CyberIntel ⬡ News
★ Saved ◆ Cyber Reads

// Cyber
Intel Feed

cyberintel.kalymoon.com  ·  33905 articles  ·  updated every 4 hours · grows forever

33905Total
25814Full Text
Jul 07, 2026Latest
◈ Women in Cyber ◉ Threat Intelligence ◎ How-To & Tutorials ⬡ Vulnerabilities & CVEs 🔍 Digital Forensics ◍ Incident Response & DFIR ◆ Security Tools & Reviews ◇ Industry News & Leadership ✉ Email Security 🛡 Active Threats ⚠ Critical CVEs ◐ Insider Threat & DLP ◌ Quantum Computing ◬ AI & Machine Learning
🔥 Trending Topics · Last 48h
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-47221 | envoyproxy envoy up to 1.35.12/1.36.8/1.37.4/1.38.2 PATCH Request null pointer dereference (GHSA-rcff-gw58-pjpr)

A vulnerability, which was classified as problematic , was found in envoyproxy envoy up to 1.35.12/1.36.8/1.37.4/1.38.2 . This issue affects some unknown processing of the component PATCH Request Hand…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-47778 | envoyproxy envoy up to 1.35.10/1.36.6/1.37.2/1.38.0 Helper Utility c_str null byte or nul character (GHSA-f8x4-rw5x-f3r7)

A vulnerability has been found in envoyproxy envoy up to 1.35.10/1.36.6/1.37.2/1.38.0 and classified as problematic . Impacted is the function c_str of the component Helper Utility . This manipulation…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-48042 | envoyproxy envoy up to 1.35.10/1.36.6/1.37.2/1.38.0 JSON Object excessively deep nesting (GHSA-f24p-rxw2-g6pv)

A vulnerability was found in envoyproxy envoy up to 1.35.10/1.36.6/1.37.2/1.38.0 and classified as problematic . The affected element is an unknown function of the component JSON Object Handler . Such…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-48044 | envoyproxy envoy up to 1.35.10/1.36.6/1.37.2/1.38.0 data amplification (GHSA-m3p9-47wh-88wg)

A vulnerability was found in envoyproxy envoy up to 1.35.10/1.36.6/1.37.2/1.38.0 . It has been classified as problematic . The impacted element is an unknown function. Performing a manipulation result…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-48743 | envoyproxy envoy up to 1.35.10/1.36.6/1.37.2/1.38.0 request smuggling (GHSA-8phg-2h2q-jgxf)

A vulnerability was found in envoyproxy envoy up to 1.35.10/1.36.6/1.37.2/1.38.0 . It has been declared as problematic . This affects an unknown function. Executing a manipulation can lead to http req…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-13372 | Devolutions Remote Desktop Manager up to 2026.2.10 Powershell Script name resolution (DEVO-2026-0021)

A vulnerability was found in Devolutions Remote Desktop Manager up to 2026.2.10 . It has been rated as critical . This impacts an unknown function of the component Powershell Script Handler . The mani…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-47220 | envoyproxy envoy up to 1.37.4/1.38.2 Host Header null pointer dereference

A vulnerability categorized as problematic has been discovered in envoyproxy envoy up to 1.37.4/1.38.2 . Affected is an unknown function of the component Host Header Handler . The manipulation results…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-48497 | envoyproxy envoy up to 1.35.10/1.36.6/1.37.2/1.38.0 incorrect operator (GHSA-j6g2-wf95-q66q)

A vulnerability identified as problematic has been detected in envoyproxy envoy up to 1.35.10/1.36.6/1.37.2/1.38.0 . Affected by this vulnerability is an unknown functionality. This manipulation cause…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-47205 | envoyproxy envoy up to 1.36.8/1.37.4/1.38.2 Protected WebSocket Endpoint doDeferredStreamDestroy use after free

A vulnerability labeled as critical has been found in envoyproxy envoy up to 1.36.8/1.37.4/1.38.2 . Affected by this issue is the function ConnectionManagerImpl::doDeferredStreamDestroy of the compone…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-54753 | nrwl nx up to 22.7.1/23.0.0-beta.1 HELP Command routine (GHSA-g2r8-wvmj-jf5w)

A vulnerability marked as problematic has been reported in nrwl nx up to 22.7.1/23.0.0-beta.1 . This affects an unknown part of the component HELP Command Handler . Performing a manipulation results i…

VulDB Read →
◇ Industry News & Leadership Jun 26, 2026
A Hack Too Far? Report Ties Russia to Jaguar Land Rover Hit

