Category: Uncategorized
-

Microsoft Patches Record 622 Flaws, Including Two Zero-Days Under Active Attack [email protected] (The Hacker News)
Microsoft shipped its largest Patch Tuesday on record today, and two of the fixes close holes that attackers are already exploiting. The release covers 622 of Microsoft’s own CVEs by its Security Update Guide count, more than triple June’s previous high of around 200. Those two live bugs are the ones to grab first. Microsoft credits incident responders…
-

SAP Patches CVSS 9.9 NetWeaver ABAP Flaw That Could Expose or Modify Data [email protected] (The Hacker News)
SAP has rolled out updates to address multiple vulnerabilities as part of its July 2026 security updates, including a critical flaw in SAP NetWeaver Application Server ABAP. The vulnerability in question is CVE-2026-44747 (CVSS score: 9.9), an out-of-bounds write flaw that allows an authenticated attacker to leverage logical errors in memory management to cause a…
-

Researchers Say Claude for Chrome Flaw Lets Rogue Extensions Trigger Gmail Reads [email protected] (The Hacker News)
Any other browser extension that can run a script on claude.ai can still trigger Claude for Chrome tasks aimed at your Gmail, your latest Google Doc and its comments, and your Calendar. Both this and ClaudeBleed need a rogue extension that can already run a script on claude.ai; the difference is scope. Anthropic restricted the…
-

LabubaRAT Masquerades as NVIDIA Software to Control Windows Hosts [email protected] (The Hacker News)
Cybersecurity researchers have flagged a previously undocumented Rust-based remote access trojan (RAT) codenamed LabubaRAT that masquerades as NVIDIA software to blend into target environments. “LabubaRAT creates a reusable foothold for hands-on activity,” Blackpoint Cyber researchers Sam Decker and Nevan Beal said in an analysis published today. “Once deployed, it can profile the host,Read More
-

RabbitMQ Flaws Could Leak OAuth Secrets and Expose Cross-Tenant Queue Metadata [email protected] (The Hacker News)
Cybersecurity researchers have disclosed details of two access control-related flaws impacting the RabbitMQ message broker service that could allow attackers to leak OAuth client secrets, expose enterprise messaging infrastructure to takeover risks, and bypass tenant boundaries. Miggo’s security team, which discovered and reported the flaws, said one “leaks the broker’s confidential OAuthRead More
-

11 Old Microsoft-Signed Linux UEFI Shims Could Let Attackers Bypass Secure Boot [email protected] (The Hacker News)
Cybersecurity researchers have discovered 11 old, Microsoft-signed, Unified Extensible Firmware Interface (UEFI) applications that could be abused to bypass Secure Boot on most systems using the modern firmware standard. “An attacker exploiting one of these vulnerable applications can execute untrusted code during system boot, enabling deployment of malicious UEFI bootkits or other malware,”Read More
-

Study of 85 Crypto Wallet Extensions Finds Address Leaks and Cross-Site Tracking Risks [email protected] (The Hacker News)
Researchers at KU Leuven tested 85 of the most popular crypto wallets that run as browser extensions and found that the wallets themselves leak enough to link and track the people using them. The way these wallets talk to websites and blockchain servers can tie a person’s separate addresses together and let outsiders follow them…
-

How Pentera Turns AI Security Workflows into Validation Engines [email protected] (The Hacker News)
AI security agents are starting to influence real security decisions. They summarize findings, prioritize remediation, recommend next steps, and help teams move faster. But most still rely on fragmented risk signals: scanner output, severity scores, threat intelligence, configuration findings, and exposure data. That fragmentation matters because attackers do not move through environments oneRead More
-

OAuth Client ID Spoofing Lets Attackers Validate Stolen Microsoft Entra Credentials [email protected] (The Hacker News)
At least two distinct threat actors are weaponizing a novel evasion technique called OAuth client ID spoofing in cloud campaigns, while slipping past telemetry. The activity allows users to enumerate user accounts and validate stolen credentials in Microsoft Entra ID environments, without ever generating a successful sign-in event that would otherwise alert defenders. And bad…
-

Grok Build Uploads Entire Git Repositories to xAI Storage, Not Just Files It Reads [email protected] (The Hacker News)
xAI’s Grok Build coding CLI was uploading entire Git repositories, full commit history and all, to a Google Cloud Storage bucket run by xAI, not just the files a coding task needed. A researcher publishing as cereblab, testing version 0.2.93, captured one of those uploads, cloned the git bundle out of the intercepted request, and…
