Mastodawn

Anonymous GitHub account mass-dropping undisclosed 0-days

#HackerNews #Anonymous #GitHub #0days #security #vulnerabilities #exploit #hacking

GitHub - bikini/exploitarium: A single archive of public exploit PoCs and vulnerability research writeups. At the time I post these, none have been reported. Feel free to report them yourself and take credit for the CVE if handed out lulz

A single archive of public exploit PoCs and vulnerability research writeups. At the time I post these, none have been reported. Feel free to report them yourself and take credit for the CVE if hand...

GitHub

Simon Willison 2d ago

Incident Report: CVE-2026-LGTM

https://simonwillison.net/2026/Jun/26/incident-report/#atom-everything

#Security #Vulnerabilities #OpenSource

Incident Report: CVE-2026-LGTM

Spectacular hypothetical incident report by Andrew Nesbitt. Day 2, 16:00 UTC --- Two AI review agents from competing vendors, both attached to a downstream pull request bumping foxhole-lz4, enter a …

Simon Willison’s Weblog

WIRED - The Latest in Technology, Science, Culture and Business [Unofficial]2d ago

The Pentagon Is Looking Into the Dialog Data Exposure for Unmasking National Security Officials

https://fed.brid.gy/r/https://www.wired.com/story/the-pentagon-is-looking-into-the-dialog-data-exposure-for-unmasking-national-security-officials/

Paolo Valsecchi 2d ago

[ Blog ] Veeam v12.3.2.4165 #patch

Veeam has released a new Veeam v12.3.2.4165 patch to resolve some security vulnerabilities.

Installing this patch is strongly recommended to mitigate potential critical security risks.

Resolved vulnerabilities
This patch addresses the following vulnerabilities:

CVE-2025-48982 - Severity: High | CVSS v3.1 http://rviv.ly/1VBD34 #CVE #CVE #CVE #vulnerabilities

Priti Gaikwad 2d ago

#Hackers don't need to know your company. Their bots just need to find one vulnerability. Don't be the easiest target.

We help #startups and SMBs identify #vulnerabilities, understand the risks, and fix them.

Know More: https://www.testrigtechnologies.com/security-testing/

Linux Magazine 3d ago

Scary things can happen if you don't keep your CMS up to date. Chris Binnie shows you how an unpatched vulnerability can lead to privilege escalation and root access
https://www.linux-magazine.com/Issues/2026/304/Attacking-a-CMS?utm_source=mlm
#CMS #security #vulnerabilities #tools #VirtualBox

paul 3d ago

During H1 2026 I recorded 55 incidents exploiting 66 #vulnerabilities targeting security vendors

🔴 50% #Cybercrime
🔴 22% #Cyberespionage
🔴 #Malware & #RCE dominate attack techniques

Full interactive report 👇
https://hackmageddon.com/2026/06/25/exploited-security-vendor-vulnerabilities-in-2026/

#CyberSecurity #CVE #ThreatIntel

Lobsters 3d ago

Exploiting vulnerabilities in Johnson & Johnson web apps

https://eaton-works.com/2026/06/24/jnj-webapp-hacks/

#Security #Hacking #Vulnerabilities

Exploiting vulnerabilities in Johnson & Johnson web apps

Campus Recruiting vulnerability exposed student information, and Audit Tracking Management System vulnerability exposed confidential internal audit data.

Giuseppe Michieli 4d ago

#Healthcare-associated #transmission and early #IPC system #vulnerabilities during 2026 #Bundibugyo #Ebola #outbreak in eastern #DRC, https://etidiohnew.blogspot.com/2026/06/healthcare-associated-transmission-and.html

#Healthcare-associated #transmission and early #IPC system #vulnerabilities during 2026 #Bundibugyo #Ebola #outbreak in eastern #DRC

Hostingpaper 4d ago

CISA flags critical Ubiquiti, Lantronix flaws under active attack

Federal agencies must patch or mitigate four max-severity vulnerabilities within three days after CISA confirms exploitation in the wild.

https://hostingpaper.com/article/cisa-flags-critical-ubiquiti-lantronix-flaws-under-active-attack

#Security #Vulnerabilities

CISA flags critical Ubiquiti, Lantronix flaws under active attack

CISA has added four critical vulnerabilities in Ubiquiti UniFi OS and Lantronix EDS5000 serial-to-Ethernet servers to its Known Exploited Vulnerabilities catalog, citing active exploitation. Federal agencies must apply patches or mitigations by 27 June 2026.

Hostingpaper