soc

soc

CVE-2026-5281: Chrome WebGPU Zero-Day Exploited In The Wild

von SOCRadar • 02.04.2026

CVE-2026-5281: Chrome WebGPU Zero-Day Exploited In The Wild Google patched CVE-2026-5281, a high-severity use-after-free (CWE-416) vulnerability in Dawn, Chromium’s WebGPU implementation. The company has confirmed exploitation in the wild, and CISA added it to the Known Exploited Vulnerabilities (KEV) catalog with a remediation deadline for federal agencies. This post breaks down what CVE-2026-5281 is, who […]

Mehr lesen →

soc

BLACKNET-00: The Ransomware-as-a-Service Platform That Weaponizes Mediocrity

von SOCRadar • 02.04.2026

BLACKNET-00: The Ransomware-as-a-Service Platform That Weaponizes Mediocrity How a Custom Ransomware Builder Collapses the Technical Barrier Between Script Kiddies and Enterprise-Grade Ransomware Operations Executive Summary A threat actor named Infrastructure Destruction Squad announced BLACKNET-00 via Telegram, a fully GUI-driven ransomware builder that requires zero programming knowledge to operate. Featuring layered encryption (AES-256, RSA, ChaCha20), a […]

Mehr lesen →

security

CISA Adds One Known Exploited Vulnerability to Catalog

von CISA Current Activity • 02.04.2026

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-3502 TrueConf Client Download of Code Without Integrity Check Vulnerability This type of vulnerability is a frequent attack vector for malicious cyber actors and poses significant risks to the federal enterprise. Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited […]

Mehr lesen →

security

Trivy-Linked Cisco Breach & ShinyHunters’ Stolen Data Claim

01.04.2026

Trivy-Linked Cisco Breach & ShinyHunters’ Stolen Data ClaimCisco is facing fresh scrutiny after a breach of its internal development environment was linked to the Trivy supply chain compromise. A ShinyHunters extortion claim has since surfaced, alleging theft of Salesforce data, GitHub repositories, and AWS assets.This post outlines what is currently known, what remains unverified, and where the […]

Mehr lesen →

security

FBI Warns of Data Security Risks From China-Made Mobile Apps

01.04.2026

The agency has not named the problematic foreign-made applications, but TikTok and Temu come to mind. The post FBI Warns of Data Security Risks From China-Made Mobile Apps appeared first on SecurityWeek.

Mehr lesen →

security

US Charges Uranium Crypto Exchange Hacker

01.04.2026

Jonathan Spalletta exploited smart contract vulnerabilities to steal approximately $55 million in cryptocurrency and cause Uranium to shut down. The post US Charges Uranium Crypto Exchange Hacker appeared first on SecurityWeek.

Mehr lesen →

KI

Webinar Today: Agentic AI vs. Identity’s Last Mile Problem

01.04.2026

Join the webcast as we explore what Agentic AI can and cannot solve today, and real world breach scenarios linked to disconnected applications. The post Webinar Today: Agentic AI vs. Identity’s Last Mile Problem appeared first on SecurityWeek.

Mehr lesen →

security

UAC-0255 Attack Detection: Threat Actors Impersonate CERT-UA to Infect Ukrainian Public and Private Sector Organizations With AGEWHEEZE RAT

01.04.2026

Phishing remains one of the most effective tools in the cybercriminal arsenal, especially when threat actors abuse the credibility of trusted institutions and familiar digital services to increase victim interaction. In late March 2026, CERT-UA revealed a phishing campaign tracked as UAC-0255 in which attackers impersonated the agency and attempted to infect organizations across Ukraine’s […]

Mehr lesen →

security

CISA Adds One Known Exploited Vulnerability to Catalog

01.04.2026

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-5281 Google Dawn Use-After-Free Vulnerability This type of vulnerability is a frequent attack vector for malicious cyber actors and poses significant risks to the federal enterprise. Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of […]

Mehr lesen →

security

CVE-2025-53521: F5 BIG-IP APM Flaw Reclassified as Unauthenticated RCE

01.04.2026

CVE-2025-53521: F5 BIG-IP APM Flaw Reclassified as Unauthenticated RCE CVE-2025-Adresse geschuetzt F5 BIG-IP Access Policy Manager (APM) that was initially treated as a denial-of-service condition in 2025, then reclassified recently as a potential unauthenticated remote code execution (RCE) issue in certain deployments. BIG-IP APM often sits directly in the authentication and remote access path, so a pre-auth […]

Mehr lesen →

📅 Kalender