OSINT & geopolitical
60 alerts in this category.
Open-source intelligence on threats outside the CVE ecosystem — geopolitical events, cyber-physical incidents, sanctions, and infrastructure attacks. Curated for security teams that need situational awareness alongside their patch queue.
CVE-2026-12445 Use after free in Extensions
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2025) f
MicrosoftCVE-2026-12445CVE-2026-12456 Insufficient validation of untrusted input in Extensions
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2025) f
MicrosoftCVE-2026-12456CVE-2026-12467 Use after free in Extensions
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2025) f
MicrosoftCVE-2026-12467CVE-2026-12457 Insufficient data validation in Extensions
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2025) f
MicrosoftCVE-2026-12457CryptoBandits Malware Doubles as a Backdoor, Abuses Tor
CryptoBandits uses a local SOCKS5 proxy for traffic routing, blending data theft with remote code execution. The post CryptoBandits Malware Doubles as a Backdoor, Abuses Tor appeared first on Security
Anthropic’s Fable and the State of AI
On June 9th, Anthropic released its Fable generative AI model. Three days later, the US government classified it as a dangerous munition, and used its export-control authority to prohibit any foreign
CISA Warns Fortinet Customers as FortiBleed Hits 86,644 FortiGate Devices
The Hacker News published an news on "CISA Warns Fortinet Customers as FortiBleed Hits 86,644 FortiGate Devices". Topic areas: zero-day, malware, ransomware, data-breach. Published June 19, 2026. See
FortinetThe Hacker News Recognizes ANY.RUN as the Best Security Investigation Platform 2026
ANY.RUN has been recognized as the Best Security Investigation Platform 2026 at the Cybersecurity Stars Awards by The Hacker News. This award reflects our dedication to building solutions that make a
LinuxCVE-2026-44967 opentelemetry-cpp: OTLP HTTP exporters read unbounded HTTP response
Microsoft Security Response Center published an advisory on "CVE-2026-44967 opentelemetry-cpp: OTLP HTTP exporters read unbounded HTTP response". Topic areas: microsoft, windows, azure, patch. Publish
CVE-2026-44967CISA warns Fortinet users to secure devices after FortiBleed leak
BleepingComputer published an news on "CISA warns Fortinet users to secure devices after FortiBleed leak". Topic areas: ransomware, malware, data-breach, zero-day. Published June 19, 2026. See the ori
FortinetIssue with containerd CRI Plugin - CVE-2026-50195, CVE-2026-53488, CVE-2026-53492, CVE-2026-53489, CVE-2026-47262
Bulletin ID: 2026-046-AWS Scope: AWS Content Type: Important (requires attention) Publication Date: 06/18/2026 17:30 PM PDT Description: containerd is an open-source container runtime used by Kubernet
LinuxCVE-2026-50195Gentlemen ransomware uses multiple EDR killers to disable defenses
BleepingComputer published an news on "Gentlemen ransomware uses multiple EDR killers to disable defenses". Topic areas: ransomware, malware, data-breach, zero-day. Published June 18, 2026. See the or
CISA Urges Hardening Fortinet Devices After Reports of Credential Exposure
CISA is aware of global reports that malicious cyber actors have targeted internet-accessible Fortinet devices across government and private sector organizations using compromised credentials. This ac
FortinetMalwarebytes Labs Advisory — Jun 18, 2026
Malwarebytes Labs published an research on "Malwarebytes Labs Advisory — Jun 18, 2026". Topic areas: ransomware, malware, phishing, data-breach. Published June 18, 2026. See the original source linked
MicrosoftCVE-2026-50656USN-8447-2: LXD vulnerabilities
USN-8447-1 fixed vulnerabilities in Go Cryptography. This update provides the corresponding updates for Go Cryptography code embedded in LXD for CVE-2026-39830, CVE-2026-39833, CVE-2026-39834, and CVE
UbuntuCVE-2026-39830Beta Channel Update for ChromeOS / ChromeOS Flex
