Aggregator

Практичный чек-лист: права, обновления и быстрый аудит аддонов без паранойи.

Разбираемся в логике судей, лишивших топ-менеджеров важного козыря.

Solar Energy Spurt Comes Freighted With Chinese Nation-State Hacking Worries
The European Commission froze funding for solar energy projects that use crucial components from Chinese companies such as Huawei, due to cybersecurity fears. The decision affects projects being funded by the European Investment Bank and other partner banks.

A sophisticated threat actor breached DigiCert’s internal support environment in early April 2026 by tricking support analysts into executing a disguised malicious screensaver file, ultimately obtaining stolen EV Code Signing certificates used to distribute the “Zhong Stealer” malware family. On April 2, 2026, a threat actor contacted DigiCert’s customer support team through a Salesforce-based chat […]

The post DigiCert Hacked via Weaponized Screensaver File to Obtain EV Code Signing Certificates appeared first on Cyber Security News.

Заметка для тех, кто верит, что «забытый» сервер никому не нужен.

On May 1, 2026, CISA added CVE-2026-31431, better known as "Copy Fail," to its Known Exploited Vulnerabilities (KEV) catalog. Federal civilian agencies have until May 15 to patch under BOD 22-01. Everyone else should read that deadline as a strong hint.

By Saturday, Infrastructure’s chief information security officer Steve Proud confirmed that the hackers gained access to information about users at some educational institutions, including names, email addresses, student ID numbers and messages between users.

A malicious version of the PyTorch Lightning package published on the Python Package Index (PyPI) delivers a credential-stealing payload targeting browsers, environment files, and cloud services. [...]

Следы ведут к секретному коду двадцатилетней давности.

A vulnerability has been found in Axle-Bucamp MCP-Docusaurus up to 404bc028e15ec304c9a045528560f4b5f27a17e0 and classified as critical. The affected element is the function update_document/continue_document/delete_document/get_content of the file app/routes/document.py. Performing a manipulation of the argument DOCS_DIR/path results in path traversal. This vulnerability was named CVE-2026-7788. The attack may be initiated remotely. In addition, an exploit is available. This product uses a rolling release model to deliver continuous updates. As a result, specific version information for affected or updated releases is not available. The project was informed of the problem early through an issue report but has not responded yet.

The preliminary settlement agreement, released on Thursday, said that Forbes has agreed to give users “greater notice” of its use of trackers and will add language to its website providing California residents with more control over how their data is collected and shared with third parties.

A vulnerability, which was classified as problematic, was found in wCMS 1.4. Impacted is an unknown function of the component New Blog Handler. Such manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2026-38669. The attack can be launched remotely. No exploit exists.

A vulnerability, which was classified as problematic, has been found in gobgp 4.3.0. This issue affects the function ParseIP6Extended of the file /bgp/bgp.go of the component BGP Handler. This manipulation causes out-of-bounds read. This vulnerability is handled as CVE-2026-37461. The attack can be initiated remotely. There is not any exploit available.

A vulnerability classified as critical was found in D-Link DIR-456U A1. This vulnerability affects the function strcmp of the file /etc/init0.d/S80telnetd.sh. The manipulation results in hard-coded credentials. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is known as CVE-2026-42376. Access to the local network is required for this attack. No exploit is available.

Submit #807746 / VDB-360994

A vulnerability classified as critical has been found in D-Link DIR-600L A1. This affects the function strcmp of the file /bin/telnetd.sh. The manipulation leads to hard-coded credentials. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is traded as CVE-2026-42375. Access to the local network is required for this attack to succeed. There is no exploit available.

A vulnerability described as critical has been identified in D-Link DIR-600L B1. Affected by this issue is the function strcmp of the file /bin/telnetd.sh. Executing a manipulation can lead to hard-coded credentials. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability appears as CVE-2026-42374. The attacker needs to be present on the local network. There is no available exploit.

A vulnerability marked as critical has been reported in D-Link DIR-605L B2. Affected by this vulnerability is the function strcmp of the file /bin/telnetd.sh. Performing a manipulation results in hard-coded credentials. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is reported as CVE-2026-42373. The attacker must have access to the local network to execute the attack. No exploit exists.

A vulnerability labeled as critical has been found in D-Link DIR-605L A1. Affected is the function strcmp of the file /bin/telnetd.sh. Such manipulation leads to hard-coded credentials. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is documented as CVE-2026-42372. The attack requires being on the local network. There is not any exploit available.