TL;DR A critical flaw in WAGO System I/O field devices now has a fix. Tracked as CVE-2026-4769,...
News
At a Glance Actor or group: Armored Likho APT (suspected) Activity type: Spear-phishing and information theft Targets...
At a Glance Malware Family: Indirect Prompt Injection (IPI) Threat Actor: Suspected GitHub user (Open-Agent-Utilities) Target: Autonomous...
Yesterday, Elon Musk and Sam Altman engaged in a fierce public dispute on X. Meanwhile, an opportunistic...
Cursor is an AI code editor acquired by Elon Musk for 60 billion dollars. The company is...
Last week brought a heavy load for defenders. This weekly CVE report from CVE WATCHTOWER counts 1,571...
At a Glance Malware Family: Mycelium Framework Threat Actor: Unknown (suspected underground developer) Targets or Victims: Enterprise...
TL;DR Apache has patched a new flaw in Apache Log4j, tracked as CVE-2026-49844. The bug lets an...
TL;DR A high-severity decompress npm vulnerability lets crafted archives write files outside the extraction folder. Tracked as...
TL;DR Apache IoTDB has patched three flaws in its time-series database. The worst is a critical path...
At a glance Actor A Silver Fox (UTG-Q-1000) Ghost distributor — assessed “hybrid threat actor” Activity SEO-poisoned...
TL;DR The Apache Camel project patched four high-severity flaws across five components. Three Apache Camel vulnerabilities let...
TL;DR CISA published an advisory for three flaws in the Gardyn IoT Hub, the controller for Gardyn’s...
TL;DR On June 30, 2026, the FreeBSD Project shipped three advisories covering FreeBSD privilege escalation bugs in...
TL;DR A researcher disclosed a Kafka authentication bypass in the OAUTHBEARER login path. It affects Apache Kafka...
Earlier this year, Microsoft released WSL Containers, its native container platform built directly into the Windows Subsystem...
TL;DR Security researchers discovered an HP Deskjet missing authorization vulnerability in the 2800 printer series. This flaw,...
Anthropic has announced the launch of “Reflect.” This innovative digital health and efficiency dashboard is tailored perfectly...
TL;DR Researchers have published full details and working exploit code for CVE-2026-31694. This Linux kernel FUSE bug...
Malware family PamStealer (Rust-based macOS infostealer) Threat actor Not attributed by Jamf Targets Apple Silicon Mac users;...
TL;DR The GNU Guix project disclosed four GNU Guix vulnerabilities in early July 2026. Three affect the...
At a Glance Malware family JADEPUFFER (agentic ransomware) Threat actor Unnamed operator; Sysdig assesses an autonomous AI...