Software Composition Analysis: Protecting Against Log4Shell #shorts: Discover how software composition analysis can help prevent Log4Shell-like attacks. Learn how it could've helped your organization avoid the scramble. #Log4Shell #SoftwareAnalysis #Cybersecurity #Vulnerability https://www.youtube.com/shorts/3g9H_Gitv-8
#vulnerability
Looks like CISA added SolarWinds to the KEV catalogue yesterday:
Critical: CVE-2025-40551: SolarWinds Web Help Desk Deserialization of Untrusted Data Vulnerability #infosec #CISA #SolarWinds #vulnerability
Updated Broadcom advisory, login needed for details.
Critical: Broadcom OPS/MVS 14.0 - OPSMVS REST API Vulnerability (updates AssertJ from 3.27.6 to 3.27.7) https://support.broadcom.com/web/ecx/security-advisory #infosec #vulnerability #Broadcom
Infosecurity-Magazine: Hundreds of Malicious Crypto Trading Add-Ons Found in Moltbot/OpenClaw https://www.infosecurity-magazine.com/news/malicious-crypto-trading-skills/ #infosec #Moltbook #Moltbot #privacy #vulnerability
New.
Check Point: Amaranth-Dragon: Weaponizing CVE-2025-8088 for Targeted Espionage in the Southeast Asia https://research.checkpoint.com/2026/amaranth-dragon-weaponizes-cve-2025-8088-for-targeted-espionage/
More:
The Hacker News: China-Linked Amaranth-Dragon Exploits WinRAR Flaw in Espionage Campaigns https://thehackernews.com/2026/02/china-linked-amaranth-dragon-exploits.html #Windows #infosec #vulnerability
Take that China, my notepad++ is so out of date I did not download the malicious packages.
(ignores all other vulnerabilities)
Danger Bulletin: Cyberattacks Against Ukraine and EU Countries Using CVE-2026-21509 Exploit
UAC-0001 (APT28) has launched cyberattacks against Ukraine and EU countries exploiting the CVE-2026-21509 vulnerability in Microsoft Office products. The threat actor created malicious DOC files targeting government bodies and EU organizations. The attack chain involves WebDAV connections, COM hijacking, and the use of the COVENANT framework, which utilizes Filen cloud storage for command and control. The campaign began shortly after the vulnerability's disclosure, with multiple documents discovered containing similar exploits. The attackers employ sophisticated techniques to evade detection and maintain persistence, including disguising malicious files as legitimate Windows components and creating scheduled tasks.
Pulse ID: 6983549d1f4ab8a67c29cd5b
Pulse Link: https://otx.alienvault.com/pulse/6983549d1f4ab8a67c29cd5b
Pulse Author: AlienVault
Created: 2026-02-04 14:15:57
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#APT28 #Cloud #CyberAttack #CyberAttacks #CyberSecurity #EU #Government #InfoSec #Microsoft #MicrosoftOffice #OTX #Office #OpenThreatExchange #RAT #UK #Ukr #Ukraine #Vulnerability #Windows #bot #AlienVault
π΄ CVE-2025-5329 - Critical (9.8)
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Martcode Software Inc. Delta Course Automation allows SQL Injection.This issue affects Delta Course Automation: through 04022026.
NOTE: The vend...
π https://www.thehackerwire.com/vulnerability/CVE-2025-5329/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
π CVE-2025-15368 - High (8.8)
The SportsPress plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.7.26 via shortcodes 'template_name' attribute. This makes it possible for authenticated attackers, with contributor-level and above ...
π https://www.thehackerwire.com/vulnerability/CVE-2025-15368/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
Critical Authentication Bypass in Avation Light Engine Pro Allows Full Device Takeover
Avation Light Engine Pro contains a critical vulnerability (CVE-2026-1341) that allows unauthenticated remote attackers to take full control of the device due to a complete lack of authentication.
