soc

📅 Kalender

< July 2026 >
Mo
Di
Mi
Do
Fr
Sa
So
12
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
soc

What Do You Need to Know About Claude Fable 5?

What Do You Need to Know About Claude Fable 5? On June 9, 2026, Anthropic released Claude Fable 5, calling it the most capable model it has ever made available to the general public. For security teams, CISOs, and anyone tracking the AI race, this launch is worth a close look. It is powerful, it […]

Mehr lesen →
soc

CVE-2026-11645: Chrome Zero-Day Vulnerability Exploited in the Wild

Google has released emergency Chrome updates to address a Chrome zero-day vulnerability, a high-severity out-of-bounds read/write issue in the V8 JavaScript engine. Google says an exploit exists in the wild, and the patched Stable builds are rolling out as 149.0.7827.102.103 for Windows and Mac and 149.0.7827.102 for Linux. Public reporting says the flaw can be […]

Mehr lesen →
soc

CVE-2026-50751: Check Point VPN Authentication Bypass Exploited in Targeted Attacks

Organizations continue to face elevated risk from edge-device flaws that can hand attackers an initial foothold without valid credentials. CVE-2026-50751 is a critical authentication bypass issue in Check Point VPN Remote Access and Mobile Access that allows a remote, unauthenticated attacker to establish a VPN session without a valid user password. According to public reporting, […]

Mehr lesen →
soc

CVE-2026-11645: Exploited Chrome V8 Bug Enables In-Browser Code Execution

CVE-2026-11645: Exploited Chrome V8 Bug Enables In-Browser Code Execution CVE-2026-11645 is a high-severity Google Chrome zero-day in the V8 JavaScript/WebAssembly engine caused by an out-of-bounds (OOB) read/write condition. Google has confirmed it is aware that an exploit exists in the wild, making this an urgent patching item for any organization running Chrome on desktop endpoints. […]

Mehr lesen →
soc

CISA KEV Highlights LiteLLM RCE (CVE-2026-42271) & Check Point VPN Auth Bypass (CVE-2026-50751)

CISA KEV Highlights LiteLLM RCE (CVE-2026-42271) & Check Point VPN Auth Bypass (CVE-2026-50751) CISA added two vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog on June 8, 2026: CVE-2026-42271 in BerriAI LiteLLM and CVE-2026-50751 in Check Point Security Gateway. Both issues affect high-value parts of modern enterprise environments. LiteLLM often sits between users, applications, and […]

Mehr lesen →
soc

CISA Adds Three Known Exploited Vulnerabilities to Catalog

CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-7473 Arista Extensible Operating System Incomplete Comparison with Missing Factors Vulnerability CVE-2026-11645 Google Chromium V8 Out-of-Bounds Read and Write Vulnerability CVE-2026-20245 Cisco Catalyst SD-WAN Manager Improper Encoding or Escaping of Output Vulnerability These types of vulnerabilities […]

Mehr lesen →
soc

Shai-Hulud Hades PyPI Campaign: 19 Packages Trojanized via Wheel Startup Hooks

Shai-Hulud Hades PyPI Campaign: 19 Packages Trojanized via Wheel Startup Hooks A PyPI supply-chain campaign in the Shai-Hulud / Mini Shai-Hulud / Miasma lineage compromised 19 Python packages by shipping trojanized wheel artifacts. Researchers observed 37 malicious wheels that add a Python startup hook (*.pth) to trigger code execution, then bootstrap a Bun runtime to […]

Mehr lesen →
soc

Handala Claims It Disrupted Israeli Radar Systems: Here’s What We Actually Know

Handala Claims It Disrupted Israeli Radar Systems: Here’s What We Actually Know On the same day that Iran and Israel traded missile strikes in their most serious exchange since the April ceasefire, an Iranian-linked hacker group called Handala posted a series of messages on Telegram claiming it had launched crippling cyberattacks against Israeli military and […]

Mehr lesen →
soc

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-42271 BerriAI LiteLLM Command Injection Vulnerability CVE-2026-50751 Check Point Security Gateway Improper Authentication Vulnerability These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risks to the federal enterprise. Binding […]

Mehr lesen →
soc

CVE-2026-20245: Cisco SD-WAN Manager Zero-Day Enables Root Command Execution

Cisco has disclosed a seventh SD-WAN zero-day exploited in 2026, tracked as CVE-2026-20245. The flaw affects the command-line interface of Cisco Catalyst SD-WAN Manager and can allow an authenticated remote attacker with netadmin privileges to execute arbitrary commands as root by uploading a crafted file. Cisco says exploitation has already been observed in limited cases, […]

Mehr lesen →