Aggregator
CVE-2023-48205 | Jorani Leave Management System 1.0.2 Header Host password recovery (ID 175802 / EUVD-2023-52285)
CVE-2023-48207 | Availability Booking Calendar 5.0 Reservations List csv injection (ID 175804 / EUVD-2023-52287)
CVE-2023-48206 | GaatiTrack Courier Management System 1.0 login.php page cross site scripting (ID 175803 / EUVD-2023-52286)
DevChallenges Database Leaked With 20,000 User Records Published for Free Download
CVE-2023-48204 | sanluan PublicCMS 4.0.202302.e api/method/getHtml appToken information disclosure (Issue 77 / EUVD-2023-52284)
CVE-2023-48199 | Grocy 4.0.3 QR Code information disclosure (EUVD-2023-52279)
CVE-2023-48200 | Grocy 4.0.3 Equipment Description /equipment/ cross site scripting (EUVD-2023-52280)
Zoom Update Scam Infected 1,437 Users to Deploy Surveillance Tools in 12 Days
A cleverly crafted fake Zoom website has silently pushed surveillance software onto Windows machines, infecting 1,437 users globally in just 12 days. The campaign, first detected on February 11, 2026, on the Microsoft Defender for Endpoint (MDE) platform, used a rogue version of Teramind — a legitimate commercial workforce monitoring tool — to spy on […]
The post Zoom Update Scam Infected 1,437 Users to Deploy Surveillance Tools in 12 Days appeared first on Cyber Security News.
European DYI chain ManoMano data breach impacts 38 million customers
MSP Strategic Defense: Building Compliance on Dynamic Attack Surface Reduction
Compliance expectations across SMB markets are rising as supply chain regulations and cyber insurance requirements raise the baseline for security maturity. Regulatory standards such as CIS Controls v8, the NIS2 Directive, ISO 27001, SOC 2, PCI DSS, HIPAA, Cyber Essentials, CMMC 2.0, DORA, and the Essential Eight now shape what that baseline looks like.
The post MSP Strategic Defense: Building Compliance on Dynamic Attack Surface Reduction appeared first on Security Boulevard.