CyberIntel ⬡ News
★ Saved ◆ Cyber Reads

// Cyber
Intel Feed

cyberintel.kalymoon.com  ·  34279 articles  ·  updated every 4 hours · grows forever

34279Total
26033Full Text
Jul 08, 2026Latest
◈ Women in Cyber ◉ Threat Intelligence ◎ How-To & Tutorials ⬡ Vulnerabilities & CVEs 🔍 Digital Forensics ◍ Incident Response & DFIR ◆ Security Tools & Reviews ◇ Industry News & Leadership ✉ Email Security 🛡 Active Threats ⚠ Critical CVEs ◐ Insider Threat & DLP ◌ Quantum Computing ◬ AI & Machine Learning
🔥 Trending Topics · Last 48h
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-57877 | GeoVision GV-LPCLPC2011/GV-LPCLPC2211 up to 1.12 vlsvr format string

A vulnerability marked as critical has been reported in GeoVision GV-LPCLPC2011 and GV-LPCLPC2211 up to 1.12 . Affected by this issue is some unknown functionality of the component vlsvr . Performing …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-2053 | WSO2 API Manager up to 3.0.x Destination server-side request forgery

A vulnerability described as critical has been identified in WSO2 API Manager up to 3.0.x . This affects an unknown part of the component Destination Handler . Executing a manipulation can lead to ser…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-57881 | GeoVision GV-LPCLPC2011/GV-LPCLPC2211 up to 1.12 vlsvr stack-based overflow

A vulnerability classified as critical has been found in GeoVision GV-LPCLPC2011 and GV-LPCLPC2211 up to 1.12 . This vulnerability affects unknown code of the component vlsvr . The manipulation leads …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-57875 | GeoVision GV-LPCLPC2011/GV-LPCLPC2211 up to 1.12 CGI null pointer dereference

A vulnerability classified as problematic was found in GeoVision GV-LPCLPC2011 and GV-LPCLPC2211 up to 1.12 . This issue affects some unknown processing of the component CGI . The manipulation results…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-57874 | GeoVision GV-LPCLPC2011/GV-LPCLPC2211 up to 1.12 Multipart Upload IEEE8021x_upload.cgi buffer overflow

A vulnerability, which was classified as critical , has been found in GeoVision GV-LPCLPC2011 and GV-LPCLPC2211 up to 1.12 . Impacted is an unknown function of the file IEEE8021x_upload.cgi of the com…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-57873 | GeoVision GV-LPCLPC2011/GV-LPCLPC2211 up to 1.12 Multipart Request IEEE8021x_upload.cgi null pointer dereference

A vulnerability, which was classified as problematic , was found in GeoVision GV-LPCLPC2011 and GV-LPCLPC2211 up to 1.12 . The affected element is an unknown function of the file IEEE8021x_upload.cgi …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-57876 | GeoVision GV-LPCLPC2011/GV-LPCLPC2211 up to 1.12 Request onvif.cgi out-of-bounds write

A vulnerability has been found in GeoVision GV-LPCLPC2011 and GV-LPCLPC2211 up to 1.12 and classified as critical . The impacted element is an unknown function of the file onvif.cgi of the component R…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-11702 | DAVIDO Bytes::Random::Secure::Tiny up to 1.011 on Perl prng seed

A vulnerability was found in DAVIDO Bytes::Random::Secure::Tiny up to 1.011 on Perl and classified as problematic . This affects an unknown function. Executing a manipulation can lead to incorrect usa…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-11625 | DAVIDO Bytes::Random::Secure up to 0.29 on Perl Functional Interface prng seed

A vulnerability was found in DAVIDO Bytes::Random::Secure up to 0.29 on Perl. It has been classified as problematic . This impacts the function Bytes::Random::Secure of the component Functional Interf…

VulDB Read →
◇ Industry News & Leadership Jun 26, 2026
Minecraft Malware Loader Uses RSA-Signed Smart Contract Updates for Persistent C2

A new and highly sophisticated malware loader has been found hiding inside what appears to be a harmless Minecraft mod. Researchers have uncovered a campaign that blends blockchain technology and soci…

Cybersecurity News Read →
◇ Industry News & Leadership Jun 26, 2026
Miasma Malware Uses binding.gyp and Bun to Execute Hidden Payloads in npm Packages

Supply chain attackers are getting more creative, and the latest threat is proof of that. A malware campaign known as Miasma has been caught hiding inside widely used npm packages, using a clever mix …

