cyberintel.kalymoon.com · 31151 articles · updated every 4 hours · grows forever
A vulnerability described as critical has been identified in scanwith Visual Ping 0.8.0.0 . Impacted is an unknown function. Executing a manipulation can lead to buffer overflow. The identification of…
A vulnerability classified as critical has been found in Moosocial mooSocial Store Plugin 2.6 . The affected element is an unknown function. The manipulation of the argument Product leads to sql injec…
A vulnerability classified as critical was found in SocuSoft Flash Slideshow Maker Professional 5.20 . The impacted element is an unknown function. The manipulation results in buffer overflow. This vu…
A vulnerability, which was classified as critical , has been found in SocuSoft iPod Photo Slideshow 8.05 . This affects an unknown function. This manipulation causes stack-based buffer overflow. This …
A vulnerability, which was classified as critical , was found in SocuSoft 3GP Photo Slideshow 8.05 . This impacts an unknown function. Such manipulation leads to buffer overflow. This vulnerability is…
A vulnerability has been found in Stokedonit Notebook Pro 2.0 and classified as problematic . Affected is an unknown function. Performing a manipulation results in uncontrolled memory allocation. This…
A vulnerability was found in Mozilla Firefox up to 151.0 on iOS and classified as problematic . Affected by this vulnerability is an unknown functionality of the component RTL Handler . Executing a ma…
A vulnerability was found in Apache Syncope up to 3.0.16/4.0.5/4.1.0 . It has been classified as problematic . Affected by this issue is some unknown functionality of the component Groovy Code Handler…
A vulnerability was found in Apache Syncope up to 3.0.16/4.0.5/4.1.0 . It has been declared as problematic . This affects an unknown part of the component JEXL Handler . The manipulation results in ex…
A vulnerability was found in benoitc hackney up to 4.0.0 . It has been rated as problematic . This vulnerability affects unknown code. This manipulation causes interpretation conflict. This vulnerabil…
A vulnerability categorized as critical has been discovered in Soroush IM Desktop App 0.17.0 . This issue affects some unknown processing. Such manipulation leads to authentication bypass by spoofing.…
For the latest discoveries in cyber research for the week of 25th May, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES 7-Eleven, the global convenience store chain, confirme…
Authorities in the Netherlands have arrested the co-owners of two related Internet hosting companies for operating IT infrastructure used by Russia to carry out cyberattacks, influence operations and …
What Claude Mythos Reveals About AI Capability, Control and Risk A researcher's phone buzzed with an email from an AI that wasn't supposed to have internet access. The real story isn't about rogue mac…
Separate Breach Details Can Bleed Into Each Other, Incident Responders Find Cybersecurity investigators who use artificial intelligence tools to draft incident response reports, beware: Information ti…
A Russian state-sponsored threat group has quietly upgraded one of its most powerful cyber weapons, and the result is a spying tool that is harder to detect, harder to kill, and more capable than ever…
A well-known Iranian threat group has found a new way to push malware onto people’s machines. Instead of sending phishing emails, the group built a fake website that impersonated a real database softw…
A newly disclosed zero-day vulnerability in the KnowledgeDeliver Learning Management System (LMS) has been actively exploited in the wild to deploy the BLUEBEAM in-memory web shell, according to Mandi…
Enterprises cannot secure AI agents by making the underlying models more robust and must instead enforce security controls at the system level around them, researchers behind a paper published this mo…
Dutch authorities arrested two men and seized 800 servers linked to a hosting provider that investigators say supported Russian activities aimed at undermining democracy and security through cyberatta…
Security teams already struggle with long lists of vulnerabilities and limited time to patch them. Cisco believes AI could increase that pressure by accelerating vulnerability discovery and increasing…
The affected third-party vendor has not been named, but one possible candidate is TriZetto. The post Oncology Institute Discloses Data Breach appeared first on SecurityWeek .
Sites belonging to major universities such as Harvard and Oxford, as well as DuckDuckGo, have been compromised in the attack. The post Ghost CMS Vulnerability Exploited to Hack Over 700 Websites appea…
Ask a cybersecurity pro about Network Detection and Response (NDR) and you might still hear "Noisy," "Too much data." But ask the teams running NDR that includes agentic AI capabilities and you'll hea…