#cyber-security — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #cyber-security, aggregated by home.social.
-
🎩✨ Oh, look! Another thrilling manifesto on TLS certificates, because who doesn't love a bedtime story about internal services? 🔐💤 The author, obviously a #clickbait connoisseur, promises the secrets to "doing it right" while leading us through a labyrinth of #VPNs and apex domains—spoiler alert: it's as riveting as watching paint dry. 🕵️♂️🏰
https://tuxnet.dev/posts/tls-for-internal-services/ #TLSCertificates #Cybersecurity #TechHumor #HackerNews #ngated -
🎩✨ Oh, look! Another thrilling manifesto on TLS certificates, because who doesn't love a bedtime story about internal services? 🔐💤 The author, obviously a #clickbait connoisseur, promises the secrets to "doing it right" while leading us through a labyrinth of #VPNs and apex domains—spoiler alert: it's as riveting as watching paint dry. 🕵️♂️🏰
https://tuxnet.dev/posts/tls-for-internal-services/ #TLSCertificates #Cybersecurity #TechHumor #HackerNews #ngated -
IBM and Red Hat have launched Lightwell, an automated remediation engine to backport open-source fixes into long-lived production environments. https://www.developer-tech.com/news/ibm-and-red-hat-automate-open-source-vulnerability-remediation/ #ibm #redhat #devsecops #lightwell #automation #cybersecurity #infosec #developers #opensource #ai #technology
-
IBM and Red Hat have launched Lightwell, an automated remediation engine to backport open-source fixes into long-lived production environments. https://www.developer-tech.com/news/ibm-and-red-hat-automate-open-source-vulnerability-remediation/ #ibm #redhat #devsecops #lightwell #automation #cybersecurity #infosec #developers #opensource #ai #technology
-
Some devs love acting like they’re above IT and cyber.
Then we spend a week and a half troubleshooting only to find out they didn’t follow the copy-pasted vendor docs with the exact scopes, settings, and instructions.
Please just read the damn instructions first.
-
Critical RCE Vulnerabilities Exploited in Joomla Page Builder Extensions
CISA has warned of active exploitation of two critical RCE vulnerabilities in Joomla's SP Page Builder and Page Builder CK extensions. Attackers are using these flaws to upload web shells and create rogue Super Administrator accounts to maintain persistent access.
**If you run Joomla with SP Page Builder or Page Builder CK, update SP Page Builder to 6.6.2 and Page Builder CK to 3.6.0 immediately. Both have critical flaws under active attack. Then check your user list for any accounts using the @secure.local email domain, delete any you find, scan the /images/ and /media/ folders for suspicious PHP files, and if anything looks compromised, change all database passwords and secret keys.**
#cybersecurity #infosec #attack #activeexploit
https://beyondmachines.net/event_details/critical-rce-vulnerabilities-exploited-in-joomla-page-builder-extensions-v-v-q-9-p/gD2P6Ple2L -
Critical RCE Vulnerabilities Exploited in Joomla Page Builder Extensions
CISA has warned of active exploitation of two critical RCE vulnerabilities in Joomla's SP Page Builder and Page Builder CK extensions. Attackers are using these flaws to upload web shells and create rogue Super Administrator accounts to maintain persistent access.
**If you run Joomla with SP Page Builder or Page Builder CK, update SP Page Builder to 6.6.2 and Page Builder CK to 3.6.0 immediately. Both have critical flaws under active attack. Then check your user list for any accounts using the @secure.local email domain, delete any you find, scan the /images/ and /media/ folders for suspicious PHP files, and if anything looks compromised, change all database passwords and secret keys.**
#cybersecurity #infosec #attack #activeexploit
https://beyondmachines.net/event_details/critical-rce-vulnerabilities-exploited-in-joomla-page-builder-extensions-v-v-q-9-p/gD2P6Ple2L -
Yet another prompt injection attack: GitLost
GitHub's agentic AI is leaking information form private repositories. I like the way Noma Security puts it: Prompt injections seem to be the modern version of SQL injections.
