Aggregator

Step Finance announced that it lost $40 million worth of digital assets after hackers compromised devices belonging to the company's team of executives. [...]

Nick Andersen, a top CISA official, discussed plans for improving CIPAC and developing an AI-ISAC.

The post What’s next for DHS’s forthcoming replacement critical infrastructure protection panel, AI information sharing appeared first on CyberScoop.

“I think that we'll have some news on CIRCIA in pretty short order, in the next couple of weeks, hopefully,” Nick Andersen, executive assistant director for cybersecurity at CISA, told reporters.

Limited attacks occurred prior to Ivanti’s disclosure, followed by mass exploitation by multiple threat groups. More than 1,400 potentially vulnerable instances remain exposed.

The post Ivanti’s EPMM is under active attack, thanks to two critical zero-days appeared first on CyberScoop.

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds SolarWinds Web Help Desk, Sangoma FreePBX, and GitLab flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added SolarWinds Web Help Desk, Sangoma FreePBX, and GitLab flaws to its Known Exploited Vulnerabilities (KEV) catalog. Below are the flaws added to the catalog: The first […]

New Study Shows AI Agents Can't Work Without Humans in the Loop, But Give Them Time
AI agents are quickly moving from experimental demos to enterprise pilots, and they're already being used for tasks such as financial analysis, document review and drafting. But as AI gains momentum, one question goes largely unanswered: How can we measure the effectiveness of AI agents?

Hacked Infrastructure Delivered Chinese Nation-State Group's Backdoor, Experts Warn
The widely used, open source text-editing software Notepad++ for Windows said attackers exploited a vulnerability to redirect some users to sites that pushed a backdoor onto their system. Security experts have tied the attack to a broader campaign perpetrated by Chinese nation-state actors.

Social Media Network Faces Legal Barrage From France, United Kingdom and Spain
In the space of a few hours, French authorities raided X's office in Paris, the British privacy regulator opened an investigation into X and xAI, and Spanish Prime Minister Pedro Sánchez announced legal proposals that would criminalize algorithmic manipulation and amplification of illegal content.

CVE-2025-40551 carries a critical severity score of 9.8 out of 10 and impacts SolarWinds Web Help Desk (WHD) — an IT service management platform used by many large organizations to handle ticketing, asset tracking and other tasks.

The self-replicating malware has poisoned a fresh set of Open VSX software components, leaving potential downstream victims with infostealer infections.

Security researchers from cloud cybersecurity firm Wiz disclosed a critical vulnerability in Moltbook, a newly launched social network designed for AI agents, that allowed them to breach the platform’s backend and access private information in under three minutes. Moltbook is a newly launched social network built exclusively for “authentic” AI agents. According to the researcher, […]

The post Security Researchers Breach Moltbook in Record Time appeared first on Centraleyes.

The post Security Researchers Breach Moltbook in Record Time appeared first on Security Boulevard.

A vulnerability labeled as critical has been found in devcode-it openstamanager up to 2.9.8. Affected by this issue is some unknown functionality of the component Stampe Module. Executing a manipulation can lead to sql injection. This vulnerability appears as CVE-2025-69215. The attack may be performed from remote. There is no available exploit.

A vulnerability identified as critical has been detected in WP FOFT Loader Plugin up to 2.1.39 on WordPress. Affected by this vulnerability is the function WP_FOFT_Loader_Mimes::file_and_ext. Performing a manipulation results in unrestricted upload. This vulnerability is reported as CVE-2026-1756. The attack is possible to be carried out remotely. No exploit exists.

A vulnerability categorized as problematic has been discovered in GNOME libsoup. Affected is the function soup_filter_input_stream_read_line of the component Chunked Handler. Such manipulation leads to http request smuggling. This vulnerability is documented as CVE-2026-1801. The attack can be executed remotely. There is not any exploit available.

A vulnerability was found in Creativeitem Academy LMS 7.0. It has been rated as problematic. This impacts an unknown function of the file /academy/blogs. This manipulation causes cross site scripting. This vulnerability is registered as CVE-2025-71179. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

A vulnerability was found in Craft CMS up to 4.10.0/5.5.1. It has been declared as problematic. This affects an unknown function of the component Store Management Section. The manipulation results in cross site scripting. This vulnerability is cataloged as CVE-2026-25522. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in podinfo up to 6.9.0. It has been classified as critical. The impacted element is an unknown function of the file /store of the component POST Handler. The manipulation leads to unrestricted upload. This vulnerability is listed as CVE-2025-70849. The attack may be initiated remotely. There is no available exploit.

A vulnerability was found in ERPNext up to 15.88.1 and classified as problematic. The affected element is an unknown function of the component CSV Import. Executing a manipulation can lead to cross site scripting. This vulnerability is tracked as CVE-2025-65923. The attack can be launched remotely. No exploit exists.

A vulnerability has been found in Craft CMS up to 4.10.0/5.5.1 and classified as problematic. Impacted is an unknown function. Performing a manipulation of the argument Description results in cross site scripting. This vulnerability is identified as CVE-2026-25489. The attack can be initiated remotely. There is not any exploit available. The affected component should be upgraded.

A vulnerability, which was classified as problematic, was found in Craft CMS up to 4.10.0/5.5.1. This issue affects some unknown processing. Such manipulation leads to cross site scripting. This vulnerability is referenced as CVE-2026-25490. It is possible to launch the attack remotely. No exploit is available. You should upgrade the affected component.