News
Trend Micro, Tanium, ESET and Tenable Patch Severe Product Vulnerabilities
1+ hour, 28+ min ago (520+ words) Cybersecurity companies Trend Micro, ESET, Tenable, and Tanium released product updates this month to patch severe vulnerabilities. Tenable told customers this week that it has fixed a critical-severity path traversal in the Tenable Agent. The security hole, tracked as CVE…...
ICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Schneider, Rockwell
21+ hour, 57+ min ago (582+ words) The industrial giants fixed dozens of vulnerabilities across their ICS products, with advisories also released by CISA and VDE CERT. Industrial giants Siemens, Schneider Electric, and Rockwell Automation have published July 2026 Patch Tuesday advisories to inform customers about vulnerabilities found…...
Progress Confirms Zero-Day Vulnerability Behind ShareFile Disruption
21+ hour, 57+ min ago (655+ words) The company has rolled out a fix and is restoring access for Storage Zones Controller customers who apply it. Progress Software has confirmed that a zero-day vulnerability was behind the recent ShareFile Storage Zones Controller disruption and that access to…...
7 Severe Vulnerabilities Patched in VMware Avi Load Balancer
1+ day, 18+ hour ago (489+ words) The flaws can be exploited for authentication bypass, remote code execution, privilege escalation, and directory traversal. Broadcom announced on Tuesday that new VMware Avi Load Balancer updates patch several critical and high-severity vulnerabilities. VMware Avi Load Balancer is a software-defined…...
Hacker Conversations: Jesse McGraw (GhostExodus), From Blackhat Hacker to Redemption
3+ day, 17+ hour ago (1602+ words) Once a notorious blackhat hacker, McGraw shares his journey from high school hacking and prison to redemption as a cybersecurity advocate. Jesse McGraw isn’t a hacker; at least, not by his own definition. He accepts he was a hacker, and…...
Third US Security Expert Sentenced to Prison for Helping Ransomware Gang
5+ day, 19+ hour ago (604+ words) Angelo Martino, a former ransomware negotiator, was sentenced to 70 months for helping the BlackCat/Alphv group. Another cybersecurity expert from the United States, accused of helping a cybercrime gang while working as a ransomware negotiator, has been sentenced to prison....
15-Year-Old Linux Vulnerability ‘GhostLock’ Earns Researchers $92k From Google
6+ day, 20+ hour ago (538+ words) Affecting every major distribution since 2011, the Linux kernel vulnerability allows attackers to gain root access. Nebula Security has published technical information and exploit code targeting a Linux kernel vulnerability that affects all major distributions since 2011. Tracked as CVE-2026-43499 and referred…...
China-Linked APT Expands Arsenal With New ‘Leash’ Backdoors
1+ week, 16+ hour ago (764+ words) Cisco says the threat actor behind the LapDogs campaign has expanded its SOHO router malware toolkit with LongLeash, DogLeash, and JarLeash backdoors. As part of a prolonged espionage infrastructure campaign tracked as LapDogs, the APT infected over 1,000 small office/home…...
CISA Urges Immediate Patching of Exploited ColdFusion, Langflow, Joomla Flaws
1+ week, 20+ hour ago (673+ words) Two newly disclosed critical vulnerabilities in Adobe ColdFusion and Langflow join two Joomla extension flaws in CISA’s Known Exploited Vulnerabilities catalog, with federal agencies given until July 10 to patch. The US cybersecurity agency CISA on Tuesday warned that vulnerabilities in…...
Armored Likho APT Targeting Government, Electric Power Entities
1+ week, 2+ day ago (556+ words) The threat actor uses modular RATs and information stealers in financially motivated and cyber espionage campaigns. Dubbed Armored Likho, the APT engages both in financially motivated attacks against individuals and in cyber-espionage operations against organizations in Russia, Brazil, and Kazakhstan....