News

Security Affairs
securityaffairs.com > 195454 > security > zoom-fixes-cve-2026-53412-a-critical-account-takeover-bug.html

Zoom Fixes CVE-2026-53412, a Critical Account Takeover Bug

1+ hour, 33+ min ago  (390+ words) AsyncAPI npm Supply Chain Attack: Malware Injected Into Packages With 2 Million Weekly Downloads U.S. CISA adds SonicWall and Microsoft flaws to its Known Exploited Vulnerabilities catalog SonicWall warns of active exploitation of two SMA 1000 zero-days Patch Tuesday security updates for July…...

Google News
cybersecuritynews.com > new-tuxbot-v3-iot-botnet-uses-llm-generated-code

New TuxBot v3 IoT Botnet Uses LLM-Generated Code to Hijack Devices and Launch DDoS Attacks

45+ min ago  (634+ words) The malware can run across a wide range of device architectures, creating a broad risk for routers, cameras, and other exposed Linux-based equipment. TuxBot uses several paths to gain access, including Telnet password guessing, SSH scanning, HTTP-based probing, Android Debug…...

Blockonomi
blockonomi.com > ostium-protocol-loses-18-million-in-timestamp-manipulation-attack

Ostium Protocol Loses $18 Million in Timestamp Manipulation Attack

1+ hour, 9+ min ago  (405+ words) On July 15, Ostium—a decentralized perpetual futures platform operating on Arbitrum—suspended all trading operations following a sophisticated attack that resulted in approximately $18 million in USDC being withdrawn from its liquidity reserves. RWA Perpetual Protocol Ostium Suffers Suspected $18 Million Exploit…...

Cyber Security News
cybersecuritynews.com > multiple-splunk-enterprise-vulnerabilities-patched

Multiple Splunk Enterprise Vulnerabilities Enable Path Traversal and Information Disclosure Attacks

1+ hour, 16+ min ago  (410+ words) Splunk has released security updates addressing multiple vulnerabilities in Splunk Enterprise and Splunk Cloud Platform. These flaws could lead to issues such as path traversal, disclosure of stored credential hashes, and arbitrary execution of SPL (Search Processing Language) searches. Three…...

Deccan Herald
deccanherald.com > india > karnataka > bengaluru > bengaluru-housewifes-whatsapp-handle-hacked-morphed-obscene-videos-shared-online-4075334

Bengaluru: Housewife’s WhatsApp handle hacked, morphed obscene videos shared online

12+ hour, 32+ min ago  (113+ words) Deccan Herald Bengaluru: A 42-year-old housewife's WhatsApp account was hacked and her morphed obscene videos were shared on a group on the messenger app, officials said on Wednesday..The woman is a resident of MV Layout There were multiple attempts…...

The New Humanitarian
thenewhumanitarian.org > opinion > 07/16/2026 > what-wfp-cyber-attack-has-common-visa-scandals

What the WFP cyber-attack has in common with visa scandals

1+ hour, 56+ min ago  (597+ words) “Consent is not a choice. Responsibility is scattered down the chain.” Senior analyst at the Bengaluru-based Aapti Institute, and a researcher working on the design of technology and data governance. Currently focused on digital and data infrastructure affecting displaced and…...

Cyber Security News
cyberpress.org > botnet-exploits-default-passwords

New IoT Botnet Uses 1,496 Default Passwords and Seven Persistence Mechanisms

1+ hour, 57+ min ago  (429+ words) The malware targets a broad range of Linux-based systems and uses Telnet credential brute forcing, scanning modules, encrypted command-and-control (C2), and multiple resilience features The botnet carries 1,496 username-and-password pairs aimed at devices still using factory or commonly reused credentials. Its Telnet…...

SecurityWeek
securityweek.com > trend-micro-tanium-eset-and-tenable-patch-severe-product-vulnerabilities

Trend Micro, Tanium, ESET and Tenable Patch Severe Product Vulnerabilities

2+ hour, 23+ min ago  (520+ words) Cybersecurity companies Trend Micro, ESET, Tenable, and Tanium released product updates this month to patch severe vulnerabilities. Tenable told customers this week that it has fixed a critical-severity path traversal in the Tenable Agent. The security hole, tracked as CVE…...

gbhackers.com
gbhackers.com > llm-assisted-tuxbot-botnet

LLM-Assisted TuxBot Botnet Targets IoT Devices Across 17 Processor Architectures

3+ hour, 3+ min ago  (551+ words) TuxBot v3 Evolution, a modular IoT botnet framework capable of infecting devices running architectures ranging from ARM and MIPS to x86_64, PowerPC and RISC-V. The platform appears designed for mass compromise, persistence and distributed denial-of-service operations, with a C-based bot agent and…...

gbhackers.com
gbhackers.com > gpt-5-6-sol-ultra-writes-complete-chrome-exploit

GPT-5.6 Sol Ultra Writes Complete Chrome Exploit With V8 Sandbox Escape

2+ hour, 47+ min ago  (558+ words) A security researcher reported that the GPT-5.6 Sol Ultra model successfully produced a working renderer exploit for Chrome version 149.0.7827.201. This exploit utilized V8 version 14.9.207.35. The model reportedly combined multiple patched issues in the JavaScript engine and WebAssembly infrastructure, ultimately launching the…...