2152 items
Unread (2152) All Dismissed
HIGH
CVE-2026-5509 (CVSS 7.2) — An authenticated command injection vulnerability exists in the Archer BE450 v1 and BE7200 v1 router ...
NVD CVE-2026-5509 9d ago
HIGH
CVE-2026-44378 (CVSS 7.5) — Botan is a C++ cryptography library. Prior to 3.12.0, certain patterns of indefinite length encoding...
NVD CVE-2026-44378 9d ago
INFO
Romanian national sentenced to more than 4 years for hacking Oregon government systems
The Record breachesransomwarenation-state 9d ago
INFO
UK Cyberspying Chief Calls AI ‘an Unstoppable Force’ and Warns About Russia
SecurityWeek breachesransomwaresupply-chain 9d ago
CRITICAL
CVE-2026-48027 (CVSS 9.8) — Nx Console is the user interface for Nx & Lerna. On 19 May 2026, a malicious version of Nx Console, ...
NVD CVE-2026-48027 +1 9d ago
CRITICAL
CVE-2026-48027: Nx Console Embedded Malicious Code Vulnerability (Nx Nx Console)
CISA KEV 10d ago
HIGH
CVE-2026-42790 (CVSS 8.1) — Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_cert and public_key m...
NVD CVE-2026-42790 9d ago
HIGH
CVE-2026-42459 (CVSS 7.5) — free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, the free5GC UDM com...
NVD CVE-2026-42459 9d ago
MEDIUM
CVE-2026-42081 (CVSS 6.1) — free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, the AMF in Free5GC ...
NVD CVE-2026-42081 9d ago
INFO
Latin American Cybercriminals Hoover Up Government Data
rss:darkreading breachesmalwarethreat-actors 9d ago
INFO
AI-Assisted Exploit Development Outpaces Scanner Detection
rss:darkreading breachesmalwarethreat-actors 9d ago
INFO
Grandoreiro Malware and BTMOB RAT Campaigns Target Windows and Android Users
The Hacker News supply-chainbreachesmalware 9d ago
HIGH
Popular GitHub Action Tags Redirected to Imposter Commit to Steal CI/CD Credentials
The Hacker News supply-chainbreachesmalware +81 18d ago
INFO
ABB AC500 V3 Stack Buffer Overflow in Cryptographic Message Syntax
rss:cisa-advisories 25d ago
INFO
Fuji Electric Tellus
rss:cisa-advisories 25d ago
INFO
ABB AC500 V3 Multiple Vulnerabilities
rss:cisa-advisories 25d ago
INFO
Subnet Solutions PowerSYSTEM Center
rss:cisa-advisories 25d ago
INFO
ABB Automation Builder Gateway for Windows
rss:cisa-advisories 25d ago
INFO
ABB WebPro SNMP Card PowerValue Multiple Vulnerabilities
rss:cisa-advisories 25d ago
INFO
Siemens Siemens ROS#
rss:cisa-advisories 23d ago
INFO
Siemens gWAP
rss:cisa-advisories 23d ago
INFO
Siemens SIMATIC
rss:cisa-advisories 23d ago
INFO
Siemens Ruggedcom Rox
rss:cisa-advisories 23d ago
INFO
Siemens Ruggedcom Rox
rss:cisa-advisories 23d ago
INFO
Siemens Simcenter Femap
rss:cisa-advisories 23d ago
INFO
Universal Robots Polyscope 5
rss:cisa-advisories 23d ago
INFO
Siemens Ruggedcom Rox
rss:cisa-advisories 23d ago
INFO
Siemens Teamcenter
rss:cisa-advisories 23d ago
INFO
Siemens Solid Edge
rss:cisa-advisories 23d ago
INFO
Siemens SENTRON 7KT PAC1261 Data Manager
rss:cisa-advisories 23d ago
INFO
Siemens Opcenter RDnL
rss:cisa-advisories 23d ago
INFO
Siemens Ruggedcom Rox
rss:cisa-advisories 23d ago
INFO
Siemens Industrial Devices
rss:cisa-advisories 23d ago
INFO
Siemens SIMATIC S7 PLC Web Server
rss:cisa-advisories 23d ago
INFO
Siemens SIPROTEC 5
rss:cisa-advisories 23d ago
INFO
Siemens SIMATIC
rss:cisa-advisories 23d ago
INFO
Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt
The Hacker News 20d ago
INFO
Kieback & Peter DDC Building Controllers
rss:cisa-advisories 18d ago
INFO
Siemens RUGGEDCOM APE1808 Devices
rss:cisa-advisories 18d ago
INFO
ABB CoreSense HM and CoreSense M10
rss:cisa-advisories 18d ago
INFO
ScadaBR
rss:cisa-advisories 18d ago
INFO
ZKTeco CCTV Cameras
rss:cisa-advisories 18d ago
INFO
CISA Exposes Secrets, Credentials in 'Private' Repo
rss:darkreading 17d ago
INFO
GitHub Investigating TeamPCP Claimed Breach of ~4,000 Internal Repositories
The Hacker News 17d ago
INFO
GitHub investigates internal repositories breach claimed by TeamPCP
BleepingComputer 17d ago
INFO
GitHub confirms breach of 3,800 repos via malicious VSCode extension
BleepingComputer 17d ago
INFO
Schnieider Electric EcoStruxure Machine Expert HVAC (SEVD-2026-132-01)
rss:cisa-advisories 17d ago
INFO
Senator presses CISA for answers about alleged GitHub repository leak
The Record 17d ago
INFO
GitHub confirms being hacked by TeamPCP, says customer data unaffected
The Record 17d ago
INFO
Grafana breach caused by missed token rotation after TanStack attack
BleepingComputer 16d ago
INFO
GitHub Confirms Breach, 4K Internal Repos Stolen
rss:darkreading 16d ago
INFO
GitHub Internal Repositories Breached via Malicious Nx Console VS Code Extension
The Hacker News 16d ago
INFO
GitHub links repo breach to TanStack npm supply-chain attack
BleepingComputer 16d ago
INFO
ABB Terra AC Wallbox
rss:cisa-advisories 16d ago
INFO
ABB B&R Automation Studio
rss:cisa-advisories 16d ago
INFO
ABB B&R Automation Runtime
rss:cisa-advisories 16d ago
INFO
ABB B&R PCs
rss:cisa-advisories 16d ago
INFO
Grafana Says Codebase and Other Data Stolen via TanStack Supply Chain Attack
SecurityWeek 15d ago
INFO
Megalodon GitHub Attack Targets 5,561 Repos with Malicious CI/CD Workflows
The Hacker News 15d ago
INFO
CISA Security Leak
rss:schneier 15d ago
INFO
Lawmakers Demand Answers as CISA Tries to Contain Data Leak
Krebs 14d ago
INFO
Packagist Supply Chain Attack Infects 8 Packages Using GitHub-Hosted Linux Malware
The Hacker News 13d ago
INFO
npm Adds 2FA-Gated Publishing and Package Install Controls Against Supply Chain Attacks
The Hacker News 13d ago
INFO
Laravel Lang packages hijacked to deploy credential-stealing malware
BleepingComputer 13d ago
INFO
Over 5,500 GitHub Repositories Infected in ‘Megalodon’ Supply Chain Attack
SecurityWeek 12d ago
INFO
ABB Terra AC
rss:cisa-advisories 11d ago
INFO
ABB LVS MConfig
rss:cisa-advisories 11d ago
INFO
ABB Ability Camera Connect
rss:cisa-advisories 11d ago
INFO
Eppendorf BioFlo 320
rss:cisa-advisories 11d ago
INFO
ABB AbilityTM Zenon Remote Transport Vulnerability
rss:cisa-advisories 11d ago
INFO
ABB AC500 V2
rss:cisa-advisories 11d ago
INFO
ABB B&R Automation Runtime DoS Vulnerability in System Diagnostics Manager (SDM)
rss:cisa-advisories 11d ago
INFO
Feeding Frenzy: 'Megalodon' Malware Infects Thousands of GitHub Repos
rss:darkreading 10d ago
INFO
Malicious npm Package Stole Files From Claude AI User Directory via GitHub
The Hacker News 9d ago
INFO
ABB EIBPORT
rss:cisa-advisories 9d ago
INFO
Jinan USR IOT Technology Limited (PUSR) USR-W610 RS232/485 to Wi-Fi/Ethernet Converter
rss:cisa-advisories 9d ago
INFO
ABB Busch-Welcome 2 Wire Door Opener Actuator
