Hackers Exploit Critical Everest Forms Pro WordPress Plugin Flaw to Take Over Sites
Threat actors are actively exploiting a critical security flaw in Everest Forms Pro, a WordPress plugin with about 4,000 active installations, to execute arbitrary code,…
Weiterlesen →Cisco warns of unpatched SD-WAN zero-day exploited in attacks
On Thursday, Cisco warned of a high-severity, unpatched zero-day in the Cisco Catalyst SD-WAN Manager (tracked as CVE-2026-20245) actively exploited in attacks enabling root privilege escalation.…
Weiterlesen →Kritische Sicherheitslücke in Drupal Core – Updates verfügbar
20. Mai 2026 Beschreibung In Drupal Core existiert eine SQL-Injection-Schwachstelle in der Datenbank-Abstraktions-API. Speziell gestaltete Anfragen können zu beliebigen SQL-Injections führen. Die Schwachstelle ist ausschließlich…
Weiterlesen →DentaQuest data breach exposed info of 2.6 million accounts
A data breach at the dental benefits administrator DentaQuest has reportedly exposed the sensitive data of 2.6 million accounts. […]
Weiterlesen →Beyond the Zero-Day: See Your Network Like an Attacker | Webinar with HD Moore
Assume the breach. Zero-days keep shipping, AI is writing exploits faster than anyone patches, and „patch everything in time“ stopped working years ago. Stop betting…
Weiterlesen →VS Code zero-day lets hackers steal GitHub tokens in one click
A security researcher has released exploit code for a Visual Studio Code (VS Code) zero-day vulnerability that allows attackers to steal GitHub authentication tokens by…
Weiterlesen →Acer working to patch max severity zero-days in Wave 7 routers
Acer is working to address two maximum-severity zero-day vulnerabilities affecting its Wave 7 mesh routers. […]
Weiterlesen →Google June 2026 Android Update Patches 124 Flaws, One Actively Exploited
Google on Monday released patches for 124 security vulnerabilities impacting its Android operating system for the month of June 2026, including one high-severity flaw in…
Weiterlesen →AI-built ransomware toolkit automates EDR evasion, AD discovery
A threat actor is using an AI-built ransomware attack toolkit that automates Active Directory discovery and helps evade endpoint detection and response (EDR) solutions. […]
Weiterlesen →CISA flags two-year-old Oracle flaw as actively exploited in attacks
CISA has ordered government agencies to secure their systems against a high-severity Oracle WebLogic Server vulnerability that was patched two years ago and is now…
Weiterlesen →Microsoft Threatening Security Researcher
An anonymous security researcher called “Nightmare Eclipse” has been publishing a series of significant security exploits against Microsoft Windows—including one that breaks BitLocker. Microsoft has…
Weiterlesen →Google fixes one actively exploited Android zero-day, 124 flaws
Google has released the June 2026 Android security patches to address 124 vulnerabilities, including one zero-day flaw exploited in targeted attacks. […]
Weiterlesen →Microsoft’s Zero-Day Legal Threats Spark Backlash
After a disgruntled security researcher published several zero-day exploits in recent weeks, Microsoft seemingly indicated criminal charges were in order.
Weiterlesen →Codeausführung möglich: kritische Lücke in Windows Server wird aktiv ausgenutzt
Im großen Mai-Patchpaket war die Lücke in Windows Netlogon behoben worden, nun nutzen Angreifer sie aus. Admins sollten dringend patchen.
Weiterlesen →Critical WP Maps Pro Flaw Actively Exploited to Create Admin Accounts
Threat actors are attempting to actively exploit a critical security flaw impacting WP Maps Pro, a WordPress plugin that has had over 15,000 sales on…
Weiterlesen →Version 1.0: cPanel und WHM – Aktiv ausgenutzte Schwachstelle ermöglicht Umgehen der Authentifizierung
Weiterlesen →Charter Communications data breach affects 4.9 million accounts
The ShinyHunters extortion gang stole personal information from 4.9 million accounts after hacking the U.S. telecom giant Charter Communications in early April, according to data…
Weiterlesen →Sechs Zero-Days in sechs Wochen offengelegt: Microsoft reagiert mit Drohung
Microsoft hadert mit veröffentlichten Beweisen ungepatchter Sicherheitslücken. Der Konzern droht jetzt rechtliche Schritte an.
