home.social

#cyber-security — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #cyber-security, aggregated by home.social.

fetched live
  1. 🎩✨ Oh, look! Another thrilling manifesto on TLS certificates, because who doesn't love a bedtime story about internal services? 🔐💤 The author, obviously a #clickbait connoisseur, promises the secrets to "doing it right" while leading us through a labyrinth of #VPNs and apex domains—spoiler alert: it's as riveting as watching paint dry. 🕵️‍♂️🏰
    tuxnet.dev/posts/tls-for-inter #TLSCertificates #Cybersecurity #TechHumor #HackerNews #ngated

  2. 🎩✨ Oh, look! Another thrilling manifesto on TLS certificates, because who doesn't love a bedtime story about internal services? 🔐💤 The author, obviously a #clickbait connoisseur, promises the secrets to "doing it right" while leading us through a labyrinth of #VPNs and apex domains—spoiler alert: it's as riveting as watching paint dry. 🕵️‍♂️🏰
    tuxnet.dev/posts/tls-for-inter #TLSCertificates #Cybersecurity #TechHumor #HackerNews #ngated

  3. Some devs love acting like they’re above IT and cyber.

    Then we spend a week and a half troubleshooting only to find out they didn’t follow the copy-pasted vendor docs with the exact scopes, settings, and instructions.

    Please just read the damn instructions first.

    #Cybersecurity #IT #DevLife

  4. Critical RCE Vulnerabilities Exploited in Joomla Page Builder Extensions

    CISA has warned of active exploitation of two critical RCE vulnerabilities in Joomla's SP Page Builder and Page Builder CK extensions. Attackers are using these flaws to upload web shells and create rogue Super Administrator accounts to maintain persistent access.

    **If you run Joomla with SP Page Builder or Page Builder CK, update SP Page Builder to 6.6.2 and Page Builder CK to 3.6.0 immediately. Both have critical flaws under active attack. Then check your user list for any accounts using the @secure.local email domain, delete any you find, scan the /images/ and /media/ folders for suspicious PHP files, and if anything looks compromised, change all database passwords and secret keys.**
    #cybersecurity #infosec #attack #activeexploit
    beyondmachines.net/event_detai

  5. Critical RCE Vulnerabilities Exploited in Joomla Page Builder Extensions

    CISA has warned of active exploitation of two critical RCE vulnerabilities in Joomla's SP Page Builder and Page Builder CK extensions. Attackers are using these flaws to upload web shells and create rogue Super Administrator accounts to maintain persistent access.

    **If you run Joomla with SP Page Builder or Page Builder CK, update SP Page Builder to 6.6.2 and Page Builder CK to 3.6.0 immediately. Both have critical flaws under active attack. Then check your user list for any accounts using the @secure.local email domain, delete any you find, scan the /images/ and /media/ folders for suspicious PHP files, and if anything looks compromised, change all database passwords and secret keys.**
    #cybersecurity #infosec #attack #activeexploit
    beyondmachines.net/event_detai

  6. Yet another prompt injection attack: GitLost

    GitHub's agentic AI is leaking information form private repositories. I like the way Noma Security puts it: Prompt injections seem to be the modern version of SQL injections.

    noma.security/blog/gitlost-how

    #cybersecurity #security #infosec #ai #agentic #agenticai #llm #GitHub #GitLost

  7. Yet another prompt injection attack: GitLost

    GitHub's agentic AI is leaking information form private repositories. I like the way Noma Security puts it: Prompt injections seem to be the modern version of SQL injections.

    noma.security/blog/gitlost-how

    #cybersecurity #security #infosec #ai #agentic #agenticai #llm #GitHub #GitLost

  8. 🚨 EUVD-2026-42589

    📊 Score: 8.7/10 (CVSS v3.1)
    📦 Product: Axivion, Axivion, Axivion (+2 more)
    🏢 Vendor: Qt
    📅 Updated: 2026-07-09

    📝 The implementation of an internal and undocumented Dashboard API endpoint (POST /api/users/~/{user}/tokens) forgot to ensure an HTTP request for creating an API Token for another user had sufficient permission to do so.

    Preconditi...