Google Chrome Releases published an advisory on "Beta Channel Update for ChromeOS / ChromeOS Flex". Topic areas: google, chrome, browser, patch. Published June 18, 2026. See the original source linked
GoogleVU#457458: Vendor-signed UEFI applications found vulnerable to Secure Boot bypass
Overview Multiple vendor-signed UEFI applications are vulnerable to Secure Boot bypass via a "Bring Your Own Vulnerable Driver" (BYOVD)-style attack. If a target system trusts the affected vendor’s ce
MicrosoftCVE-2024-7344USN-8451-1: Vim vulnerabilities
Srinivas Piskala Ganesh Babu discovered that Vim incorrectly handled directory names when serializing browsed paths to the netrw history file. An attacker could possibly use this issue to execute arbi
CVE-2026-47162CISA Adds One Known Exploited Vulnerability to Catalog
CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-20253 Splunk Enterprise Missing Authentication for Critica
CVE-2026-20253USB worm spreads crypto-stealing malware via Windows shortcut files
BleepingComputer published an news on "USB worm spreads crypto-stealing malware via Windows shortcut files". Topic areas: ransomware, malware, data-breach, zero-day. Published June 18, 2026. See the o
Mitsubishi Electric Co.'s MELSEC iQ-F Series FX5-ENET/IP Ethernet Module
View CSAF Summary Successful exploitation of this vulnerability could allow a remote attacker to cause a denial-of-service (DoS) condition in the affected product by continuously sending a large numbe
CVE-2026-8806AVer PTC cameras
View CSAF Summary Successful exploitation of this vulnerability could allow arbitrary code execution. The following versions of AVer PTC cameras are affected: PTC500S vers:all/* (CVE-2026-40624) PTC11
CVE-2026-40624Rockwell Automation FactoryTalk Historian Site Edition
View CSAF Summary Successful exploitation of these vulnerabilities could allow an attacker to obtain a valid authentication token, perform a denial of service, or crash the system. The following versi
CVE-2025-13036Schneider Electric EasyLogic T150 and Saitel DP
View CSAF Summary Successful exploitation this vulnerability could allow an attacker to gain unauthorized access to sensitive files The following versions of Schneider Electric EasyLogic T150 and Sait
CVE-2026-6865Apollo Pharmacy Blood Glucose Monitoring System APG-01 BT
View CSAF Summary Successful exploitation of these vulnerabilities could allow an attacker to obtain sensitive health-related information and prevent legitimate users from establishing a connection wi
CVE-2026-50034AzeoTech DAQFactory
View CSAF Summary Successful exploitation of this vulnerability could allow an attacker to upload malicious .ctl files that may lead to arbitrary code execution. The following versions of AzeoTech DAQ
CVE-2026-12390Mitsubishi Electric MELSEC iQ-F Series
View CSAF Summary Successful exploitation of this vulnerability could allow a remote attacker to cause a denial-of-service (DoS) condition in the affected product by rapidly establishing a large numbe
CVE-2026-8805Schneider Electric Easergy, EcoStruxture, PowerLogic, and Saitel Products
View CSAF Summary Schneider Electric is aware of vulnerabilities in its PowerChute™ Serial Shutdown product. The [PowerChute Serial Shutdown](https://www.se.com/ww/en/product-range/137943580-powerchut
IntelCVE-2026-4827INC Ransomware Emerges as Major RaaS Threat in 2026 with 830+ Victims Since 2023
The Hacker News published an news on "INC Ransomware Emerges as Major RaaS Threat in 2026 with 830+ Victims Since 2023". Topic areas: zero-day, malware, ransomware, data-breach. Published June 18, 202
Microsoft Details Windows Clipper Malware Campaign Using USB LNK Worm and Tor-Based C2
The Hacker News published an news on "Microsoft Details Windows Clipper Malware Campaign Using USB LNK Worm and Tor-Based C2". Topic areas: zero-day, malware, ransomware, data-breach. Published June 1
MicrosoftDream Raises $260 Million at $3 Billion Valuation