Weiterlesen →Microsoft Slams Public Zero-Day Disclosures Amid GitHub Researcher Account Removal
Microsoft has come out strongly in favor of Coordinated Vulnerability Disclosure (CVD), urging the research community to share their findings and give affected vendors an…
Weiterlesen →Critical Gogs RCE Vulnerability Lets Any Authenticated User Execute Arbitrary Code
A critical security vulnerability has been disclosed in Gogs, a popular open-source self-hosted Git service, that allows an authenticated user to execute arbitrary code under…
Weiterlesen →New Gogs zero-day flaw lets hackers get remote code execution
An unpatched zero-day vulnerability in the Gogs self-hosted Git service can allow attackers to gain remote code execution (RCE) on Internet-facing instances. […]
Weiterlesen →Carnival Cruise confirms data breach affecting nearly 6 million people
Carnival Corporation, the world’s largest cruise line operator, has confirmed a data breach affecting nearly 6 million people claimed by the ShinyHunters extortion gang in…
Weiterlesen →CISA gives feds 4 days to patch actively exploited cPanel plugin flaw
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has given U.S. federal agencies four days to secure their servers against a critical vulnerability in the…
Weiterlesen →Charter confirms data breach after ShinyHunters extortion threat
U.S. telecommunications giant Charter Communications has confirmed it suffered a data breach after the ShinyHunters extortion group threatened to leak stolen data unless a ransom…
Weiterlesen →KnowledgeDeliver flaw exploited as a zero-day to install web shells
Hackers exploited a critical zero-day vulnerability in a server running the KnowledgeDeliver learning management system (LMS) to deploy the Godzilla web shell. […]
Weiterlesen →Microsoft Patches SharePoint RCE Flaw CVE-2026-45659 Across Server Versions
Microsoft has rolled out updates to fix a remote code execution vulnerability impacting SharePoint that could be exploited by bad actors in attacks without requiring…
Weiterlesen →7-Eleven data breach exposes personal information of 185,000 people
The ShinyHunters extortion gang stole the personal information of over 183,000 people after hacking the systems of convenience store chain giant 7-Eleven in April, according…
Weiterlesen →CISA orders feds to patch actively exploited Drupal vulnerability
CISA has given U.S. government agencies until Wednesday evening to secure their servers against an SQL injection vulnerability in the Drupal content management system (CMS)…
Weiterlesen →KnowledgeDeliver LMS Flaw Exploited to Deploy Godzilla and Cobalt Strike
A now-patched high-severity security flaw affecting Digital Knowledge KnowledgeDeliver, a Learning Management System (LMS) popular in Japan, was exploited as a zero-day to deliver the…
Weiterlesen →Update #1: Schwerwiegende Sicherheitslücken in Cisco Adaptive Security Appliance – aktiv ausgenutzt – Updates verfügbar
26. September 2025 Beschreibung Cisco hat Informationen zu einer vermutlich bereits seit einigen Monaten laufenden Angriffskampagne veröffentlicht. Im Rahmen dieser Kampagne haben Angreifer:innen, denen bereits…
Weiterlesen →Drupal Core SQL Injection Bug Actively Exploited, Added to CISA KEV
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a recently patched critical security flaw impacting Drupal Core to its Known Exploited Vulnerabilities (KEV)…
Weiterlesen →First VPN Dismantled in Global Takedown Over Use by 25 Ransomware Groups
Authorities in Europe and North America have announced the dismantling of a criminal virtual private network (VPN) service used by criminal actors to obscure the…
Weiterlesen →Verizon DBIR: Healthcare Fends Off Increased Social Engineering Attacks
Ransomware and vendor breaches persist, but the 2026 Data Breach Investigations Report (DBIR) highlights how evolving social engineering tactics make the sector more vulnerable.