How Should the British Government Respond to the $2.5B Economic Disruption? Suggestions that the Kremlin orchestrated the disruptive hack attack against British automotive giant Jaguar Land Rover rais…

Data Breach Today Read →
◇ Industry News & Leadership Jun 26, 2026
Webinar | What It Takes to Make AI Trustworthy in Healthcare
Data Breach Today Read →
◇ Industry News & Leadership Jun 26, 2026
ISMG Editors: Prep Now, Hackers Will Soon Wield Frontier AI

Also: AI Model for Drug Development Allegedly Stolen; Accenture's Dragos Deal In this week's panel, four ISMG editors discussed Western intelligence agencies' warning that attackers will soon wield fr…

Data Breach Today Read →
◇ Industry News & Leadership Jun 26, 2026
How Accenture Acquisition Could Push Dragos Beyond Energy

Forrester: Transaction Reflects Move From Services Toward Owning Security Technology Forrester analyst Paddy Harrington says Accenture's proposed acquisition of Dragos signals a strategic move toward …

Data Breach Today Read →
◇ Industry News & Leadership Jun 26, 2026
HHS Agencies Flesh Out Priorities for Healthcare AI

Coordinated 'OneHHS' AI Governance, Implementation, Guidance Efforts Under Way The U.S. Department of Health and Human Services is preparing guidance aimed at accelerating the adoption of healthcare A…

Data Breach Today Read →
◇ Industry News & Leadership Jun 26, 2026
New Linux pedit COW Exploit Allows Attackers to Gain System Root Access

A newly disclosed Linux kernel vulnerability combining a Copy-on-Write (COW) page-cache corruption flaw with the net/sched subsystem’s act_pedit component is enabling unprivileged local attackers to e…

Cybersecurity News Read →
◇ Industry News & Leadership Jun 26, 2026
Amazon Q Vulnerability Let Attackers Execute Code and Access Sensitive Cloud Environments

A high-severity vulnerability in the Amazon Q Developer Extension for Visual Studio Code (VS Code), Amazon’s AI-powered coding assistant. Tracked as CVE-2026-12957 and CVE-2026-12958 and disclosed by …

Cybersecurity News Read →
◇ Industry News & Leadership Jun 26, 2026
New DirtyClone Linux Vulnerability Allows Attackers to Gain Root Access Via Cloned Packets

A new Linux kernel local privilege escalation vulnerability, dubbed “DirtyClone” (CVE-2026-43503), that allows unprivileged local users to gain full root access by manipulating cloned network packets …

Cybersecurity News Read →
◇ Industry News & Leadership Jun 26, 2026
Malware authors subvert AI detection systems

Enterprises that have turned to AI in order to boost their security defenses may have to reconsider their approach. Malware containing code that commands LLM-assisted products to abort their analysis …

CSO Online Read →
◇ Industry News & Leadership Jun 26, 2026
Chinese-Speaking APT Deploys New TinyRCT Backdoor in Southeast Asia Campaign

A Chinese-speaking advanced persistent threat (APT) actor has been linked to a new custom backdoor called TinyRCT as part of cyber attacks aimed at government entities and critical infrastructure in S…

The Hacker News Read →
◇ Industry News & Leadership Jun 26, 2026
New SharkLoader Malware Deploys Cobalt Strike in StrikeShark Cyberattacks

A newly discovered cyber attack campaign has been observed delivering a previously undocumented malware family called SharkLoader that acts as a loader for deploying Cobalt Strike Beacon on compromise…

The Hacker News Read →
◇ Industry News & Leadership Jun 26, 2026
FBI Warns Russian Intelligence Hackers Target Signal Backup Recovery Keys

The FBI and CISA have updated their March warning about Russian intelligence phishing Signal accounts, and the operators have added a step: they now coax targets into handing over their Signal Backup …

The Hacker News Read →
◇ Industry News & Leadership Jun 26, 2026
Cybersecurity firms targeted by fraudulent OpenAI organization invites

Threat actors are creating OpenAI tenants that impersonate legitimate companies and inviting employees to join them, in what appears to be a ploy to trick targets into submitting sensitive company inf…

Bleeping Computer Read →
◇ Industry News & Leadership Jun 26, 2026
Polymarket customers lose $3 million in supply-chain attack

Polymarket says it will fully reimburse customers who lost an estimated $3 million after hackers injected a malicious script into the platform's frontend following a breach at a third-party vendor. [.…

Bleeping Computer Read →
← Prev 105 / 1413 Next →