The Israeli startup provides sovereign AI and cyber defenses for governments and critical infrastructure. The post Dream Raises $260 Million at $3 Billion Valuation appeared first on SecurityWeek. ]]>
SailPoint to Acquire Entro in Reported $200 Million Deal
Israel-based Entro specializes in non-human identity and credential security solutions, and it will enable SailPoint to enhance its products. The post SailPoint to Acquire Entro in Reported $200 Milli
Rokarolla Banking Trojan Targets 200 Applications
The Android malware allows its operators to take control of infected devices and harvest sensitive information. The post Rokarolla Banking Trojan Targets 200 Applications appeared first on SecurityWee
Embedding Forbidden Text in Spyware to Discourage AI Analysis
At least one malware developer is adding text about nuclear and biological weapons to their spyware, in an effort to stop automatic AI analysis. Details: The _index.js payload begins with a large Java
SANS Internet Storm Center Advisory — Jun 18, 2026
[This is a Guest Diary by Adam Nason, an ISC intern as part of the SANS.edu BACS program] ]]>
MicrosoftStable Channel Update for ChromeOS / ChromeOS Flex
Google Chrome Releases published an advisory on "Stable Channel Update for ChromeOS / ChromeOS Flex". Topic areas: google, chrome, browser, patch. Published June 17, 2026. See the original source link
GoogleCVE-2026-12530 - Improper neutralization of argument delimiters in AWS Bedrock AgentCore Python SDK install_packages()
Bulletin ID: 2026-044-AWS Scope: AWS Content Type: Important (requires attention) Publication Date: 06/17/2026 14:15 PM PDT Description: The AWS Bedrock AgentCore Python SDK (bedrock-agentcore) is an
AWSCVE-2026-12530SANS Internet Storm Center Advisory — Jun 17, 2026
[This is a guest diary submitted by Varun Murdula] ]]>
GoogleVU#380058: SignalRGB kernel driver contains improper access control and IOCTL vulnerabilities
Overview The SignalRGB kernel driver, SignalIo.sys, contains two vulnerabilities involving improper access control and unsafe memory handling. The device object is created with an overly permissive Di
MicrosoftCVE-2026-8049USN-8440-1: Linux kernel (Azure) vulnerabilities
Josh Eads, Kristoffer Janke, Eduardo Vela Nava, Tavis Ormandy, and Matteo Rizzo discovered that some AMD Zen processors did not properly verify the signature of CPU microcode. This flaw is known as En
VMwareCVE-2024-36347Cisco Identity Services Engine Remote Code Execution and Information Disclosure Vulnerabilities
Multiple vulnerabilities in Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) could allow a remote attacker to achieve remote code execution or conduct informatio
CiscoCVE-2026-20181Cisco Crosswork Network Controller Server-Side Template Injection Vulnerability
A vulnerability in the web-based management interface of Cisco Crosswork Network Controller could allow an authenticated, remote attacker to execute arbitrary commands on an affected device. This vuln
CiscoCVE-2026-20220Cisco Webex App Open Redirect Vulnerability
A vulnerability in the browser-based version of Cisco Webex App could have allowed an unauthenticated, remote attacker to redirect users to a malicious webpage. Cisco has addressed this vulnerability
CiscoCVE-2026-20178Cisco Umbrella Virtual Appliance Privilege Escalation Vulnerability
A vulnerability in the vmadmin CLI of Cisco Umbrella Virtual Appliance could allow an authenticated, local attacker to elevate privileges on an affected device. This vulnerability is due to insufficie
CiscoCVE-2026-20246AI Use by the US Government
On 14 April, the Trump administration quietly acknowledged the widespread use of AI to automate government processes. The office of management and budget (OMB) disclosed a staggering 3,611 active or p
Faster Triage, Clearer Evidence, Lower Risk: A SOC Guide to Better Alert Handling
A SOC is where every second counts. Amidst a flood of alerts, false positives, and ever-short time, analysts face the daily challenge of identifying what truly matters — before attackers gain ground.