    🔗 euvd.enisa.europa.eu/vulnerabi

    #cybersecurity #infosec #euvd #cve #vulnerability

  9. 🚨 EUVD-2026-42589

    📊 Score: 8.7/10 (CVSS v3.1)
    📦 Product: Axivion, Axivion, Axivion (+2 more)
    🏢 Vendor: Qt
    📅 Updated: 2026-07-09

    📝 The implementation of an internal and undocumented Dashboard API endpoint (POST /api/users/~/{user}/tokens) forgot to ensure an HTTP request for creating an API Token for another user had sufficient permission to do so.

    Preconditi...

    🔗 euvd.enisa.europa.eu/vulnerabi

    #cybersecurity #infosec #euvd #cve #vulnerability

  10. 🚨 EUVD-2026-42582

    📊 Score: n/a
    📦 Product: Xerte Online Tools, Xerte Online Tools
    🏢 Vendor: Xerte
    📅 Updated: 2026-07-09

    📝 A vulnerability in the Xerte Online Tools allows for RCE through the antivirus binary path in the tools server settings, which can be changed to a PHP interpreter, allowing an attacker to upload PHP data that will then be executed.

    🔗 euvd.enisa.europa.eu/vulnerabi

    #cybersecurity #infosec #euvd #cve #vulnerability

  11. 🚨 EUVD-2026-42590

    📊 Score: 4.8/10 (CVSS v3.1)
    📦 Product: GPAC
    📅 Updated: 2026-07-09

    📝 A vulnerability was determined in GPAC 26.03-DEV. This affects the function vobsub_read_idx of the file /src/media_tools/vobsub.c of the component MP4Box. Executing a manipulation of the argument num_langs can lead to out-of-bounds read. The attack needs to be launched locally. ...

    🔗 euvd.enisa.europa.eu/vulnerabi

    #cybersecurity #infosec #euvd #cve #vulnerability

  12. 🚨 EUVD-2026-42590

    📊 Score: 4.8/10 (CVSS v3.1)
    📦 Product: GPAC
    📅 Updated: 2026-07-09

    📝 A vulnerability was determined in GPAC 26.03-DEV. This affects the function vobsub_read_idx of the file /src/media_tools/vobsub.c of the component MP4Box. Executing a manipulation of the argument num_langs can lead to out-of-bounds read. The attack needs to be launched locally. ...

    🔗 euvd.enisa.europa.eu/vulnerabi

    #cybersecurity #infosec #euvd #cve #vulnerability

  13. 🚨 EUVD-2026-42582

    📊 Score: n/a
    📦 Product: Xerte Online Tools, Xerte Online Tools
    🏢 Vendor: Xerte
    📅 Updated: 2026-07-09

    📝 A vulnerability in the Xerte Online Tools allows for RCE through the antivirus binary path in the tools server settings, which can be changed to a PHP interpreter, allowing an attacker to upload PHP data that will then be executed.

    🔗 euvd.enisa.europa.eu/vulnerabi

    #cybersecurity #infosec #euvd #cve #vulnerability

  14. 🚨 EUVD-2026-42583

    📊 Score: n/a
    📦 Product: Xerte Online Tools, Xerte Online Tools
    🏢 Vendor: Xerte
    📅 Updated: 2026-07-09

    📝 A vulnerability in the Xerte Online Tools allows for authentication bypass and remote code execution via reinstallation through the /setup/ folder, enabling attackers to reinstall the service to a remote database they control.

    🔗 euvd.enisa.europa.eu/vulnerabi

    #cybersecurity #infosec #euvd #cve #vulnerability

  15. 🚨 EUVD-2026-42583

    📊 Score: n/a
    📦 Product: Xerte Online Tools, Xerte Online Tools
    🏢 Vendor: Xerte
    📅 Updated: 2026-07-09

    📝 A vulnerability in the Xerte Online Tools allows for authentication bypass and remote code execution via reinstallation through the /setup/ folder, enabling attackers to reinstall the service to a remote database they control.

    🔗 euvd.enisa.europa.eu/vulnerabi

    #cybersecurity #infosec #euvd #cve #vulnerability

  16. 🚨 EUVD-2026-42584

    📊 Score: 5.9/10 (CVSS v3.1)
    📦 Product: Apigee
    🏢 Vendor: Google Cloud
    📅 Updated: 2026-07-09

    📝 An Improper Input Validation vulnerability in BigQuery DAO in Google Cloud Apigee versions prior to 2026-06-12 on Google Cloud Platform allows an authenticated attacker to exfiltrate cross-tenant data.