rss:cisa-advisories 9d ago
INFO
Fourth Frontier Frontier X Mobile Application, Frontier X2
rss:cisa-advisories 9d ago
INFO
CP Plus 8 Ch. Network Video Recorder
rss:cisa-advisories 9d ago
INFO
XCharge C6
rss:cisa-advisories 9d ago
INFO
KMW CCTV Security Cameras
rss:cisa-advisories 9d ago
INFO
MacGregor Voyage Data Recorder (VDR) G4e
rss:cisa-advisories 9d ago
INFO
Supply Chain Compromises Impact Nx Console and GitHub Repositories
rss:cisa-advisories 9d ago
INFO
Microsoft Slams Public Zero-Day Disclosures Amid GitHub Researcher Account Removal
The Hacker News 9d ago
INFO
Microsoft calls zero-day releases ‘never justifiable’ as researcher threatens to drop more
The Record 8d ago
INFO
OpenAI Codex Authentication Tokens Stolen in codexui-android npm Supply Chain Attack
The Hacker News 5d ago
INFO
Red Hat removes tainted packages after software pipeline compromise
The Record 4d ago
INFO
VS Code zero-day lets hackers steal GitHub tokens in one click
BleepingComputer 3d ago
INFO
NAVTOR NavBox
rss:cisa-advisories 2d ago
INFO
Hitachi Energy MACH HiDraw
rss:cisa-advisories 2d ago
INFO
Hitachi Energy ITT600 Explorer
rss:cisa-advisories 2d ago
INFO
B&R PPT30 Operating System
rss:cisa-advisories 2d ago
INFO
Hitachi Energy RTU500
rss:cisa-advisories 2d ago
INFO
Claude Code GitHub Action Flaw Let One Malicious Issue Hijack Repositories
The Hacker News 1d ago
INFO
Rudd orders Cyber Command reviews as Pentagon presses reform agenda
The Record breachesransomwarenation-state 9d ago
HIGH
CVE-2026-48544 (CVSS 7.5) — Taipy 4.1.1, fixed in commit 129fd40, contains a path traversal vulnerability in the ElementLibrary....
NVD CVE-2026-48544 9d ago
CRITICAL
CVE-2026-45570 (CVSS 9.6) — go-git is an extensible git implementation library written in pure Go. Prior to 5.19.1 and 6.0.0-alp...
NVD CVE-2026-45570 9d ago
HIGH
CVE-2026-45022 (CVSS 7.5) — go-git is an extensible git implementation library written in pure Go. Prior to 5.19.0 and 6.0.0-alp...
NVD CVE-2026-45022 9d ago
HIGH
CVE-2026-44838 (CVSS 8.1) — RabbitMQ is a messaging and streaming broker. From 4.2.0 to before 4.2.4, RabbitMQ's MQTT plugin all...
NVD CVE-2026-44838 9d ago
HIGH
CVE-2026-42184 (CVSS 8.8) — Tauri is a framework for building binaries for all major desktop platforms. From 2.0 to 2.11.0, a fl...
NVD CVE-2026-42184 9d ago
INFO
FBI warns extortion hackers are visiting US law firms to steal data
The Record breachesransomwarenation-state 10d ago
INFO
Vulnerability in Popular Conference Software Granted Attackers a 100% Talk Acceptance Rate
SecurityWeek breachesransomwaresupply-chain 10d ago
MEDIUM
CVE-2026-9704 (CVSS 6.8) — A flaw was found in Keycloak. An authenticated user with low privileges can exploit this vulnerabili...
NVD CVE-2026-9704 10d ago
MEDIUM
CVE-2026-9617 (CVSS 6.8) — PostgreSQL Anonymizer contains a vulnerability that allows a user to gain superuser privileges by cr...
NVD CVE-2026-9617 10d ago
HIGH
CVE-2026-8180 (CVSS 7.5) — IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Tra...
NVD CVE-2026-8180 10d ago
HIGH
CVE-2026-8179 (CVSS 8.8) — IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Tra...
NVD CVE-2026-8179 10d ago
CRITICAL
CVE-2026-8175 (CVSS 9.8) — IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Tra...
