A vulnerability categorized as critical has been discovered in goauthentik authentik up to 2025.12.4/2026.2.2 . Impacted is an unknown function. The manipulation of the argument NameID results in impr…
cyberintel.kalymoon.com · 34279 articles · updated every 4 hours · grows forever
A vulnerability categorized as critical has been discovered in goauthentik authentik up to 2025.12.4/2026.2.2 . Impacted is an unknown function. The manipulation of the argument NameID results in impr…
A vulnerability identified as critical has been detected in Altium 365 . The affected element is an unknown function of the component Legacy SOAP Endpoint . This manipulation causes missing authentica…
A vulnerability labeled as critical has been found in libsolv . The impacted element is an unknown function of the component Debian Metadata Parser . Such manipulation leads to stack-based buffer over…
A vulnerability marked as problematic has been reported in RRWO Crypt::SaltedHash up to 0.09 on Perl. This affects the function rand . Performing a manipulation results in cryptographically weak prng.…
A vulnerability described as critical has been identified in libsolv . This impacts the function repo_add_solv of the component solv File Handler . Executing a manipulation can lead to heap-based buff…
A vulnerability classified as problematic has been found in wpbean WPB Floating Menu or Categories Plugin up to 1.0.8 on WordPress. Affected is an unknown function. The manipulation leads to cross sit…
A vulnerability classified as very critical was found in LiteSpeed User-End cPanel Plugin up to 2.4.4 . Affected by this vulnerability is the function cpanel_jsonapi_func of the file /var/cpanel/logs …
A vulnerability, which was classified as problematic , has been found in Siber Systems RoboForm Password Manager App on Android. Affected by this issue is some unknown functionality of the component U…
A vulnerability, which was classified as critical , was found in themefusion Avada Builder Plugin up to 3.15.2 on WordPress. This affects the function Fusion_Builder_Conditional_Render_Helper::get_val…
A vulnerability has been found in MLflow up to 3.9.x and classified as critical . This vulnerability affects unknown code of the component REST API . Performing a manipulation of the argument BEFORE_R…
A vulnerability was found in themefusion Avada Builder Plugin up to 3.15.2 on WordPress and classified as problematic . This issue affects some unknown processing of the component Dynamic Data Feature…
A novel evasion technique called GhostTree, which exploits NTFS junctions to create recursive directory loops. Uncovered by Varonis Threat Labs, this method traps Endpoint Detection and Response (EDR)…
Two former executives of a U.S.-based call routing and analytics company have pleaded guilty to federal charges for knowingly enabling India-based call centers to defraud thousands of American victims…
A ransomware strain called WantToCry has been targeting businesses by abusing a widely used file-sharing protocol to encrypt files without dropping any malware on the victim’s system. The attacks mark…
The cybersecurity profession is on the verge of a sea change, and security pros must begin to master AI tools to combat emerging threats by building more autonomous, real-time protections. Expert pane…
Cybersecurity has become a key priority for small and medium-sized businesses due to growing threats and wider AI adoption. An IDC survey of 2,200 SMBs in eight markets examined how organizations mana…
Bitdefender Mobile Security for iOS is a security and privacy application for iPhone and iPad that helps protect against phishing attempts, online scams, unsafe websites, and account exposure. I have …
Adversarial probing of LLMs has piled up a sprawling toolkit over the past three years. Attack techniques with names like Tree of Attacks with Pruning, Crescendo, and Skeleton Key sit alongside hundre…
Dark web activity often becomes visible during marketplace seizures, major data leaks, or sudden spikes in criminal activity. Those events can create an impression of an ecosystem where attention shif…
In this Help Net Security interview, Devon Bryan, SVP, Global CSO at Booking Holdings, reflects on his path from Air Force network security engineer to global CSO across financial services, hospitalit…
Terra Security has announced the public preview of continuous exploitation validation for network infrastructure, now available to all customers through the Terra Platform. The launch expands Terra’s …
CTERA has announced the launch of CTERA InsightAI, an agentic AI intelligence layer for the CTERA Intelligent Data Platform. The new capability is designed to help enterprises understand, manage, secu…
Forward has unveiled Forward Predict, a new capability that allows organizations to evaluate the impact of network changes before deployment. By testing proposed changes against a digital twin of the …