    This vulnerability was patched on 12 June 2026 on ...

    🔗 euvd.enisa.europa.eu/vulnerabi

    #cybersecurity #infosec #euvd #cve #vulnerability

  17. 🚨 EUVD-2026-42584

    📊 Score: 5.9/10 (CVSS v3.1)
    📦 Product: Apigee
    🏢 Vendor: Google Cloud
    📅 Updated: 2026-07-09

    📝 An Improper Input Validation vulnerability in BigQuery DAO in Google Cloud Apigee versions prior to 2026-06-12 on Google Cloud Platform allows an authenticated attacker to exfiltrate cross-tenant data.

    This vulnerability was patched on 12 June 2026 on ...

    🔗 euvd.enisa.europa.eu/vulnerabi

    #cybersecurity #infosec #euvd #cve #vulnerability

  18. 🚨 EUVD-2026-42586

    📊 Score: 8.2/10 (CVSS v3.1)
    📦 Product: PassGate
    🏢 Vendor: PEAKUP Technology Inc.
    📅 Updated: 2026-07-09

    📝 Improper neutralization of special elements used in an LDAP query ('LDAP injection') vulnerability in PEAKUP Technology Inc. PassGate allows LDAP Injection.

    This issue affects PassGate: through 30042026.

    🔗 euvd.enisa.europa.eu/vulnerabi

    #cybersecurity #infosec #euvd #cve #vulnerability

  19. 🚨 EUVD-2026-42585

    📊 Score: 5.3/10 (CVSS v3.1)
    📦 Product: Mall, Mall, Mall (+1 more)
    🏢 Vendor: macrozheng
    📅 Updated: 2026-07-09

    📝 A vulnerability was identified in macrozheng mall up to 1.0.3. This impacts an unknown function of the file /returnApply/create of the component Portal Endpoint. The manipulation of the argument orderId leads to improper control of reso...

    🔗 euvd.enisa.europa.eu/vulnerabi

    #cybersecurity #infosec #euvd #cve #vulnerability

  20. 🚨 EUVD-2026-42585

    📊 Score: 5.3/10 (CVSS v3.1)
    📦 Product: Mall, Mall, Mall (+1 more)
    🏢 Vendor: macrozheng
    📅 Updated: 2026-07-09

    📝 A vulnerability was identified in macrozheng mall up to 1.0.3. This impacts an unknown function of the file /returnApply/create of the component Portal Endpoint. The manipulation of the argument orderId leads to improper control of reso...

    🔗 euvd.enisa.europa.eu/vulnerabi

    #cybersecurity #infosec #euvd #cve #vulnerability

  21. 🚨 EUVD-2026-42586

    📊 Score: 8.2/10 (CVSS v3.1)
    📦 Product: PassGate
    🏢 Vendor: PEAKUP Technology Inc.
    📅 Updated: 2026-07-09

    📝 Improper neutralization of special elements used in an LDAP query ('LDAP injection') vulnerability in PEAKUP Technology Inc. PassGate allows LDAP Injection.

    This issue affects PassGate: through 30042026.

    🔗 euvd.enisa.europa.eu/vulnerabi

    #cybersecurity #infosec #euvd #cve #vulnerability

  22. 🚨 EUVD-2026-42587

    📊 Score: 6.9/10 (CVSS v3.1)
    📦 Product: Backup & Recovery 9.0
    🏢 Vendor: Vinchin
    📅 Updated: 2026-07-09

    📝 Vinchin Backup & Recovery through 9.0.0.86562 contains a heap buffer overflow vulnerability that allows unauthenticated remote attackers to cause process crash or memory corruption by sending a malformed TCP packet with an unchecked body_len fi...

    🔗 euvd.enisa.europa.eu/vulnerabi

    #cybersecurity #infosec #euvd #cve #vulnerability

  23. 🚨 EUVD-2026-42587

    📊 Score: 6.9/10 (CVSS v3.1)
    📦 Product: Backup & Recovery 9.0
    🏢 Vendor: Vinchin
    📅 Updated: 2026-07-09

    📝 Vinchin Backup & Recovery through 9.0.0.86562 contains a heap buffer overflow vulnerability that allows unauthenticated remote attackers to cause process crash or memory corruption by sending a malformed TCP packet with an unchecked body_len fi...

