Aggregator

Moltbook Gave Everyone Control of Every AI Agent

BankInfoSecurity.com
1 week ago
Database Misconfiguration Exposed 1.5 million API Tokens
A misconfigured database at Moltbook, the viral social network for AI agents, exposed 1.5 million API authentication tokens, 35,000 email addresses, and private messages. Security researchers discovered unauthenticated read and write access to all platform data within days of launch.

Banks Face Dual Authentication Crisis From AI Agents

BankInfoSecurity.com
1 week ago
Experts Advise Moving From Verifying Identities to Knowing Agent Intentions
Financial institutions are rushing to deploy AI agents capable of autonomously initiating transactions, approving payments and freezing accounts in real time. But agents are creating a "dual authentication crisis" that traditional security frameworks cannot address.

German Agencies Warn of Signal Phishing Targeting Politicians, Military, Journalists

The Hackers News
1 week ago
Germany's Federal Office for the Protection of the Constitution (aka Bundesamt für Verfassungsschutz or BfV) and Federal Office for Information Security (BSI) have issued a joint advisory warning of a malicious cyber campaign undertaken by a likely state-sponsored threat actor that involves carrying out phishing attacks over the Signal messaging app. "The focus is on high-ranking targets in
The Hacker News

CVE-2026-23083 | Linux Kernel up to 6.6.121/6.12.67/6.18.7/6.19-rc6 fou fou_udp_recv privilege escalation (Nessus ID 297900 / WID-SEC-2026-0324)

Vuldb Updates
1 week ago
A vulnerability classified as critical was found in Linux Kernel up to 6.6.121/6.12.67/6.18.7/6.19-rc6. This affects the function fou_udp_recv of the component fou. Executing a manipulation can lead to privilege escalation. This vulnerability is tracked as CVE-2026-23083. The attack is only possible within the local network. No exploit exists. Upgrading the affected component is advised.
vuldb.com

CVE-2026-23106 | Linux Kernel up to 6.18.7/6.19-rc6 timekeeping include/linux/seqlock.h __do_ajdtimex state issue (Nessus ID 297903)

Vuldb Updates
1 week ago
A vulnerability was found in Linux Kernel up to 6.18.7/6.19-rc6 and classified as critical. The affected element is the function __do_ajdtimex of the file include/linux/seqlock.h of the component timekeeping. Such manipulation leads to state issue. This vulnerability is documented as CVE-2026-23106. The attack requires being on the local network. There is not any exploit available. It is suggested to upgrade the affected component.
vuldb.com

CVE-2026-23093 | Linux Kernel up to 6.18.7/6.19-rc6 ksmbd dma_unmap_sg privilege escalation (Nessus ID 297902)

Vuldb Updates
1 week ago
A vulnerability marked as critical has been reported in Linux Kernel up to 6.18.7/6.19-rc6. This affects the function dma_unmap_sg of the component ksmbd. This manipulation causes privilege escalation. This vulnerability is handled as CVE-2026-23093. The attack can only be done within the local network. There is not any exploit available. It is suggested to upgrade the affected component.
vuldb.com

Managed ad