Intel1Password Acquires Apono in Reported $250M-$300M Deal
Apono specializes in just-in-time access governance technology for humans, machines, and AI agents. The post 1Password Acquires Apono in Reported $250M-$300M Deal appeared first on SecurityWeek. ]]>
Microsoft Teams Relay Servers Abused in DragonForce Ransomware Attack
The attackers deployed a new Go-based backdoor that uses Microsoft Teams servers for command-and-control. The post Microsoft Teams Relay Servers Abused in DragonForce Ransomware Attack appeared first
MicrosoftRockwell Automation Patches Vulnerabilities in ICS Controllers and Software
The industrial automation giant has fixed security holes in Logix, CompactLogix, Flex, RSLinx, and FactoryTalk products. The post Rockwell Automation Patches Vulnerabilities in ICS Controllers and Sof
Malicious JetBrains Plugins Steal AI API Keys as Chrome Extensions Capture Chatbot Chats
The Hacker News published an news on "Malicious JetBrains Plugins Steal AI API Keys as Chrome Extensions Capture Chatbot Chats". Topic areas: zero-day, malware, ransomware, data-breach. Published June
ChromeCISA Warns of Actively Exploited Joomla JCE Flaw Allowing PHP Code Execution
The Hacker News published an news on "CISA Warns of Actively Exploited Joomla JCE Flaw Allowing PHP Code Execution". Topic areas: zero-day, malware, ransomware, data-breach. Published June 17, 2026. S
Stable Channel Update for Desktop
Google Chrome Releases published an advisory on "Stable Channel Update for Desktop". Topic areas: google, chrome, browser, patch. Published June 16, 2026. See the original source linked under Referenc
GoogleCVE-2026-12437New Rokarolla Android malware targets 217 banking, crypto apps
BleepingComputer published an news on "New Rokarolla Android malware targets 217 banking, crypto apps". Topic areas: ransomware, malware, data-breach, zero-day. Published June 16, 2026. See the origin
CISA Adds One Known Exploited Vulnerability to Catalog
CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-48907 Widget Factory Joomla Content Editor Improper Access
CVE-2026-48907Steam Workshop abused to spread malware via Wallpaper Engine app
BleepingComputer published an news on "Steam Workshop abused to spread malware via Wallpaper Engine app". Topic areas: ransomware, malware, data-breach, zero-day. Published June 16, 2026. See the orig
ClickFix Campaigns Expand Malware Delivery With New Loaders and Fake Update Lures
The Hacker News published an news on "ClickFix Campaigns Expand Malware Delivery With New Loaders and Fake Update Lures". Topic areas: zero-day, malware, ransomware, data-breach. Published June 16, 20
CVE-2026-50656 Microsoft Defender Elevation of Privilege Vulnerability
Microsoft is aware of an elevation of privilege in the Microsoft Malware Protection Engine in Microsoft Defender publicly referred to as "RoguePlanet ". We are working to provide a high quality securi
MicrosoftCVE-2026-50656Rockwell Automation FLEX I/O EtherNet/IP Adapters
View CSAF Summary Successful exploitation of these vulnerabilities could allow an attacker to gain unauthorized access, account takeover, and cause loss of availability. The following versions of Rock
CVE-2026-0646Rockwell Automation FactoryTalk Analytics PavilionX
View CSAF Summary Successful exploitation of this vulnerability could result in an attacker executing privileged operations. The following versions of Rockwell Automation FactoryTalk Analytics Pavilio
CVE-2025-14272Rockwell Automation CompactLogix
View CSAF Summary Successful exploitation of these vulnerabilities could allow an attacker to cause a denial-of-service condition. The following versions of Rockwell Automation CompactLogix are affect
CVE-2025-11694
Get alerts that match YOUR environment
This page shows everything in the category. Vulnios narrows it down to alerts that affect your actual asset inventory — only the CVEs you need to act on.
Start a free scan