#securityvulnerabilities — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #securityvulnerabilities, aggregated by home.social.
-
Two recent #Linux kernel vulnerabilities have been disclosed:
➡️ Copy Fail (CVE-2026-31431)
➡️ Dirty Frag (CVE-2026-43284 & CVE-2026-43500)Both vulnerabilities exploit flaws in the page cache via different subsystems, necessitating immediate patching by affected organizations.
More details on #InfoQ ➡️ https://bit.ly/4dHOx47
-
An attacker purchased the entire Essential Plugin portfolio - 30+ WordPress plugins with ~400k installs - on Flippa.
➡️ First code commit introduced a PHP deserialization backdoor
➡️ Dormant for 8 months
➡️ Activated in April 2026, injecting cloaked SEO spam across thousands of sites.
➡️ WordPress shut down all 31 plugins in a single dayFind out more: https://bit.ly/4u9pJb9
-
Log4Shell - Spring4Shell - The XZ Backdoor
These aren't just headlines - they are wake-up calls! As the software ecosystem grows more complex, the question remains: Are we ready for the next #CyberSecurity crisis?
In this #InfoQ video, Soroosh Khodami shares practical strategies to secure your development lifecycle, whether you're a lean startup or a global enterprise.
🎬 Watch now: https://bit.ly/4cq4DxN
📄 #transcript included
-
Log4Shell - Spring4Shell - The XZ Backdoor
These aren't just headlines - they are wake-up calls! As the software ecosystem grows more complex, the question remains: Are we ready for the next #CyberSecurity crisis?
In this #InfoQ video, Soroosh Khodami shares practical strategies to secure your development lifecycle, whether you're a lean startup or a global enterprise.
🎬 Watch now: https://bit.ly/4cq4DxN
📄 #transcript included
-
Glassworm Hides Malware in Invisible Unicode Across 151+ Repos
#GitHub #Cybersecurity #Malware #VSCode #npm #OpenSource #Developers #SoftwareDevelopment #Cybercrime #Hackers #SecurityVulnerabilities #Microsoft #Software #BigTech #VSCodeExtension #GlassWorm #OpenVSX
-
Microsoft Issues Emergency KB5084597 Hotpatch for RRAS Flaws
#Microsoft #Windows1124H2 #Windows11 #Cybersecurity #SecurityVulnerabilities #SecurityFlaws #RemoteCodeExecution #SoftwareUpdates #WindowsUpdate ##WindowsServer #Windows1125H2 #RRAS #Kb5084597
-
https://winbuzzer.com/2026/03/04/chrome-gemini-flaw-rogue-extensions-hijack-ai-panel-xcxwbn/
Chrome Gemini Flaw Let Rogue Extensions Hijack Chrome AI Panel
#AI #Google #GoogleChrome #Gemini #GoogleGemini #WebBrowsers #Cybersecurity #BrowserExtensions #SecurityVulnerabilities #SecurityFlaws #Exploits #SecurityPatches #AgenticBrowsers #RogueExtensions
-
https://winbuzzer.com/2026/03/04/chrome-gemini-flaw-rogue-extensions-hijack-ai-panel-xcxwbn/
Chrome Gemini Flaw Let Rogue Extensions Hijack Chrome AI Panel
#AI #Google #GoogleChrome #Gemini #GoogleGemini #WebBrowsers #Cybersecurity #BrowserExtensions #SecurityVulnerabilities #SecurityFlaws #Exploits #SecurityPatches #AgenticBrowsers #RogueExtensions
-
https://winbuzzer.com/2026/03/04/chrome-gemini-flaw-rogue-extensions-hijack-ai-panel-xcxwbn/
Chrome Gemini Flaw Let Rogue Extensions Hijack Chrome AI Panel
#AI #Google #GoogleChrome #Gemini #GoogleGemini #WebBrowsers #Cybersecurity #BrowserExtensions #SecurityVulnerabilities #SecurityFlaws #Exploits #SecurityPatches #AgenticBrowsers #RogueExtensions
-
https://winbuzzer.com/2026/03/04/chrome-gemini-flaw-rogue-extensions-hijack-ai-panel-xcxwbn/
Chrome Gemini Flaw Let Rogue Extensions Hijack Chrome AI Panel
#AI #Google #GoogleChrome #Gemini #GoogleGemini #WebBrowsers #Cybersecurity #BrowserExtensions #SecurityVulnerabilities #SecurityFlaws #Exploits #SecurityPatches #AgenticBrowsers #RogueExtensions
-
https://winbuzzer.com/2026/03/04/chrome-gemini-flaw-rogue-extensions-hijack-ai-panel-xcxwbn/
Chrome Gemini Flaw Let Rogue Extensions Hijack Chrome AI Panel
#AI #Google #GoogleChrome #Gemini #GoogleGemini #WebBrowsers #Cybersecurity #BrowserExtensions #SecurityVulnerabilities #SecurityFlaws #Exploits #SecurityPatches #AgenticBrowsers #RogueExtensions
-
https://winbuzzer.com/2026/02/19/microsoft-edge-145-password-manager-security-fixes-xcxwbn/
Edge 145 Rolls Out with Password Upgrades and Security Patches
#Edge145 #MicrosoftEdge #Microsoft #WebBrowsers #PasswordManagers #SecurityVulnerabilities #BrowserExtensions #PDF #ReadAloud #Chromium
-
https://winbuzzer.com/2026/02/04/critical-ai-agent-flaws-exposed-in-microsoft-and-servicenow-xcxwbn/
Critical AI Agent Flaws Exposed in Microsoft and ServiceNow Platforms
#AI #Cybersecurity #Microsoft #ServiceNow #AgenticAI #AIAgents #Copilot #CopilotStudio #MicrosoftCopilot #SecurityVulnerabilities #EnterpriseAI
-
Docker launches #DockerHardenedImages (DHI) – a security-focused set of base images designed to cut vulnerabilities by up to 95%.
Using a #distroless approach, DHI removes unnecessary components, supports automatic patching, and remains compatible with existing Dockerfiles.
🔎 More on #InfoQ: https://bit.ly/4nfy3TB
-
ASUS Routers Vulnerabilities Allows Arbitrary Code Execution https://cybersecuritynews.com/asus-router-vulnerabilities/ #SecurityVulnerabilities #NetworkSecurityNews #CyberSecurityNews #cybersecuritynews #FirmwareUpdates #Networksecurity
-
Azure Data Factory And Apache Airflow Integration Flaws Let Attackers Gain Write Access https://cybersecuritynews.com/azure-airflow-security-flaw/ #InformationSecurityNews #SecurityVulnerabilities #CyberSecurityNews #VulnerabilityNews #AzureDataFactory #ApacheAirflow #vulnerability #cloud
-
Went on @trtworld over the weekend to provide live commentary on the Crowdstrike global IT outage on the Newshour programme and explain why it isn't an easy fix, as well as why we really should be looking at Microsoft to make changes in order to avoid this happening again. Thanks for the chat Maria Ramos!
Here's a clip from the segment, you can watch the full video here 📹:
https://www.youtube.com/watch?v=NNDg52RPhMY#Crowdstrike #Crowdstrikeoutage #Microsoft #IToutage #bigtech #kernel #cybersecurity #securityvulnerabilities #technologynews