Browsing Category
Marketplace News
93 posts
WinRAR Patches Critical Flaw Enabling Remote Code Execution
CVE-2026-14191 hits RAR5 recovery-volume handling; no auto-update means the fix is on users to install.
Wiz: Autonomous AI Agent Breaches Airline Booking Database in 15 Minutes
A fully autonomous AI agent exploited a major airline's BOLA flaw, exposing sensitive passenger data rapidly. The incident highlights ongoing vulnerabilities in API security and automation's dual-use implications.
Adobe Patches 11 ColdFusion, Campaign Classic Flaws: Four Hit Max Severity
Adobe has patched 11 vulnerabilities in ColdFusion and Campaign Classic, including six critical flaws in ColdFusion that allow remote code execution. No active exploitation is reported. Users should update affected versions promptly.
World Cup-Themed Scams Fuel Fake Samsung, Nike and Adidas Shops Across Europe
Bitdefender Labs says more than 55 fake-shop campaigns hit consumers in 12 European countries, blending Facebook ads, WhatsApp, fake checkout pages and FIFA merchandise lures into a broader fraud funnel.
Smart TV Apps on LG and Samsung Are Running Residential Proxy Software
A scan of more than 6,000 LG and Samsung apps found roughly one-third contain SDK code that routes outside internet traffic through the viewer's home connection—without meaningful consumer awareness.
Cisco Warns: AI Turns Wi-Fi Capacity Into an Enterprise Risk
The company argues enterprise networks cannot meet AI demand without more unlicensed capacity.
Disabled Accounts Still Leave Tokens Behind
Offboarding often closes the login door while leaving OAuth grants, API keys, cached sessions and delegated access alive.
Mexican Banks Hit by GitHub-themed Phishing That Hijacks Customer Accounts
A modular operation abuses GitHub Pages and a spreadsheet API to harvest banking credentials across multiple Mexican brands.
BabaDeda Loader Resurfaces in ClickFix Campaign Abusing Software Updaters
The updated loader uses fake user fixes, PowerShell, in-memory shellcode and DLL sideloading to deliver stealers and remote-access malware.
Google Patches Five Critical Chrome Webrowser Bugs
The browser's latest Stable update closes 28 security holes. Four of the five Critical flaws need an attacker to already be inside Chrome; one does not.