Ward: Vulnerabilities

Happy 20% Chaos 60% Sad 30% Well 10% Anger 50% Fear 70% Surprise 40%

111

Google June 2026 Android Update Patches 124 Flaws, One Actively Exploited

Google on Monday released patches for 124 security vulnerabilities impacting its Android operating system for the month of June 2026, including one high-severity flaw in the Framework component that has come under active exploitation.

Tracked as CVE-2025-48595 (CVSS score: 8.4), the security flaw h…

Happy 30% Chaos 85% Sad 10% Well 10% Anger 70% Fear 90% Surprise 50%

111

Oracle WebLogic CVE-2024-21182 Added to KEV Catalog After Active Exploitation

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a high-severity security flaw impacting Oracle WebLogic Server to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.

The vulnerability, CVE-2024-21182 (CVSS score: 7.5), allows…

Happy 30% Chaos 70% Sad 50% Well 20% Anger 60% Fear 80% Surprise 40%

111

AI-Driven Exploitation is Destroying Vulnerability Management. Here’s How to Handle It.

AI-driven exploitation timelines are rapidly shrinking, and they are not going to stop shrinking. Vulnerabilities are being discovered, reproduced, and weaponized faster than ever in the history of enterprise security. As a result, the window between a vulnerability being disclosed and indiscriminat…

Happy 20% Chaos 80% Sad 30% Well 10% Anger 60% Fear 70% Surprise 40%

111

Hackers Used Meta’s AI Support Bot to Seize Instagram Accounts

The Instagram accounts for the Obama White House and the Chief Master Sergeant of the U.S. Space Force were briefly defaced with pro-Iranian images and messages over the weekend, after instructions began circulating on Telegram showing how to trick Meta's "AI support assistant" bot into resetting ac…

Happy 20% Chaos 80% Sad 10% Well 5% Anger 70% Fear 90% Surprise 30%

111

Critical WP Maps Pro Flaw Actively Exploited to Create Admin Accounts

Threat actors are attempting to actively exploit a critical security flaw impacting WP Maps Pro, a WordPress plugin that has had over 15,000 sales on the Envato Market, to create malicious administrator accounts on susceptible sites.

WP Maps Pro allows site owners to embed customizable Google Maps …

Happy 20% Chaos 80% Sad 40% Well 10% Anger 70% Fear 80% Surprise 60%

111

Miasma Supply Chain Attack Compromises Red Hat npm Packages with Credential-Stealing Worm

A new Mini Shai-Hulud supply chain attack campaign, codenamed Miasma, has compromised @redhat-cloud-services packages to steal credentials and secrets from developer machines and deliver a self-propagating worm.

"This is effectively a Mini Shai-Hulud campaign: it uses the same core tactics of insta…

Happy 20% Chaos 80% Sad 30% Well 10% Anger 70% Fear 90% Surprise 60%

111

China-Aligned Groups Ramp Up Attacks: Dragon Weave Hits Czech Republic & Taiwan

A new cyber espionage campaign codenamed Operation Dragon Weave has been observed targeting officials and citizens in the Czech Republic and Taiwan to deliver an AdaptixC2 agent.

According to Seqrite Labs, targets of the campaign include government, research, academic, technology, and financial ser…

Happy 30% Chaos 80% Sad 10% Well 20% Anger 90% Fear 85% Surprise 70%

1

Critical WP Maps Pro Flaw Actively Exploited to Create Admin Accounts

Threat actors are attempting to actively exploit a critical security flaw impacting WP Maps Pro, a WordPress plugin that has had over 15,000 sales on the Envato Market, to create malicious administrator accounts on susceptible sites.

WP Maps Pro allows site owners to embed customizable Google Maps …

Happy 30% Chaos 80% Sad 20% Well 50% Anger 70% Fear 60% Surprise 50%

0

Hackers Used Meta’s AI Support Bot to Seize Instagram Accounts

The Instagram accounts for the Obama White House and the Chief Master Sergeant of the U.S. Space Force were briefly defaced with pro-Iranian images and messages over the weekend, after instructions began circulating on Telegram showing how to trick Meta's "AI support assistant" bot into resetting ac…