https://noma.security/blog/gitlost-how-we-tricked-githubs-ai-agent-into-leaking-private-repos/
#cybersecurity #security #infosec #ai #agentic #agenticai #llm #GitHub #GitLost
-
Yet another prompt injection attack: GitLost
GitHub's agentic AI is leaking information form private repositories. I like the way Noma Security puts it: Prompt injections seem to be the modern version of SQL injections.
https://noma.security/blog/gitlost-how-we-tricked-githubs-ai-agent-into-leaking-private-repos/
#cybersecurity #security #infosec #ai #agentic #agenticai #llm #GitHub #GitLost
-
🚨 EUVD-2026-42589
📊 Score: 8.7/10 (CVSS v3.1)
📦 Product: Axivion, Axivion, Axivion (+2 more)
🏢 Vendor: Qt
📅 Updated: 2026-07-09📝 The implementation of an internal and undocumented Dashboard API endpoint (POST /api/users/~/{user}/tokens) forgot to ensure an HTTP request for creating an API Token for another user had sufficient permission to do so.
Preconditi...
🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-42589
-
🚨 EUVD-2026-42589
📊 Score: 8.7/10 (CVSS v3.1)
📦 Product: Axivion, Axivion, Axivion (+2 more)
🏢 Vendor: Qt
📅 Updated: 2026-07-09📝 The implementation of an internal and undocumented Dashboard API endpoint (POST /api/users/~/{user}/tokens) forgot to ensure an HTTP request for creating an API Token for another user had sufficient permission to do so.
Preconditi...
🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-42589
-
🚨 EUVD-2026-42582
📊 Score: n/a
📦 Product: Xerte Online Tools, Xerte Online Tools
🏢 Vendor: Xerte
📅 Updated: 2026-07-09📝 A vulnerability in the Xerte Online Tools allows for RCE through the antivirus binary path in the tools server settings, which can be changed to a PHP interpreter, allowing an attacker to upload PHP data that will then be executed.
🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-42582
-
🚨 EUVD-2026-42590
📊 Score: 4.8/10 (CVSS v3.1)
📦 Product: GPAC
📅 Updated: 2026-07-09📝 A vulnerability was determined in GPAC 26.03-DEV. This affects the function vobsub_read_idx of the file /src/media_tools/vobsub.c of the component MP4Box. Executing a manipulation of the argument num_langs can lead to out-of-bounds read. The attack needs to be launched locally. ...
🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-42590
-
🚨 EUVD-2026-42590
📊 Score: 4.8/10 (CVSS v3.1)
📦 Product: GPAC
📅 Updated: 2026-07-09📝 A vulnerability was determined in GPAC 26.03-DEV. This affects the function vobsub_read_idx of the file /src/media_tools/vobsub.c of the component MP4Box. Executing a manipulation of the argument num_langs can lead to out-of-bounds read. The attack needs to be launched locally. ...
🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-42590
-
🚨 EUVD-2026-42582
📊 Score: n/a
📦 Product: Xerte Online Tools, Xerte Online Tools
🏢 Vendor: Xerte
📅 Updated: 2026-07-09📝 A vulnerability in the Xerte Online Tools allows for RCE through the antivirus binary path in the tools server settings, which can be changed to a PHP interpreter, allowing an attacker to upload PHP data that will then be executed.
🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-42582
-
🚨 EUVD-2026-42583
📊 Score: n/a
📦 Product: Xerte Online Tools, Xerte Online Tools
🏢 Vendor: Xerte
📅 Updated: 2026-07-09📝 A vulnerability in the Xerte Online Tools allows for authentication bypass and remote code execution via reinstallation through the /setup/ folder, enabling attackers to reinstall the service to a remote database they control.
🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-42583
-
🚨 EUVD-2026-42583
📊 Score: n/a
📦 Product: Xerte Online Tools, Xerte Online Tools
🏢 Vendor: Xerte
📅 Updated: 2026-07-09📝 A vulnerability in the Xerte Online Tools allows for authentication bypass and remote code execution via reinstallation through the /setup/ folder, enabling attackers to reinstall the service to a remote database they control.
🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-42583
-
🚨 EUVD-2026-42584
📊 Score: 5.9/10 (CVSS v3.1)
📦 Product: Apigee
🏢 Vendor: Google Cloud
📅 Updated: 2026-07-09📝 An Improper Input Validation vulnerability in BigQuery DAO in Google Cloud Apigee versions prior to 2026-06-12 on Google Cloud Platform allows an authenticated attacker to exfiltrate cross-tenant data.
