H.VIEW HV-500S6 IP Camera has a HIGH severity bug (CVE-2026-55975, CVSS 7.2): Authenticated users may inject commands using unsanitized XML in cert generation. Restrict access, monitor activity, and check for patches. https://radar.offseq.com/threat/cve-2026-55975-cwe-78-in-hview-hv-500s6-ip-camera-32fd47fcf53b8f7c #OffSeq #Vulnerability #IoTSecurity 🔒
CVE-2026-56414: H.VIEW HV-500S6 IP Camera has a HIGH-severity vuln (CVSS 7.2) allowing authenticated users to upload arbitrary files via certificate upload, risking persistent compromise. Restrict admin access & monitor uploads. https://radar.offseq.com/threat/cve-2026-56414-cwe-434-in-hview-hv-500s6-ip-camera-2fc4d58c6ce82381 #OffSeq #IoTSecurity #CVE #Vulnerability
GeoVision GV-LPC2011/2211 devices (≤1.12) face CRITICAL CVE-2026-57880: stack-based buffer overflow in RTSP auth enables remote, unauthenticated DoS or code execution. Restrict RTSP access, monitor traffic. Patch status unknown. https://radar.offseq.com/threat/cve-2026-57880-cwe-121-stack-based-buffer-overflow-1d88eee9b47ed7bb #OffSeq #Vuln #IoTSecurity #CVE
GeoVision GV-LPC2011/2211 (<=1.12) hit by CVE-2026-57881: CRITICAL stack-based buffer overflow in vlsvr enables unauthenticated RCE or DoS. No patch yet — restrict access & monitor activity. https://radar.offseq.com/threat/cve-2026-57881-cwe-121-stack-based-buffer-overflow-0de9014b0e3f1945 #OffSeq #Vuln #IoTSecurity #CVE202657881

Smart TVs Compromised by Proxyware
Vulnerabilities Plague 24-Year-Old Curl
AI Emerges in Cybercrime Forums
Hackers Exploit Microsoft Teams
Legacy Credentials Fuel Data Breaches

Over a third of smart TV apps, including clocks, screensavers, and games, contain residential proxy software, putting your device at risk. Researchers found that 42.5% of LG webOS and 26.9% of Samsung Tizen apps harbour…

https://osintsights.com/smart-tvs-compromised-by-proxyware-vulnerabilities-plague-24-year-old-curl-ai-em?utm_source=mastodon&utm_medium=social

#SmartTv #Proxyware #ResidentialProxy #IotSecurity #EmergingThreats

Smart TVs Compromised by Proxyware Vulnerabilities Plague 24-Year-Old Curl AI Emerges in Cybercrime Forums Hackers Exploit Microsoft Teams Legacy Credentials Fuel Data Breaches

Discover how smart TVs are compromised by proxyware vulnerabilities, learn the risks and take action to protect your device now and secure your online presence effectively today.

OSINTSights

☠️ Critical Stack Overflow Vulnerability Discovered in GV-I/O Box 4E: Attackers Can Crash Device, Steal Control

#CVE-2026-12485 #EmbeddedDeviceVulnerability #EthernetVulnerability #IoTSecurity #StackOverflowVulnerability #cve #cybersecurity #iso27001

CVE-2026-12851: CRITICAL OS command injection in GeoVision GV-I/O Box 4E v2.09 via DVRSearch/Network.cgi allows remote code execution. Patch status pending — restrict access & monitor endpoints. https://radar.offseq.com/threat/cve-2026-12851-cwe-78-improper-neutralization-of-s-3964552d83f5f479 #OffSeq #Vulnerability #IoTSecurity #CVE #Security

Canada's Spy Agency Neutralizes Foreign Botnets with Landmark Warrant

In a groundbreaking move, Canada's spy agency, CSIS, has successfully neutralized two foreign-run botnets operating on Canadian soil, thanks to a landmark warrant that allowed them to access and shut down infected devices. This pioneering threat-reduction tactic marks a major win in the fight against botnet threats.

https://osintsights.com/canadas-spy-agency-neutralizes-foreign-botnets-with-landmark-warrant?utm_source=mastodon&utm_medium=social

#BotnetThreatReduction #Canada #Csis #EmergingThreats #IotSecurity

Canada's Spy Agency Neutralizes Foreign Botnets with Landmark Warrant

Learn how Canada's spy agency used a landmark warrant to neutralize foreign botnets, protecting national security - read the details now and stay informed.

OSINTSights

NetNut Exposed in Massive Popa Botnet Operation

Meet Popa, a sneaky Android-based plugin that's been secretly infiltrating over 1.4 million internet addresses via unofficial streaming apps and set-top devices, researchers have uncovered. This stealthy operation is linked to the notorious Vo1d botnet family, which has been targeting vulnerable Android TV boxes.

https://osintsights.com/netnut-exposed-in-massive-popa-botnet-operation?utm_source=mastodon&utm_medium=social

#AndroidMalware #BotnetOperations #EmergingThreats #IotSecurity #Vo1dBotnetFamily

NetNut Exposed in Massive Popa Botnet Operation

Discover how NetNut was exposed in the massive Popa botnet operation, learn the technical indicators, and find out how to protect your devices now effectively.

OSINTSights

🇬🇧
LeHack 117: Permission to light up the whole city – MadSquirrel
27/06 at 17:20.

Analysis of a smart city mobile app for public lighting control: geographic restriction bypasses, unauthenticated activation, user re-identification and real-time location manipulation.

Program: https://lehack.org/2026/tracks/conferences/
Tickets: https://www.billetweb.fr/lehack-2026-brave-new-world
#leHACK #SmartCity #IoTSecurity #MobileSecurity