Cybersecurity News Read →
◇ Industry News & Leadership Jun 26, 2026
CL-STA-1062 Hackers Use TinyRCT Backdoor to Target Southeast Asian Governments

A Chinese-speaking threat group known as CL-STA-1062 has been running a quiet but aggressive campaign against government agencies and critical energy infrastructure across Southeast Asia. The attacker…

Cybersecurity News Read →
◇ Industry News & Leadership Jun 26, 2026
KuinaExtractor Uses Telegram Exfiltration, UAC Bypass, and Sandbox Detection for Stealth

A newly uncovered infostealer called KuinaExtractor has been quietly evolving for over six months, posing a serious and growing threat to users across multiple platforms. Written in the Rust programmi…

Cybersecurity News Read →
◇ Industry News & Leadership Jun 26, 2026
Critical python.org Vulnerability Allowed Attackers to Forge Admin-Level API Requests

A critical authentication bypass vulnerability in the python.org release management API could have allowed attackers to impersonate administrators, potentially redirecting millions of users to malicio…

Cybersecurity News Read →
◇ Industry News & Leadership Jun 26, 2026
Nikkei Warns of Japan’s Ground Self-Defense Force Used USB Drives Infected with a China-linked Malware

A serious cybersecurity breach has come to light in Japan, where the country’s Ground Self-Defense Force (JGSDF) unknowingly used malware-infected USB drives on computers connected to classified milit…

Cybersecurity News Read →
◇ Industry News & Leadership Jun 26, 2026
Hackers Leveraged Shopify Oder-Tracking App Shop to Push Fake Invoices

Hackers are no longer waiting in your inbox. A newly identified scam technique places fake invoices directly inside shopping app order histories, making them feel more credible than a typical phishing…

Cybersecurity News Read →
◇ Industry News & Leadership Jun 26, 2026
China-Linked Hackers Strike Asian Critical Infrastructure with TinyRCT Backdoor

A China-linked threat group has been targeting critical infrastructure in Southeast Asia with a new custom backdoor called TinyRCT

Infosecurity Magazine Read →
◇ Industry News & Leadership Jun 26, 2026
Mythos is a signal, not a siren: What frontier AI should change for CISOs

When a new AI capability starts making headlines, I see the same pattern play out in boardrooms and executive staff meetings. The technology is introduced as a looming breakthrough for attackers. The …

CSO Online Read →
◇ Industry News & Leadership Jun 26, 2026
Proposed US law would make AI risk reporting a legal obligation

US lawmakers on Thursday introduced a bill that would require developers of advanced AI models to report major safety and security incidents to the Commerce Department, establishing a federal oversigh…

CSO Online Read →
◇ Industry News & Leadership Jun 26, 2026
What CISOs need to tell the board about zero trust in OT: A 90-day communication and action plan

I work as a principal specialist at a pipeline operator where Operational Technology (OT) is the backbone of the business. I do not report to the board or act as a CISO, but the issues that get raised…

CSO Online Read →
◇ Industry News & Leadership Jun 26, 2026
SIM-swapping gang busted in international police operation

Officers from Poland’s Central Bureau for Combating Cybercrime (CBZC) arrested four suspected members of an organized cybercrime group accused of SIM swap attacks, cryptocurrency theft, and money laun…

Help Net Security Read →
◇ Industry News & Leadership Jun 26, 2026
Mystery hackers use novel SharkLoader dropper against governments, software devs

Kaspersky researchers have uncovered a previously unknown cyberattack campaign that has compromised government organizations and software development companies in multiple countries. They first stumbl…

Help Net Security Read →
◇ Industry News & Leadership Jun 26, 2026
Mirage2FA phishing kit uses HTML smuggling to steal Microsoft 365 credentials

Mirage2FA, a phishing kit that combines short-lived HTML smuggling with obfuscated JavaScript loaders to deliver fake Microsoft 365 login pages and steal credentials during MFA prompts, has been ident…

Help Net Security Read →
◇ Industry News & Leadership Jun 26, 2026
Ransomware gangs find Europe’s weakest link in third-party suppliers

Ransomware attacks against European organizations increased during the first months of 2026, with third-party suppliers becoming a major entry point for attackers. Black Kite examined 2,066 ransomware…

Help Net Security Read →
← Prev 124 / 1429 Next →