Aggregator

Huntress confirmed active SolarWinds Web Help Desk exploits, where attackers installed Zoho tools for persistence, and used Velociraptor for control. On February 7, 2026, Huntress investigated an active attack abusing SolarWinds Web Help Desk flaws. Attackers exploited unpatched versions to run code remotely, then quickly installed Zoho ManageEngine tools for persistent remote access and Cloudflare […]

亿万富翁、NASA 局长 Jared Isaacman 宣布允许执行 Crew-12 载人飞行和 Artemis II 绕月任务的宇航员携带智能手机。此举引发了很多争议，因为航空公司对智能手机使用的锂离子电池都有严格规定，而 NASA 竟然允许在更危险更封闭的环境中放置或使用锂离子电池。Isaacman 宣称此举是为了挑战他所谓的臃肿的认证要求，此前要允许硬件在太空中使用需要经历繁琐的审批流程，包括辐射特性分析、电池热测试、气体释放评估和振动测试等等。

В КНР нашли способ разогнать БПЛА до Маха 0,9.

A vulnerability was found in AprilRobotics apriltag up to 3.4.5. It has been classified as problematic. Affected by this vulnerability is the function apriltag_detector_detect of the file apriltag.c. The manipulation leads to memory corruption. This vulnerability is listed as CVE-2026-2246. The attack must be carried out locally. In addition, an exploit is available. It is suggested to install a patch to address this issue.

Microsoft Exchange Online is experiencing a service degradation that incorrectly flags legitimate customer emails as phishing, quarantining them and disrupting communications. The issue, identified as EX1227432, started on February 5, 2026, at 10:31 AM EST and remains ongoing. Microsoft classifies this as an incident affecting Exchange Online, with some users unable to send or receive […]

The post Microsoft Exchange Online Flags Customers Legitimate Email as Phishing appeared first on Cyber Security News.

Cybersecurity threats are swiftly evolving beyond easily spotted, poorly written phishing emails to sophisticated methods that leverage trusted digital infrastructure. Attackers are now exploiting legitimate business workflows within widely used platforms, effectively turning reputable services into unwitting accomplices for financial fraud. This strategic shift makes malicious communications significantly harder for traditional security filters to detect, […]

The post Hackers Exploit Legitimate Apple and PayPal Invoice Emails in DKIM Replay Attacks appeared first on Cyber Security News.

A vulnerability was found in WCFM Membership Plugin up to 2.11.8 on WordPress and classified as problematic. Affected is the function WCFMvm_Memberships_Payment_Controller::processing. Executing a manipulation can lead to improper control of resource identifiers. This vulnerability is tracked as CVE-2025-15147. The attack can be launched remotely. No exploit exists.

A vulnerability has been found in WCFM Plugin up to 6.7.24 on WordPress and classified as critical. This impacts the function WCFM_Settings_Controller::processing of the component Setting Handler. Performing a manipulation results in privilege escalation. This vulnerability is identified as CVE-2026-0845. The attack can be initiated remotely. There is not any exploit available.

Submit #753162 / VDB-344994

A vulnerability, which was classified as problematic, was found in CCExtractor up to 183. This affects the function parse_PAT/parse_PMT in the library src/lib_ccx/ts_tables.c of the component MPEG-TS File Parser. Such manipulation leads to out-of-bounds read. This vulnerability is referenced as CVE-2026-2245. The attack can only be performed from a local environment. Furthermore, an exploit is available. It is best practice to apply a patch to resolve this issue.

A vulnerability, which was classified as problematic, has been found in Loggro Pymes up to 1.0.123. The impacted element is an unknown function of the file /loggrodemo/jbrain/MaestraCuentasBancarias. This manipulation of the argument descripción causes cross site scripting. The identification of this vulnerability is CVE-2026-1959. It is possible to initiate the attack remotely. There is no exploit available. It is advisable to upgrade the affected component.

A vulnerability classified as critical was found in JetBrains Hub. The affected element is an unknown function. The manipulation results in missing authentication. This vulnerability was named CVE-2026-25848. The attack may be performed from remote. There is no available exploit. Upgrading the affected component is advised.

A vulnerability classified as problematic has been found in Loggro Pymes up to 1.0.123. Impacted is an unknown function of the file /loggrodemo/jbrain/ConsultaTerceros. The manipulation of the argument Facebook leads to cross site scripting. This vulnerability is uniquely identified as CVE-2026-1960. The attack is possible to be carried out remotely. No exploit exists. It is recommended to upgrade the affected component.

A vulnerability described as problematic has been identified in JetBrains PyCharm up to 2025.3.1. This issue affects some unknown processing of the component Jupyter Viewer Page. Executing a manipulation can lead to cross site scripting. This vulnerability is handled as CVE-2026-25847. The attack can be executed remotely. There is not any exploit available. Upgrading the affected component is recommended.

A vulnerability marked as problematic has been reported in JetBrains YouTrack. This vulnerability affects unknown code of the component Access Token Handler. Performing a manipulation results in sensitive information in log files. This vulnerability is known as CVE-2026-25846. Remote exploitation of the attack is possible. No exploit is available. It is suggested to upgrade the affected component.

A vulnerability labeled as problematic has been found in Apache Airflow up to 3.1.6. This affects an unknown part of the component UI. Such manipulation leads to information disclosure. This vulnerability is traded as CVE-2026-24098. The attack may be launched remotely. There is no exploit available. The affected component should be upgraded.

A vulnerability identified as critical has been detected in Apache Airflow up to 3.1.6. Affected by this issue is some unknown functionality. This manipulation causes incorrect use of privileged apis. This vulnerability appears as CVE-2026-22922. The attack may be initiated remotely. There is no available exploit. You should upgrade the affected component.

A vulnerability categorized as problematic has been discovered in Atlas k12net up to 09022026. Affected by this vulnerability is an unknown functionality. The manipulation results in insertion of sensitive information into sent data. This vulnerability is reported as CVE-2025-7708. The attack can be launched remotely. No exploit exists.

Submit #753160 / VDB-344991

A vulnerability was found in Xpoda Studio up to 09022026. It has been rated as critical. Affected is an unknown function. The manipulation leads to sql injection. This vulnerability is documented as CVE-2025-6830. The attack can be initiated remotely. There is not any exploit available.