    🔗 euvd.enisa.europa.eu/vulnerabi

    #cybersecurity #infosec #euvd #cve #vulnerability

  24. 🚨 EUVD-2026-42588

    📊 Score: 6.9/10 (CVSS v3.1)
    📦 Product: Backup & Recovery 9.0
    🏢 Vendor: Vinchin
    📅 Updated: 2026-07-09

    📝 Vinchin Backup & Recovery through 9.0.0.86562 contains a stack buffer overflow vulnerability in the ModuleHandShake function of the agentlink_server service that allows unauthenticated remote attackers to overwrite the saved return address by s...

    🔗 euvd.enisa.europa.eu/vulnerabi

    #cybersecurity #infosec #euvd #cve #vulnerability

  25. 🚨 EUVD-2026-42588

    📊 Score: 6.9/10 (CVSS v3.1)
    📦 Product: Backup & Recovery 9.0
    🏢 Vendor: Vinchin
    📅 Updated: 2026-07-09

    📝 Vinchin Backup & Recovery through 9.0.0.86562 contains a stack buffer overflow vulnerability in the ModuleHandShake function of the agentlink_server service that allows unauthenticated remote attackers to overwrite the saved return address by s...

    🔗 euvd.enisa.europa.eu/vulnerabi

    #cybersecurity #infosec #euvd #cve #vulnerability

  26. 📰 Ransomware Attacks in Europe Skyrocket by 55% as Supply Chains Become Prime Targets

    📈 Ransomware in Europe surges 55% in early 2026, warns Black Kite report. Manufacturing is the top target, with Germany, UK & France hit hardest. Qilin and Akira are the most active groups. #Ransomware #CyberSecurity #Europe #ThreatIntel

    🌐 cyber[.]netsecops[.]io

    🔗 cyber.netsecops.io/articles/ra

  27. #chrome extension Focusflow seems malicious. Its #cybersecurity badness score is 85/100!

    ```json
    {"id": "gmfjbmpifcjimcemhndeblgeklaignim", "score": 85, "platform": "chrome", "name": "Focusflow"}
    ```

  28. #chrome extension Focusflow seems malicious. Its #cybersecurity badness score is 85/100!

    ```json
    {"id": "gmfjbmpifcjimcemhndeblgeklaignim", "score": 85, "platform": "chrome", "name": "Focusflow"}
    ```

  29. NEW on “Paper Trail”: Reporter Renee Dudley heard Microsoft was running tech support for the Pentagon through China, the country’s biggest cybersecurity adversary.

    She thought it sounded like a conspiracy theory — until she started looking into it.

    Listen to the full episode: propublica.org/podcast/microso

    #Podcast #Podcasts #Microsoft #Tech #Technology #Cybersecurity #Pentagon #Defense #China #Data #Journalism

  30. NEW on “Paper Trail”: Reporter Renee Dudley heard Microsoft was running tech support for the Pentagon through China, the country’s biggest cybersecurity adversary.

    She thought it sounded like a conspiracy theory — until she started looking into it.

    Listen to the full episode: propublica.org/podcast/microso

    #Podcast #Podcasts #Microsoft #Tech #Technology #Cybersecurity #Pentagon #Defense #China #Data #Journalism

  31. Langflow AI Framework Targeted by Critical IDOR and RCE Exploits

    CISA and Sysdig researchers report active exploitation of two critical Langflow vulnerabilities, including a 9.9-rated IDOR and a 9.3-rated RCE, used to steal AI credentials and deploy malware.

    **If you are using Langflow, this is important and urgent. Make sure all Langflow instances are isolated from the internet and accessible only from trusted networks, then immediately update to Langflow version 1.9.1 or later to patch these actively exploited flaws. Check your system logs for connections to the malicious IP 45.207.216.55 or the `/tmp/lang_pwn` marker. If you find any indicators of compromise, rotate any API keys or credentials that were stored in your Langflow flows.**
    #cybersecurity #infosec #attack #activeexploit
    beyondmachines.net/event_detai