Weiterlesen →Trend Micro warns of Apex One zero-day exploited in the wild
Japanese cybersecurity software company Trend Micro has addressed an Apex One zero-day vulnerability exploited in attacks targeting Windows systems. […]
Weiterlesen →Over 900 US gas station tank gauge systems exposed to attacks
Over 900 automatic tank gauge (ATG) systems across the United States, used to monitor fuel and chemical storage tanks across various critical infrastructure sectors, have been…
Weiterlesen →Warten auf Sicherheitspatch: Zugangsdaten von Acer-Wave-7-Router einsehbar
Kritische Schwachstellen bedrohen Acer-Router der Wave-7-Serie. Sicherheitsupdates sind bislang nicht verfügbar.
Weiterlesen →Google Chrome: Update schließt 429 Sicherheitslücken
Das Google-Chrome-Update aus dieser Woche stopft 429 Sicherheitslücken, davon gelten 22 als kritisches Risiko.
Weiterlesen →4 Critical Threats Where Attackers Have the Advantage
Gartner analysts issued a call to action to bolster defenses against several emerging critical threats, such as deepfakes and prompt injections.
Weiterlesen →Cisco Patches CVE-2026-20230 in Unified CM as Exploit Code Goes Public
Cisco has patched a bug in Unified Communications Manager that lets an unauthenticated attacker on the network write files to the box and, from there,…
Weiterlesen →Hackers Are After the Gaps in Your Vulnerability Program: Here’s Their Playbook
Threat actors are actively teaching newcomers how to find, exploit, and profit from vulnerable systems. Flare explores what a popular underground hacking tutorial reveals about…
Weiterlesen →US-Unabhängigkeit: EU will Technologien „Made in Europe“ fördern
Verschärfte Auflagen für Cloud-Anbieter in kritischen Bereichen. Lob und Kritik aus der Technologiebranche
Weiterlesen →CISA Adds Exploited Magento RCE Flaw CVE-2026-45247 to KEV Catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a critical flaw impacting Mirasvit Cache Warmer, a popular Magento full-page cache extension, to…
Weiterlesen →Cisco warns of critical Unified CM flaw with PoC exploit code
Cisco has released security updates to patch a critical-severity Unified Communications Manager (Unified CM) flaw that allows attackers to gain root privileges. […]
Weiterlesen →Cisco stopft kritische Lücke in Unified CM und mehr
Cisco behandelt Sicherheitslücken in drei Produkten, darunter eine als kritisch eingestufte in Unified Communications Manager.
Weiterlesen →CISA warns of cyberattacks targeting fuel tank monitoring systems
CISA, the FBI, the NSA, the Department of Energy, and other US government partners are warning that hackers are targeting internet-exposed automatic tank gauge (ATG)…
Weiterlesen →What 345 Days of Untested Exposure Looks Like at a Bank
A two-week penetration test can leave roughly 345 days of real-world exposure unvalidated. Sprocket Security explores why continuous testing is becoming critical as attack surfaces…
Weiterlesen →CISA warns of active attacks exploiting Android, Linux bugs
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is warning that hackers are exploiting vulnerabilities in the Linux kernel and Android operating system. […]
Weiterlesen →New HTTP/2 Bomb Vulnerability Allows Remote DoS on NGINX, Apache, IIS, Envoy & Cloudflare
Cybersecurity researchers have discovered a remote denial-of-service exploit that affects major web servers, including NGINX, Apache HTTPD, Microsoft IIS, Envoy, and Cloudflare Pingora. The vulnerability…
Weiterlesen →Unpatched Windows Search URI Vulnerability Lets Attackers Steal NTLMv2 Hashes
Cybersecurity researchers have disclosed details of an unpatched issue that could be exploited to disclose a user’s NTLMv2 hash to the attacker. Like in the…
Weiterlesen →Burst Statistics: Angriffe auf kritische Lücke im populären WordPress-Plugin
Angreifer missbrauchen eine kritische Lücke im WordPress-Plugin Burst Statistics. Sie ermöglicht die Übernahme von Instanzen.
