Cyber Security
“`html Splunk Enterprise for Windows Vulnerability Splunk has revealed a critical vulnerability in Splunk Enterprise for Windows enabling a low-privileged local user to elevate their permissions to SYSTEM level via a DLL search-path hijacking assault. Identified...
Cyber Security
“`html OpenAI EVMbench In partnership with the cryptocurrency investment firm Paradigm, OpenAI has unveiled EVMbench, a novel benchmark intended to assess the capacity of AI agents to identify, remediate, and exploit critical vulnerabilities in smart contracts....
Cyber Security
“`html Cybercriminals have initiated a refined spam initiative by utilizing the reliable infrastructure provided by Atlassian Cloud. By exploiting genuine features within the platform, assailants efficiently circumvent conventional email security measures to...
Cyber Security
“`html Password Managers Vulnerability Experts from ETH Zurich have discovered 25 critical vulnerabilities in three prominent cloud-based password management tools: Bitwarden, LastPass, and Dashlane. These weaknesses permit a malevolent server to circumvent the...
Cyber Security
“`html Chrome 0-Day Vulnerability Exploited Google has swiftly addressed a critical zero-day vulnerability in Chrome, acknowledging ongoing exploitation in real-world scenarios. Labeled as CVE-2026-2441, the defect is a use-after-free issue in the browser’s CSS...
Cyber Security
“`html PentestAgent PentestAgent, a free-source AI agent framework created by developer Masic (GH05TCREW), has unveiled enhanced functionalities, incorporating preconfigured attack playbooks and seamless integration with HexStrike. Released on GitHub by a...
Cyber Security
“`html CISA Warns Microsoft Configuration Manager SQL Injection Vulnerability CISA has released a crucial warning regarding a significant SQL injection vulnerability in Microsoft Configuration Manager (SCCM). Identified as CVE-2024-43468, this vulnerability...
Cyber Security
“`html Notepad++ Code Execution Vulnerability CISA has included CVE-2025-15556 in its Known Exploited Vulnerabilities (KEV) catalog, emphasizing the ongoing exploitation of a significant code execution vulnerability in Notepad++, a commonly utilized open-source...
Cyber Security
“`html Russia Blocked WhatsApp WhatsApp has charged the Russian administration with trying to impose a nationwide prohibition on its messaging platform, aiming to coerce over 100 million users into adopting an alternative supported by the Kremlin, fraught with...
Cyber Security
“`html Windows Remote Desktop Services 0-Day Vulnerability Microsoft has rectified CVE-2026-21533, a zero-day privilege elevation flaw in Windows Remote Desktop Services (RDS) that malicious actors are utilizing in the wild to acquire SYSTEM-level entry. This...
