CVE-2026-32210 Microsoft Dynamics 365 (online) Spoofing Vulnerability
Server-side request forgery (ssrf) in Microsoft Dynamics 365 (Online) allows an unauthorized attacker to perform spoofing over a network. - Read more
AI is Changing Vulnerability Discovery and your Software Supply Chain Strategy has to Change...
Wade Woolwine is Senior Director, Product Security at Rapid7.The headlines around Glasswing have focused on how quickly AI can surface vulnerabilities, which has naturally...
Yuma AI – Unauthenticated personal data and order information disclosure
Yuma AI - Unauthenticated personal data and order information disclosure A vulnerability was identified in Yuma AI Chat AI (a chatbot), a SaaS solution...
Hangzhou Xiongmai Technology Co., Ltd XM530 IP Camera
View CSAF
Summary
Successful exploitation of this vulnerability could allow an attacker to bypass authentication and have remote access to sensitive information on the device.
The following...
FIRESTARTER Backdoor
Malware Analysis Report at a Glance
Malware Name
FIRESTARTER
Original Publication
April 23, 2026
Executive Summary
The Cybersecurity and Infrastructure Security Agency (CISA) analyzed a sample of FIRESTARTER malware obtained...
Carlson Software VASCO-B GNSS Receiver
View CSAF
Summary
Successful exploitation of this vulnerability could enable a remote attacker to alter critical system functions or disrupt device operation.
The following versions of Carlson...
Medical data of half a million Britons on sale in China after Biobank breach
Biobank operator is taking steps to improve security after biological, health and lifestyle information from its database was offered for sale on a Chinese...
Critical minerals and cyber operations
Summary Critical elements and rare earth elements REEs are no longer commodities; they are strategic dependencies. Chinaʼs dominance in processing and refining provides...
Today, trust is the superpower that makes innovation possible
The paradoxes of today’s digital world are well-known to anyone with a smartphone. Over the last decade, connectivity has expanded, yet the world...
Microsoft Patch Still Leaves 1,300 SharePoint Servers Exposed
More than 1,300 internet-exposed SharePoint servers remain unpatched against CVE-2026-32201, a spoofing flaw Microsoft says was exploited as a zero-day.
The post Microsoft Patch Still...
Latest article
Criminal IP at Infosecurity Europe 2026: Introducing AITEM, the Next Chapter of Attack Surface...
Torrance, United States / California, June 11th, 2026, CyberNewswire Criminal IP by AI SPERA, a cyber threat intelligence platform delivering decision-ready intelligence and attack...
Readers reply: Experts say we should use passkeys, but can a smartphone pin really...
The long-running series in which readers answer other readers’ questions on subjects ranging from trivial flights of fancy to profound scientific and philosophical conceptsThis...
CVE-2023-5678 Excessive time spent in DH check / generation with large Q parameter value
Information published. - Read more
Weekly Metasploit Update: New Kerberos/Certificate tracing options, and multiple new modules
New Tracing OptionsAs hard as we try to ensure that Metasploit is bug free, issues inevitably come up. Whether you’re running a module on...