Weiterlesen →AI Worm
Researchers have prototyped an AI-powered internet worm. The coolest thing about the prototype is that it carries its own LLM with it, and runs it…
Weiterlesen →Trump AI Order Seeks Voluntary Frontier Model Testing
The White House’s executive order establishes voluntary framework for early government access to frontier models while investing in federal security.
Weiterlesen →Adaptive, Agentic AI Worms Loom as Next Enterprise Threat
AI worms, or "viruses with wings and brains," adapt to new environments, seek out vulnerabilities, and will likely strike within a year, researchers say.
Weiterlesen →The Evil MSI Background is Back!, (Fri, Jun 5th)
A few months ago, I wrote a diary about a payload that was embedded into a JPEG picture. It was a MSI-branded background[1]. Yesterday, I…
Weiterlesen →Only 10% of SOCs Say They’re Getting Excellent Value From AI. Here’s What the Second Wave Has to Deliver
Eighteen months ago, the AI SOC was a marketing line. Today it’s a budget item. The category has crossed over from interesting to inevitable, with…
Weiterlesen →New Threat Cluster OP-512 Targets Microsoft IIS Servers with Custom Web Shell Framework
Cybersecurity researchers have discovered a previously unreported threat cluster dubbed OP-512 (where „OP“ stands for „opponent“) that has been observed targeting Microsoft Internet Information Services (IIS)…
Weiterlesen →Android Spyware Asin Targets Arabic Users via Fake News, PDF and War Map Apps
Arabic-speaking users have emerged as the target of a new Android spyware codenamed Asin, according to findings from ESET. The Slovakian cybersecurity company said it…
Weiterlesen →What 2026 DBIR Confirms: Attacks Are Living in the Browser
Phishing, shadow AI, malicious extensions, and credential theft increasingly happen inside the browser. Keep Aware explains what the 2026 Verizon DBIR reveals about browser-layer security…
Weiterlesen →Dark web Nemesis Market vendor gets 26 years for selling drugs
A California man was sentenced to more than 26 years in federal prison for trafficking fentanyl and methamphetamine through Nemesis Market, one of the world’s…
Weiterlesen →Steam Machine und Steam Frame kommen im Sommer auf den Markt
Für Anfang 2026 angekündigt, musste der Verkaufsstart für den Gaming PC und die Gaming-Brille wegen des Mangels an Speicherchips verschoben werden
Weiterlesen →Künstliche Intelligenz: Wie ein Inhaltsverzeichnis zur Billionenwette wurde
Die Grundlagen für Internetsuche stecken auch in modernen KI-Agenten – von denen sich die IT-Branche massiven Aufschwung erhofft
Weiterlesen →Angriff auf GitHub.dev stiehlt das OAuth-Token für alle Repos
Eine Lücke auf Github.dev – VS Code im Browser – ermöglichte es Angreifern, alle Repos eines Anwenders zu verseuchen, um verschiedene Angriffe zu starten.
Weiterlesen →FIFA World Cup 2026 Scams Are Already Live: Fake Sites, Banking Malware, and Stolen Logins
Security researchers and the FBI are warning that a wave of FIFA-themed fraud is already hitting World Cup 2026 fans, days before the June 11…
Weiterlesen →Alleged Kimwolf Botmaster ‘Dort’ Arrested, Charged in U.S. and Canada
Canadian authorities on Wednesday arrested a 23-year-old Ottawa man on suspicion of building and operating Kimwolf, a fast spreading Internet-of-Things botnet that enslaved millions of…
Weiterlesen →„Wir haben geöffnet“: Milei will Argentinien zum Zentrum der KI-Branche machen
Künstliche Intelligenz soll weitgehend unreguliert bleiben, um Menschen von den Einschränkungen des eigenen Gehirns zu befreien
Weiterlesen →Microsoft Teams: Tracking von Arbeitszeit und Arbeitsort startet
Das Rollout des umstrittenen Updates soll bis Ende Juni abgeschlossen sein. Meta muss das Tracking der Mausbewegungen seiner Angestellten indessen zurückschrauben
Weiterlesen →Tails 7.8.1: Update des anonymisierenden Linux schließt Sicherheitslücken
Das zum anonymen Surfen im Netz dienende Tails-Linux schließt Sicherheitslücken im Kernel und dem Tor-Client.