**Isolate your Avation Light Engine Pro from the internet and make them accessible only from trusted networks. There is no patch, and the vendor is unresponsive. Use a VPN and firewalls to ensure only authorized internal staff can reach the control interface, and start planning for a replacement.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/critical-authentication-bypass-in-avation-light-engine-pro-allows-full-device-takeover-r-o-s-n-n/gD2P6Ple2L
Exports matter to us. A lot. Youβve been warned π
Vulnerability-Lookup now supports KEV catalog export to NDJSON.
#OpenData #KEV #CVE #GCVE #Vulnerability #OpenSource #CyberSecurity
Docker Patches Critical 'DockerDash' Flaw in Ask Gordon AI Assistant
Docker patched a critical vulnerability called DockerDash in its Ask Gordon AI assistant that allowed attackers to execute remote code or steal sensitive environment data via malicious Docker image metadata.
**Treat all AI-processed metadata as untrusted code and ensure you update Docker Desktop and Docker CLI to version 4.50.0 to enable mandatory user confirmation for AI actions. This update prevents automated attacks that turn simple AI queries into dangerous system commands.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/docker-patches-critical-dockerdash-flaw-in-ask-gordon-ai-assistant-9-d-u-d-c/gD2P6Ple2L
π΄ CVE-2025-59818 - Critical (10)
This vulnerability allows authenticated attackers to execute arbitrary commands on the underlying system using the file name of an uploaded file.
π https://www.thehackerwire.com/vulnerability/CVE-2025-59818/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
SQL Injection Vulnerability Reported in Quiz and Survey Master WordPress Plugin
A SQL injection vulnerability (CVE-2025-67987) in the Quiz and Survey Master WordPress plugin affects over 40,000 sites, allowing authenticated users with Subscriber-level access to extract sensitive database information.
**If you are using the Quiz and Survey Master plugin, plan a quick update to version 10.3.2. Even low-level user accounts can exploit this flaw, so do not assume your site is safe just because you trust your registered users.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/sql-injection-vulnerability-reported-in-quiz-and-survey-master-wordpress-plugin-k-x-8-0-b/gD2P6Ple2L
Released a PowerShell IoC triage script for detecting the Notepad++ supply chain attack, including the previously known Rapid7 IoCs and now the newly released IoCs for chains 1 (ProShow) & 2 (Lua/Adobe) published by Securelist (https://securelist.com/notepad-supply-chain-attack/118708/):
https://github.com/moltenbit/NotepadPlusPlus-Attack-Triage
#cybersecurity #vulnerability #incidentresponse #notepadplusplus #supplychainattack
π CVE-2025-15285 - High (7.5)
The SEO Flow by LupsOnline plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the checkBlogAuthentication() and checkCategoryAuthentication() functions in all versions up to, and including,...
π https://www.thehackerwire.com/vulnerability/CVE-2025-15285/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
π CVE-2025-15268 - High (7.5)
The Infility Global plugin for WordPress is vulnerable to unauthenticated SQL Injection via the 'infility_get_data' API action in all versions up to, and including, 2.14.46. This is due to insufficient escaping on the user supplied parameter and l...
π https://www.thehackerwire.com/vulnerability/CVE-2025-15268/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
The Snap Store Security Crisis | SOURCE CODE #3
Clawd Bot MOLT Sites Are Getting Out of Controlβ¦
https://www.youtube.com/watch?v=nm3MWCUVrWs
#threat-intelligence #ai-security #vulnerability
Critical Authentication Bypass in End-of-Life Synectix LAN 232 TRIO Adapters
Synectix LAN 232 TRIO adapters contain a critical vulnerability (CVE-2026-1633) that allows unauthenticated remote attackers to take full control of the device. Because the manufacturer is out of business, no patches will be released.
**If you use these Synectix adapters, isolate them from the internet immediately because they have no password protection and will never be patched. Since the company is out of business, plan a replacement of the devices.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/critical-authentication-bypass-in-end-of-life-synectix-lan-232-trio-adapters-j-r-d-l-z/gD2P6Ple2L
Client Info
Server: https://mastodon.social
Version: 2025.07
Repository: https://github.com/cyevgeniy/lmst