4755 matches found
MAL-2026-5091 Malicious code in discord-ban (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 4e19806a65bf83b5648eb280baedca899972d98e8c3f921080390458e8394413 Package steals data from web browsers credentials, credit cards, history, ... --- Category: MALICIOUS - The campaign has clearly malicious intent, like...
CVE-2026-10162
creationtimestamp| type| source ---|---|--- 2026-05-30 11:14:14+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116663232233376212 2026-05-31 03:00:26+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mn4l5tcb7b2k 2026-05-31 03:00:29+00:00| seen|...
PAN-OS GlobalProtect Authentication Bypass (CVE-2026-0257) Under Active Exploitation
Palo Alto Networks has warned that a recently disclosed medium-severity security flaw impacting PAN-OS and Prisma Access has come under active exploitation in the wild. The vulnerability, tracked as CVE-2026-0257 CVSS score: 7.8, refers to a case of authentication bypass that could be exploited b...
MAL-2026-5063 Malicious code in customerdigital-service-lib (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d58926a994bd05ac4db3c984f96186b2d52da1235a3f56f34843c01dd2246408 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in customerdigital-service-lib (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d58926a994bd05ac4db3c984f96186b2d52da1235a3f56f34843c01dd2246408 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2026-5059 Malicious code in chai-bundle (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5110f40393583ef41ebcfa3558d782310a40a78227a040480d871c25311b79ec Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @trp-individual-investor-adv-disc/adv-shared (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1fc0ed55f4ec8a9ae7dd408c68635f245461c319bf4e7a0ca85adb25c9eb317b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2026-5066 Malicious code in ethers-hash (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5d77270819f9736bb8e5eaba898605cbe713dfaf9b06c2ad539aa29f77651aba Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Security Bulletin: Multiple security vulnerabilities addressed with IBM Business Automation Workflow cumulative fixes May 2026
Summary In addition to updating many operating system level packages, the following security vulnerabilities are addressed with IBM Business Automation Workflow cumulative fixes. Vulnerability Details CVEID:CVE-2025-12183 DESCRIPTION: Out-of-bounds memory operations in org.lz4:lz4-java 1.8.0 and...
CVE-2026-44596
creationtimestamp| type| source ---|---|--- 2026-05-29 15:00:15+00:00| seen| Telegram/a86W4JR7O--z7UEFDSjPGooPu8cJg6Qw5misZZ2a8xOkaUM 2026-05-29 21:00:04+00:00| seen| Telegram/7EeES1995AuZh7L7sqmaK3TqJ83qHuwNNd4oo-aSS2rD4M...
CVE-2026-49196
creationtimestamp| type| source ---|---|--- 2026-05-29 11:38:44+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmyh6rpkeo2i...
CVE-2026-33386
creationtimestamp| type| source ---|---|--- 2026-05-29 07:15:00+00:00| seen| https://cert.pl/en/posts/2026/05/CVE-2026-33384...
CVE-2026-41236
creationtimestamp| type| source ---|---|--- 2026-05-29 06:30:36+00:00| published-proof-of-concept| https://github.com/froxlor/froxlor/security/advisories/GHSA-mq5v-pxpm-8jw2 2026-06-04 18:44:56+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnibsgjzcn2y...
CVE-2026-46822
creationtimestamp| type| source ---|---|--- 2026-05-28 23:35:39+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmx6rsqhkt2w 2026-05-29 22:37:06+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mmzlxzqqhp2f...
CVE-2026-44466
creationtimestamp| type| source ---|---|--- 2026-05-28 18:02:11+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mmwm5ilszt2s 2026-05-28 19:35:25+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmwreavbin2t 2026-06-02 22:07:07+00:00| seen|...
CVE-2026-10004
creationtimestamp| type| source ---|---|--- 2026-05-28 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260529 2026-05-28 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/microsoft-edge-multiple-vulnerabilities20260529 2026-05-29...
CVE-2026-47761
creationtimestamp| type| source ---|---|--- 2026-05-28 17:01:17+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mmwiqloac22z 2026-05-28 17:05:18+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmwixsmqhn2i 2026-05-29 00:37:08+00:00| seen|...
CVE-2026-47759
creationtimestamp| type| source ---|---|--- 2026-05-28 17:01:01+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mmwiq4djr42l 2026-05-28 17:23:57+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmwjz5vnzt2i 2026-05-28 21:37:06+00:00| seen|...
The CISO Whisperer’s Watch List For The Gartner Security & Risk Management Summit 2026
New York, USA, 28th May 2026, CyberNewswire...
Threat Actors Exploit Critical FortiClient EMS Flaw to Deploy Credential Stealer
Threat actors are continuing to exploit a critical, now-patched security flaw impacting FortiClient Endpoint Management Server EMS deployments to deliver a credential-stealing malware family dubbed EKZ Infostealer. "The campaign abused trusted endpoint management infrastructure to deliver malware...