Weiterlesen →Cisco warnt vor neuer attackierter SD-WAN-Sicherheitslücke
Erst vor Kurzem hatten bösartige Akteure Ciscos SD-WAN-Geräte im Visier. Aktuell greifen sie eine neue Lücke an, warnt Cisco.
Weiterlesen →ISC Stormcast For Friday, June 5th, 2026 https://isc.sans.edu/podcastdetail/9960, (Fri, Jun 5th)
Weiterlesen →PCPJack Hijacks 230 AWS, Google Cloud, and Azure Servers for Covert SMTP Relay Network
The threat actor known as PCPJack has hijacked cloud servers associated with Amazon Web Services (AWS), Google Cloud, and Microsoft Azure to create a covert…
Weiterlesen →KI: Anthropic warnt vor Kontrollverlust und fordert Pause
Angesichts rasanter Fortschritte in der KI-Entwicklung fordert das US-Unternehmen Anthropic neue Mechanismen, um Risiken besser kontrollieren zu können
Weiterlesen →Hass im Netz: Neos wollen Medienrecht bei Online-Kommentaren reformieren
Keine Bestrafung mehr für beleidigende Kommentare Dritter – Mehrere Vorschläge an Koalitionspartner
Weiterlesen →Der Wind dreht: Widerstand gegen KI wird sowohl breiter als auch radikaler
KI-Befürworter zielen auf eine kleine Menge an radikalen Widersachern der Technologie ab. Doch das gesamtgesellschaftliche Stimmungsbild kippt ebenfalls
Weiterlesen →Bugcrowd Launches EU Data Residency Option For Evolving Data Sovereignty Needs
Organizations are growing serious about what nation’s rules apply to their data. Experts point to geopolitical tensions as a main contributing factor.
Weiterlesen →China’s TA4922 Expands Cybercrime Attacks Globally
One of the world’s most diverse, least-focused cybercrime groups is enlarging its footprint beyond East Asia.
Weiterlesen →Rust-Written IronWorm Hits NPM Supply Chain
Like Shai-Hulud, the campaign targets developers to steal credentials and reuses them to propagate across the software supply channel.
Weiterlesen →Credit card theft campaign abuses Stripe to host stolen payment info
A new Magecart campaign is using Stripe’s API infrastructure to host the credit card-stealing payload and the data exfiltrated from checkout pages. […]
Weiterlesen →Hola Browser for Windows compromised to deliver cryptominer
The Windows version of the Hola Browser has been compromised in a supply chain attack that delivered an undeclared executable identified by researchers as a…
Weiterlesen →Brave Software releases Origin for a paid, bloat-free browsing experience
Brave has announced the public release of Brave Origin, a paid minimalist version of its browser that strips out cryptocurrency, AI, rewards, and other monetization-focused…
Weiterlesen →Google gibt Webseitenbetreibern Opt-Out-Möglichkeit für KI-Ergebnisse
Wer in AI Mode und AI Overviews nicht vorkommen will, kann das künftig deaktivieren. Britische Wettbewerbsbehörde machte erfolgreich Druck
Weiterlesen →China-Linked TA4922 Expands Phishing Attacks to U.K., Germany, Italy, and South Africa
A new China-linked cybercrime group known as TA4922 has expanded its targeting focus to target European organizations in the U.K., Germany, Italy, and South Africa.…
Weiterlesen →ThreatsDay Bulletin: AI Agents Gone Wrong, Sketchy C2 Tools, ClickFix Tricks, JS Backdoors & 20+ New Stories
It got stupid again. The internet still feels held together with tape. Bad plugins, old bugs, fake tools, trusted apps doing shady things. Same mess,…
Weiterlesen →Agentic AI Is Transforming Defense, But Only Secure IT Infrastructure Will Maximize It
Over the past several weeks, the cybersecurity community has been reminded how quickly frontier and agentic AI in defense networks can challenge our assumptions. When…
Weiterlesen →Claude Code GitHub Action Flaw Let One Malicious Issue Hijack Repositories