NVD CVE-2026-8175 10d ago
CRITICAL
CVE-2026-7876 (CVSS 9.1) — IBM Aspera HSTS for CP4I 1.5.1 through 1.5.19
NVD CVE-2026-7876 10d ago
HIGH
CVE-2026-7528 (CVSS 7.1) — IBM Langflow OSS 1.0.0 through 1.9.0 could allow a denial of service due to uncontrolled resource co...
NVD CVE-2026-7528 10d ago
CRITICAL
CVE-2026-7524 (CVSS 9.8) — IBM Langflow OSS 1.0.0 through 1.9.1 could allow remote code execution due to improper validation of...
NVD CVE-2026-7524 10d ago
HIGH
CVE-2026-7365 (CVSS 8.4) — IBM Operations Analytics - Log Analysis  and IBM SmartCloud Analytics - Log Analysis uses default pa...
NVD CVE-2026-7365 10d ago
MEDIUM
CVE-2026-6938 (CVSS 6.5) — IBM Db2 12.1.0 through 12.1.4 is vulnerable to authorization bypass when uploading to a remote objec...
NVD CVE-2026-6938 10d ago
MEDIUM
CVE-2026-6052 (CVSS 6.5) — IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable to running out of memory when...
NVD CVE-2026-6052 10d ago
MEDIUM
CVE-2026-6051 (CVSS 5.5) — IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable to a denial of service when e...
NVD CVE-2026-6051 10d ago
HIGH
CVE-2026-5065 (CVSS 8.8) — IBM Controller 11.0.1, 11.1.0, 11.1.1, and 11.1.2 contains hard-coded credentials, such as a passwor...
NVD CVE-2026-5065 10d ago
MEDIUM
CVE-2026-4410 (CVSS 4.8) — IBM WebSphere Application Server - Liberty 19.0.0.7 through 26.0.0.5 and IBM WebSphere Application S...
NVD CVE-2026-4410 10d ago
HIGH
CVE-2026-3623 (CVSS 7.8) — IBM Netezza Performance Server Replication Services 3.0.2.0 through 3.0.5.0 allows an attacker with ...
NVD CVE-2026-3623 10d ago
HIGH
CVE-2026-3366 (CVSS 7.5) — IBM InfoSphere Optim Test Data Fabrication 1.0.0, 1.0.0.1, 1.0.0.2, 1.0.2, 1.0.2.2, 1.0.2.3, 1.0.2.4...
NVD CVE-2026-3366 10d ago
HIGH
CVE-2026-1933 (CVSS 7.1) — A flaw was found in Samba’s handling of NTFS-style reparse points on shares configured with read onl...
NVD CVE-2026-1933 10d ago
HIGH
CVE-2026-1718 (CVSS 7.1) — IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable to a denial of service with a...
NVD CVE-2026-1718 10d ago
MEDIUM
CVE-2025-3633 (CVSS 5.4) — IBM Cognos Analytics 11.2.0, 11.2.4, 12.0, and 12.1.0 and IBM Cognos Transformer 11.2.4, 12.0, and 1...
NVD CVE-2025-3633 10d ago
HIGH
CVE-2024-56462 (CVSS 7.2) — IBM QRadar 7.5.0 through 7.5.0 UP15 Interim Fix 002 could allow a privileged user to upload a malici...
NVD CVE-2024-56462 10d ago
MEDIUM
CVE-2024-40684 (CVSS 5.9) — IBM Operations Analytics - Log Analysis 1.3.5.0, 1.3.5.1, 1.3.5.2, 1.3.5.3, 1.3.6.0, 1.3.6.1, 1.3.7....
NVD CVE-2024-40684 10d ago
INFO
FBI’s 2025 Internet Crime Report
rss:schneier analysispolicy 10d ago
INFO
Can you enforce strong Active Directory password rules without frustrating users?
