contain malicious code...

GHSA-PJ9H-FMXG-JWMR vulnerabilities

Vulnerabilities for packages: chromium...

CERTFR-2026-ALE-001

creationtimestamp| type| source ---|---|--- 2026-01-30 11:02:01+00:00| seen| https://social.numerique.gouv.fr/users/certfr/statuses/115983706971608725...

CVE-2025-39490

creationtimestamp| type| source ---|---|--- 2026-01-29 17:22:15+00:00| seen| Telegram/eR7xGnNWU7JWkc99SGTnYFcvM6hfVlfsSpY-TqDfNslGI...

CVE-2026-1237

creationtimestamp| type| source ---|---|--- 2026-01-29 15:40:51+00:00| seen| https://gist.github.com/alon710/e49bd8e494bc74785456a45ff96b4d99...

CVE-2025-67952

creationtimestamp| type| source ---|---|--- 2026-01-29 03:21:49+00:00| seen| Telegram/keSNEMnsp0L6G3NDKAlSA2LDxW6SGZxuWSh4xLVAnJ4bS9E...

CGA-V7M7-2C4G-5VFX

Bulletin has no description...

CVE-2025-68871

creationtimestamp| type| source ---|---|--- 2026-01-28 17:20:11+00:00| seen| Telegram/yXy36TX-l3HHyr8aIHw3JdopJLK3nb5QySa9H1H0VzeiNQU...

Malicious Package

Overview @sportdigi/bootstrapper is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this packa...

From Triage to Threat Hunts: How AI Accelerates SecOps

If you work in security operations, the concept of the AI SOC agent is likely familiar. Early narratives promised total autonomy. Vendors seized on the idea of the "Autonomous SOC" and suggested a future where algorithms replaced analysts. That future has not arrived. We have not seen mass layoff...

CVE-2025-7740

creationtimestamp| type| source ---|---|--- 2026-01-28 10:20:09+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mdi2etilnc2c 2026-02-12 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-043-09...

CVE-2025-68857

creationtimestamp| type| source ---|---|--- 2026-01-27 23:28:55+00:00| seen| Telegram/YNtd9hp8-fgDeBa8loSpBRJii6nAPxhmRO29fflkF0ZSQkw...

UBUNTU-CVE-2026-22264

Suricata is a network IDS, IPS and NSM engine. Prior to version 8.0.3 and 7.0.14, an unsigned integer overflow can lead to a heap use-after-free condition when generating excessive amounts of alerts for a single packet. Versions 8.0.3 and 7.0.14 contain a patch. As a workaround, do not run...

CVE-2026-22264

CVE-2026-22264 affects Suricata (network IDS/IPS/NSM engine). The issue is caused by an unsigned integer overflow that can trigger a heap use-after-free during generation of excessive alerts for a single packet. Affected releases are prior to versions 8.0.3 and 7.0.14 ; those versions contain the...

CVE-2026-22264 Suricata detect/alert: heap-use-after-free on alert queue expansion

Suricata is a network IDS, IPS and NSM engine. Prior to version 8.0.3 and 7.0.14, an unsigned integer overflow can lead to a heap use-after-free condition when generating excessive amounts of alerts for a single packet. Versions 8.0.3 and 7.0.14 contain a patch. As a workaround, do not run...

CVE-2026-22264 Suricata detect/alert: heap-use-after-free on alert queue expansion

Suricata is a network IDS, IPS and NSM engine. Prior to version 8.0.3 and 7.0.14, an unsigned integer overflow can lead to a heap use-after-free condition when generating excessive amounts of alerts for a single packet. Versions 8.0.3 and 7.0.14 contain a patch. As a workaround, do not run...

CVE-2026-22264 Suricata detect/alert: heap-use-after-free on alert queue expansion

Suricata is a network IDS, IPS and NSM engine. Prior to version 8.0.3 and 7.0.14, an unsigned integer overflow can lead to a heap use-after-free condition when generating excessive amounts of alerts for a single packet. Versions 8.0.3 and 7.0.14 contain a patch. As a workaround, do not run...

CVE-2026-22261 Suricata eve/alert: http1 xff handling can lead to denial of service

Suricata is a network IDS, IPS and NSM engine. Prior to versions 8.0.3 and 7.0.14, various inefficiencies in xff handling, especially for alerts not triggered in a tx, can lead to severe slowdowns. Versions 8.0.3 and 7.0.14 contain a patch. As a workaround, disable XFF support in the eve...