A security researcher found a flaw in Anthropic’s Claude Code GitHub Action that let an attacker take over vulnerable public repositories running it, with nothing…
Weiterlesen →Police dismantles fake ID marketplace used by migrant smugglers
French and Spanish authorities took down an online marketplace selling fake identity documents to migrant smuggling rings operating within the European Union. […]
Weiterlesen →Microsoft blames unexpected Windows driver updates on caching issue
On Wednesday, Microsoft fixed an issue that caused some Windows devices to install driver updates without notice despite policies configured to prevent auto-updates. […]
Weiterlesen →New IronWorm malware hits 36 packages in npm supply-chain attack
A new supply-chain attack has infected 36 packages on the Node Package Manager (npm) index with infostealer malware called IronWorm. […]
Weiterlesen →UN food agency discloses breach affecting 600,000 Gaza households
The United Nations‘ World Food Programme (WFP), the world’s largest humanitarian organization, revealed over the weekend that its self-registration application (SRA) for Palestine was breached.…
Weiterlesen →Kaffee, Roboter und ein Stück der „alten“ Computex
Die „Robotics & TechXperience“ zeigt, wie sich die Techmesse in Taipeh gewandelt hat
Weiterlesen →Post-Quantum ohne aufgeblähte Handshakes: Let’s Encrypts neuer Weg
Let’s Encrypt legt sich fest: Statt großer Post-Quantum-Signaturen sollen Merkle Tree Certificates das Web-PKI quantensicher machen. Tests beginnen Ende 2026.
Weiterlesen →Hacking Meta’s AI Chatbot
Hackers are convincing Meta’s AI support chatbot to let them take over other peoples’ accounts: A video posted on X showed the step-by-step process to…
Weiterlesen →Microsoft’s Coreutils for Windows, (Thu, Jun 4th)
I've been using the GnuWin32 CoreUtils for Windows for many years now (it gives you many *nix core commands on Windows).
Weiterlesen →DoJ Disrupts Southeast Asia Crypto Fraud Networks, Freezes $3.8 Million in Assets
The U.S. Department of Justice (DoJ) on Wednesday announced the results of a sweeping action undertaken by government authorities and private sector companies to combat…
Weiterlesen →Hackers Spied on a Stock Exchange Executive’s Outlook Mailbox for Five Months
Unknown attackers spent at least five months inside the Outlook mailbox of a senior executive at a major global stock exchange, copying the inbox out…
Weiterlesen →Fake Sites Mimicking Open-Source Tools Rank High on Google to Deliver Malware via TDS
Cybersecurity researchers have flagged a large-scale operation that impersonates open-source and freeware projects to funnel unsuspecting users through a Traffic Distribution System (TDS) and deliver…
Weiterlesen →Musks SpaceX macht Rekord-Börsenpläne offiziell
Mit einem Ausgabepreis von 135 Dollar strebt das verlustreiche Unternehmen aus dem Stand eine Gesamtbewertung von nahezu 1,8 Billionen Dollar an
Weiterlesen →Diese EU-Vorgaben müssen alle Neuwagen ab Juli 2026 erfüllen
Schon seit 2024 sind Alkolocks und Spurhalteassistenten in allen Neuwagen Pflicht. Nun werden die Vorgaben ausgeweitet
Weiterlesen →Microsoft hat eine neue Windows-Zielgruppe entdeckt: Entwickler
Der Konzern will sein Betriebssystem künftig stärker auch für alle attraktiv machen, die Software erstellen – insbesondere im KI-Bereich
Weiterlesen →Operation KRATOS 2: Europol meldet 29 Festnahmen gegen illegales Streaming
Bei der Operation KRATOS 2 hat Europol neun kriminelle Netzwerke zerschlagen, 29 Verdächtige festgenommen und über 27.000 illegale Streaming-Links entfernt.
Weiterlesen →Malware: KI erzeugt kaum aufhaltbaren Wurm
IT-Forscher haben getestet, ob KI Malware zur schlimmeren Bedrohung macht. Ein dabei entwickelter Wurm ist äußerst anpassungsfähig.
Weiterlesen →