Google Releases Chrome 150 Update to Fix 27 Vulnerabilities, Including Critical Flaws

378/69 Friday, July 10, 2026 Google has released a security update for Chrome 150 to address 27 vulnerabilities, including two Critical-severity flaws. The two Critical vulnerabilities are CVE-2026-15112, a Use-after-free vulnerability in the Ozone component, and CVE-2026-15129, a Use-after-free vulnerability in the Views component. Both vulnerabilities were discovered by Google’s internal team. Reports indicate that […]

chanapon

July 10, 2026

Mount Royal University Confirms Data Breach After Hackers Claim Attack and Demand Ransom

377/69 Friday, July 10, 2026 Mount Royal University (MRU), a public university in Calgary, Canada, has disclosed a cyberattack that occurred on June 17, 2026, affecting several university systems, including online services, internet access, and some internal systems. The university stated that it engaged external technical teams and cybersecurity experts to assist with the investigation […]

chanapon

July 10, 2026

Lone Hacker Uses AI to Successfully Breach AWS Cloud Environment Within 72 Hours

376/69 Friday, July 10, 2026 Reports have revealed a case in which a lone cyber attacker used artificial intelligence (AI) to successfully compromise the Amazon Web Services (AWS) cloud environment of a global organization, leading to an extortion attempt. This incident is significant because the attacker was able to breach the system and expand the […]

chanapon

July 10, 2026

CISA Adds Four Actively Exploited Vulnerabilities in Adobe ColdFusion, Joomla, and Langflow to KEV Catalog

375/69 Thursday, July 9, 2026 CISA has added four vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog after finding evidence that they have been actively exploited in attacks. The newly added vulnerabilities include CVE-2026-48282 in Adobe ColdFusion, CVE-2026-56290 in Joomlack Page Builder, CVE-2026-48908 in JoomShaper SP Page Builder, and CVE-2026-55255 in Langflow. Most of these […]

chanapon

July 9, 2026

KDDI Discloses Data Breach Affecting More Than 12 Million People After ISP Email Platform Attack

374/69 Thursday, July 9, 2026 KDDI, a telecommunications company in Japan, has disclosed a data breach after attackers gained access to an email platform used by five internet service providers (ISPs) in Japan, potentially exposing a large number of users’ email addresses and passwords. KDDI is Japan’s second-largest mobile telecommunications provider, with approximately 45,000 employees […]

chanapon

July 9, 2026

Warning: UAT-7810 Hackers Use LONGLEASH Malware to Target Routers and Build a Stealth Relay Network

373/69 Thursday, July 9, 2026 Security researchers have identified activity linked to a cyber threat group known as UAT-7810, which is developing a new malware toolkit to expand the capabilities of its Operational Relay Box (ORB) network. The group targets internet-connected network devices, especially unpatched Ruckus and ASUS routers. This type of network is used […]

chanapon

July 9, 2026

BeyondTrust Warns of Critical Vulnerabilities in RS and PRA That Could Allow Authentication Bypass

372/69 Wednesday, July 8, 2026 BeyondTrust has warned administrators to urgently update its Remote Support (RS) and Privileged Remote Access (PRA) products after multiple Critical vulnerabilities were discovered that could allow unauthenticated attackers to bypass authentication and access affected appliances. The key vulnerabilities are CVE-2026-40138 and CVE-2026-40139, both of which are related to flaws in […]

chanapon

July 8, 2026

Backdoor Vulnerability in Tenda Routers Allows Attackers to Bypass Login and Gain Administrator Privileges, With No Patch Available

371/69 Wednesday, July 8, 2026 CERT/CC has issued an advisory for CVE-2026-11405, an authentication vulnerability affecting the firmware of several Tenda router models. The vulnerability allows attackers who know a specific password to bypass login and access the device’s web management interface with administrator privileges without using valid credentials. This is possible even if the […]

chanapon

July 8, 2026

Threat Actors Probe Critical Gitea Docker Vulnerability Just 13 Days After Disclosure

370/69 Wednesday, July 8, 2026 Reports indicate that threat actors have begun scanning systems to identify and attempt exploitation of a Critical security vulnerability, tracked as CVE-2026-20896, in Gitea Docker images just 13 days after the flaw was publicly disclosed. The vulnerability has a CVSS score of 9.8 and directly affects organizations and developers using […]

chanapon

July 8, 2026

Adobe Urges ColdFusion Users to Update After Critical Vulnerability Confirmed as Actively Exploited

369/69 Tuesday, July 7, 2026 Security researchers have disclosed that attackers are actively exploiting a Critical vulnerability, tracked as CVE-2026-58034, in Adobe ColdFusion to target unpatched servers. Adobe has raised the vulnerability to Priority 1 and confirmed that it has been exploited in attacks. The vulnerability has a CVSS score of 10.0 and could allow […]

chanapon

July 7, 2026
1 2 6