DESTAQUES

Ameaças Cibernéticas

1220 notícias
Ameaças Cibernéticas The Hacker News 🇺🇸

Progress Kemp LoadMaster Flaw Could Let Attackers Run Root Commands Pre-Auth

A critical vulnerability in Progress Kemp LoadMaster can let an unauthenticated attacker execute arbitrary commands as root on the appliance by sending a crafted request to its API. The flaw, tracked as CVE-2026-8037, carries a CVSS score of 9.8 according to ZDI. A patch is avai…

Ameaças Cibernéticas The Hacker News 🇺🇸

Oracle E-Business Suite Flaw CVE-2026-46817 Actively Exploited in the Wild

A critical security flaw impacting Oracle E-Business Suite has come under active exploitation in the wild, according to Defused Cyber. The vulnerability, tracked as CVE-2026-46817 (CVSS score: 9.8), refers to an improper privilege management and authentication flaw in Oracle Pay…

Ameaças Cibernéticas Dark Reading 🇺🇸

'Djinn' Stealer Targets Cloud, AI Credentials

The infostealer was delivered via CVE-2026-48558, a critical authentication bypass vulnerability in SimpleHelp, targeting credentials linking development and admin environments to wider enterprise systems.

Ameaças Cibernéticas Bleeping Computer 🇺🇸

NAIC says public data stolen in ShinyHunters' PeopleSoft breach

The National Association of Insurance Commissioners (NAIC) says the ShinyHunters extortion group stole only publicly available data, outdated logs, and configuration files after breaching its systems by exploiting a zero-day vulnerability in an Oracle PeopleSoft server. [...]

Ameaças Cibernéticas HIPAA Guide 🇺🇸

Hackers Target Remote Desktop Tools for Access to Healthcare Networks

The healthcare industry continues as the most attacked sector, and while cyberattacks have declined year over year, healthcare has seen the smallest decline out of all verticals, according to a new report from the cybersecurity firm SonicWall. According to its intrusion protectio…

Ameaças Cibernéticas Bleeping Computer 🇺🇸

Critical SimpleHelp flaw exploited to deploy new stealer malware

Hackers are exploiting a recently disclosed critical vulnerability (CVE-2026-48558) in SimpleHelp to deploy Djinn Stealer, a previously undocumented cross-platform information stealer targeting Windows, macOS, and Linux. [...]

Ameaças Cibernéticas Bleeping Computer 🇺🇸

Webinar: Why business email compromise attacks keep succeeding

Business email compromise attacks increasingly rely on convincing impersonation rather than malware, making them harder for employees and traditional email defenses to detect. This webinar explores how behavioral AI can help identify sophisticated email threats and automate respo…

Link copiado!