security

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2022-0492 Linux Kernel Improper Authentication Vulnerability CVE-2025-48595 Android Framework Integer Overflow Vulnerability These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risks to the federal enterprise. Binding Operational Directive (BOD) […]

Florida verklagt ChatGPT-Entwickler OpenAIheise online Quelle: Heise Security Ticker

The vulnerability is CVE-2024-21182 and it can be exploited without authentication to hack affected WebLogic servers. The post Oracle WebLogic Vulnerability Exploited in the Wild appeared first on SecurityWeek.

Google has released the June 2026 Android security patches to address 124 vulnerabilities, including one zero-day flaw exploited in targeted attacks. […]

Comments

Exploiting a confused deputy weakness, the hackers simply asked the chatbot to link the account to a new email address. The post Meta AI Hands Over High-Profile Instagram Accounts to Hackers appeared first on SecurityWeek.

Comments

Patchday: Kritische Lücken ermöglichen Attacken auf Android 14, 15, 16Alert3heise Security Quelle: Heise Security Ticker

Android 17 Beta 4.1: Google behebt offenbar letzte Fehler vor Release1heise online Quelle: Heise Security Ticker

Dark Web Profile: BlindEagle BlindEagle (APT-C-36 / AguilaCiega / TAG-144 / G0099 / APT-Q-98) is a threat actor believed to be operating from Latin America. Tracked since 2018, the group runs a hybrid espionage-and-cybercrime operation that has compromised many organizations across Latin America and the U.S. Additionally, the Red Akodon cluster also overlaps via shared […]