This vulnerability was patched on 12 June 2026 on ...
🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-42584
-
🚨 EUVD-2026-42584
📊 Score: 5.9/10 (CVSS v3.1)
📦 Product: Apigee
🏢 Vendor: Google Cloud
📅 Updated: 2026-07-09📝 An Improper Input Validation vulnerability in BigQuery DAO in Google Cloud Apigee versions prior to 2026-06-12 on Google Cloud Platform allows an authenticated attacker to exfiltrate cross-tenant data.
This vulnerability was patched on 12 June 2026 on ...
🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-42584
-
🚨 EUVD-2026-42586
📊 Score: 8.2/10 (CVSS v3.1)
📦 Product: PassGate
🏢 Vendor: PEAKUP Technology Inc.
📅 Updated: 2026-07-09📝 Improper neutralization of special elements used in an LDAP query ('LDAP injection') vulnerability in PEAKUP Technology Inc. PassGate allows LDAP Injection.
This issue affects PassGate: through 30042026.
🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-42586
-
🚨 EUVD-2026-42585
📊 Score: 5.3/10 (CVSS v3.1)
📦 Product: Mall, Mall, Mall (+1 more)
🏢 Vendor: macrozheng
📅 Updated: 2026-07-09📝 A vulnerability was identified in macrozheng mall up to 1.0.3. This impacts an unknown function of the file /returnApply/create of the component Portal Endpoint. The manipulation of the argument orderId leads to improper control of reso...
🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-42585
-
🚨 EUVD-2026-42585
📊 Score: 5.3/10 (CVSS v3.1)
📦 Product: Mall, Mall, Mall (+1 more)
🏢 Vendor: macrozheng
📅 Updated: 2026-07-09📝 A vulnerability was identified in macrozheng mall up to 1.0.3. This impacts an unknown function of the file /returnApply/create of the component Portal Endpoint. The manipulation of the argument orderId leads to improper control of reso...
🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-42585
-
🚨 EUVD-2026-42586
📊 Score: 8.2/10 (CVSS v3.1)
📦 Product: PassGate
🏢 Vendor: PEAKUP Technology Inc.
📅 Updated: 2026-07-09📝 Improper neutralization of special elements used in an LDAP query ('LDAP injection') vulnerability in PEAKUP Technology Inc. PassGate allows LDAP Injection.
This issue affects PassGate: through 30042026.
🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-42586
-
🚨 EUVD-2026-42587
📊 Score: 6.9/10 (CVSS v3.1)
📦 Product: Backup & Recovery 9.0
🏢 Vendor: Vinchin
📅 Updated: 2026-07-09📝 Vinchin Backup & Recovery through 9.0.0.86562 contains a heap buffer overflow vulnerability that allows unauthenticated remote attackers to cause process crash or memory corruption by sending a malformed TCP packet with an unchecked body_len fi...
🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-42587
-
🚨 EUVD-2026-42587
📊 Score: 6.9/10 (CVSS v3.1)
📦 Product: Backup & Recovery 9.0
🏢 Vendor: Vinchin
📅 Updated: 2026-07-09📝 Vinchin Backup & Recovery through 9.0.0.86562 contains a heap buffer overflow vulnerability that allows unauthenticated remote attackers to cause process crash or memory corruption by sending a malformed TCP packet with an unchecked body_len fi...
🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-42587
-
🚨 EUVD-2026-42588
📊 Score: 6.9/10 (CVSS v3.1)
📦 Product: Backup & Recovery 9.0
🏢 Vendor: Vinchin
📅 Updated: 2026-07-09📝 Vinchin Backup & Recovery through 9.0.0.86562 contains a stack buffer overflow vulnerability in the ModuleHandShake function of the agentlink_server service that allows unauthenticated remote attackers to overwrite the saved return address by s...
🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-42588
-
🚨 EUVD-2026-42588
📊 Score: 6.9/10 (CVSS v3.1)
📦 Product: Backup & Recovery 9.0
🏢 Vendor: Vinchin
📅 Updated: 2026-07-09📝 Vinchin Backup & Recovery through 9.0.0.86562 contains a stack buffer overflow vulnerability in the ModuleHandShake function of the agentlink_server service that allows unauthenticated remote attackers to overwrite the saved return address by s...
🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-42588
-
The forced labour behind fraud operations #negativepid #digitalInvestigations #OSINT #cybersecurity #AI #tech #onlineInvestigations #robotics #cyberpsychology #cybercrime https://negativepid.blog/the-forced-labour-behind-fraud-operations/?utm_source=mastodon&utm_medium=social&utm_campaign=fedica-Negative-PID-Blog
-
The forced labour behind fraud operations #negativepid #digitalInvestigations #OSINT #cybersecurity #AI #tech #onlineInvestigations #robotics #cyberpsychology #cybercrime https://negativepid.blog/the-forced-labour-behind-fraud-operations/?utm_source=mastodon&utm_medium=social&utm_campaign=fedica-Negative-PID-Blog
-
📰 Ransomware Attacks in Europe Skyrocket by 55% as Supply Chains Become Prime Targets
📈 Ransomware in Europe surges 55% in early 2026, warns Black Kite report. Manufacturing is the top target, with Germany, UK & France hit hardest. Qilin and Akira are the most active groups. #Ransomware #CyberSecurity #Europe #ThreatIntel
🌐 cyber[.]netsecops[.]io
-
#chrome extension Focusflow seems malicious. Its #cybersecurity badness score is 85/100!
```json
{"id": "gmfjbmpifcjimcemhndeblgeklaignim", "score": 85, "platform": "chrome", "name": "Focusflow"}
``` -
#chrome extension Focusflow seems malicious. Its #cybersecurity badness score is 85/100!
```json
{"id": "gmfjbmpifcjimcemhndeblgeklaignim", "score": 85, "platform": "chrome", "name": "Focusflow"}
``` -
Opera introduces protection against Clipboard-based attacks - Opera Newsroom https://press.opera.com/2026/07/02/opera-launches-paste-protect-the-first-native-defense-against-clipboard-based-attacks-in-a-major-browser/ #bot #cybersecurity #infosec
-
Opera introduces protection against Clipboard-based attacks - Opera Newsroom https://press.opera.com/2026/07/02/opera-launches-paste-protect-the-first-native-defense-against-clipboard-based-attacks-in-a-major-browser/ #bot #cybersecurity #infosec
-
NEW on “Paper Trail”: Reporter Renee Dudley heard Microsoft was running tech support for the Pentagon through China, the country’s biggest cybersecurity adversary.
She thought it sounded like a conspiracy theory — until she started looking into it.
Listen to the full episode: https://www.propublica.org/podcast/microsoft-digital-escorts-china-defense-department?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon-post
#Podcast #Podcasts #Microsoft #Tech #Technology #Cybersecurity #Pentagon #Defense #China #Data #Journalism
-
NEW on “Paper Trail”: Reporter Renee Dudley heard Microsoft was running tech support for the Pentagon through China, the country’s biggest cybersecurity adversary.
She thought it sounded like a conspiracy theory — until she started looking into it.
Listen to the full episode: https://www.propublica.org/podcast/microsoft-digital-escorts-china-defense-department?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon-post
#Podcast #Podcasts #Microsoft #Tech #Technology #Cybersecurity #Pentagon #Defense #China #Data #Journalism
-
Langflow AI Framework Targeted by Critical IDOR and RCE Exploits
CISA and Sysdig researchers report active exploitation of two critical Langflow vulnerabilities, including a 9.9-rated IDOR and a 9.3-rated RCE, used to steal AI credentials and deploy malware.
**If you are using Langflow, this is important and urgent. Make sure all Langflow instances are isolated from the internet and accessible only from trusted networks, then immediately update to Langflow version 1.9.1 or later to patch these actively exploited flaws. Check your system logs for connections to the malicious IP 45.207.216.55 or the `/tmp/lang_pwn` marker. If you find any indicators of compromise, rotate any API keys or credentials that were stored in your Langflow flows.**
#cybersecurity #infosec #attack #activeexploit
https://beyondmachines.net/event_details/langflow-ai-framework-targeted-by-critical-idor-and-rce-exploits-i-0-s-2-w/gD2P6Ple2L