BleepingComputer breachesransomwaresupply-chain 10d ago
INFO
Glassworm botnet disrupted after resilient C2 infrastructure takedown
BleepingComputer breachesransomwaresupply-chain 10d ago
INFO
Dutch police arrest man over cyber breach at Ajax football club
The Record breachesransomwarenation-state 10d ago
INFO
Iranian intelligence service behind hack of LA transit system, researchers say
The Record breachesransomwarenation-state 10d ago
INFO
SecurityWeek to Host AI Risk Summit August 11-12 at the Ritz-Carlton, Half Moon Bay
SecurityWeek breachesransomwaresupply-chain 10d ago
INFO
Cybersecurity Evolution: How We Went From Perimeter Defense to AI-Native Security
rss:darkreading breachesmalwarethreat-actors 10d ago
INFO
CISA Adds Three Known Exploited Vulnerabilities to Catalog
rss:cisa-advisories actively-exploitedadvisories +1 10d ago
INFO
CISA Adds One Known Exploited Vulnerability to Catalog
rss:cisa-advisories 11d ago
HIGH
MiniPlasma Windows 0-Day Enables SYSTEM Privilege Escalation on Fully Patched Systems
The Hacker News supply-chainbreachesmalware +19 19d ago
INFO
'Dirty Frag' Exploit Poised to Blow Up on Enterprise Linux Distros
rss:darkreading 25d ago
INFO
It's Patch Tuesday for Microsoft & Not a Zero-Day In Sight
rss:darkreading 24d ago
INFO
Microsoft Patches 138 Vulnerabilities, Including DNS and Netlogon RCE Flaws
The Hacker News 24d ago
INFO
[Webinar] How Modern Attack Paths Cross Code, Pipelines, and Cloud
The Hacker News 24d ago
INFO
Four OpenClaw Flaws Enable Data Theft, Privilege Escalation, and Persistence
The Hacker News 22d ago
INFO
Can Laws Stop Deepfakes? South Korea Aims to Find Out
rss:darkreading 19d ago
INFO
Processes and Culture Top Reasons Behind Data Breaches
rss:darkreading 16d ago
INFO
When Identity is the Attack Path
The Hacker News 16d ago
INFO
CISA Adds Exploited Langflow and Trend Micro Apex One Vulnerabilities to KEV
The Hacker News 15d ago
INFO
Meta settles school district lawsuit claiming addictive design harmed students' mental health
The Record 14d ago
INFO
Claude Mythos AI Finds 10,000 High-Severity Flaws in Widely Used Software
The Hacker News 14d ago
INFO
⚡ Weekly Recap: Linux Flaws, Defender 0-Days, Router Botnets, and Supply Chain Chaos
The Hacker News 12d ago
INFO
CERT-In Mandates 12-Hour Patching for Internet-Facing Flaws Amid AI-Assisted Attacks
The Hacker News 11d ago
INFO
RevEng.AI Raises $15 Million to Hunt for Flaws and Backdoors in Software Binaries
SecurityWeek 10d ago
INFO
California Sues 23andMe, Alleging It Failed to Protect User Data in 2023 Breach
SecurityWeek 8d ago
INFO
California AG sues 23andMe over 2023 breach exposing health data
BleepingComputer 7d ago
INFO
Kirki, Burst Statistics WordPress Plugin Flaws in Attackers’ Crosshairs
SecurityWeek 3d ago
INFO
Chrome 149 Patches 429 Vulnerabilities
SecurityWeek 1d ago
INFO
EU unveils tech sovereignty package to cut reliance on US, Chinese suppliers
The Record 1d ago
CRITICAL NVD Wed, 27 May 2026 17:16:41 UTC
CVE-2026-48027 (CVSS 9.8) — Nx Console is the user interface for Nx & Lerna. On 19 May 2026, a malicious version of Nx Console, ...
https://nvd.nist.gov/vuln/detail/CVE-2026-48027
TL;DR
Nx Console is the user interface for Nx & Lerna. On 19 May 2026, a malicious version of Nx Console, 18.95.0, was published at 12:30 PM UTC and removed soon after at 12:48 PM UTC, leaving it available for ~18 minutes in Visual Studio Marketplace. For OpenVSX, the problem was detected later, and the compromised version was available from 12:33 UTC to 13:09 UTC (~36 minutes). Version 18.100.0 of Nx C…
CVE-2026-48027
Read full story ↗
Related coverage (1)
CVE-2026-48027: Nx Console Embedded Malicious Code Vulnerability (Nx Nx Console)
CISA KEV 10d ago