Indicators of Compromise

The Hacker News 📡 RSS May 12

RubyGems Suspends New Signups After Hundreds of Malicious Packages Are Uploaded

Domains: mend.io

The Hacker News →

SC Media 📡 RSS May 12

Threat actor Mr_Rot13 exploits critical cPanel flaw to deploy Filemanager backdoor

CVEs: CVE-2026-41940

SC Media →

Help Net Security 📡 RSS May 12

JetBrains TeamCity vulnerability allows privilege escalation, API exposure (CVE-2026-44413)

CVEs: CVE-2026-44413

Help Net Security →

CISA Advisories 📡 RSS May 12

ABB AC500 V3 Multiple Vulnerabilities

CVEs: CVE-2025-2595 CVE-2025-41659 CVE-2025-41691

CISA Advisories →

Security Affairs 📡 RSS May 12

Attackers exploit cPanel CVE-2026-41940 to deploy Filemanager Backdoor

CVEs: CVE-2026-41940

Security Affairs →

CSO Online 📡 RSS May 12

cPanel flaw exposes enterprises to hosting supply-chain risks

CVEs: CVE-2026-41940

CSO Online →

GBHackers 📡 RSS May 12

Cline AI Agent Flaw Allows Attackers to Launch RCE Attacks

CVEs: CVE-2026-44211

GBHackers →

GBHackers 📡 RSS May 12

Magecart Hackers Exploit Google Tag Manager to Inject Credit Card Skimmers

Domains: googletagmanager.com

GBHackers →

GBHackers 📡 RSS May 12

BitUnlocker Downgrade Attack Bypasses Windows 11 Disk Encryption in Minutes

CVEs: CVE-2025-48804

GBHackers →

Zero Day Initiative 📡 RSS May 12

ZDI-26-308: Ivanti Endpoint Manager RemoteControlAuth Exposed Dangerous Method Information Disclosure Vulnerability

CVEs: CVE-2026-8109

Zero Day Initiative →

Zero Day Initiative 📡 RSS May 12

ZDI-26-310: Microsoft Windows splwow64 Race Condition Local Privilege Escalation Vulnerability

CVEs: CVE-2026-34342

Zero Day Initiative →

Zero Day Initiative 📡 RSS May 12

ZDI-26-309: Microsoft Windows Message Queueing Double Free Local Privilege Escalation Vulnerability

CVEs: CVE-2026-33838

Zero Day Initiative →

Zero Day Initiative 📡 RSS May 12

ZDI-26-315: Apple macOS USD Out-Of-Bounds Read Information Disclosure Vulnerability

CVEs: CVE-2026-28941

Zero Day Initiative →

Zero Day Initiative 📡 RSS May 12

ZDI-26-314: Apple macOS USD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

CVEs: CVE-2026-28940

Zero Day Initiative →

Zero Day Initiative 📡 RSS May 12

ZDI-26-313: Apple Safari Regular Expression Duplicate Named Groups Heap-based Buffer Overflow Remote Code Execution Vulnerability

CVEs: CVE-2026-28847

Zero Day Initiative →

Zero Day Initiative 📡 RSS May 12

ZDI-26-312: Apple Safari Web Inspector WebCore Style Resolver Use-After-Free Remote Code Execution Vulnerability

CVEs: CVE-2026-28955

Zero Day Initiative →

Zero Day Initiative 📡 RSS May 12

ZDI-26-311: Apple macOS CoreSymbolication Out-Of-Bounds Read Information Disclosure Vulnerability

CVEs: CVE-2026-28918

Zero Day Initiative →

Zero Day Initiative 📡 RSS May 12

ZDI-26-317: Siemens Simcenter Femap IPT File Parsing Memory Corruption Remote Code Execution Vulnerability

CVEs: CVE-2025-12659

Zero Day Initiative →

Zero Day Initiative 📡 RSS May 12

ZDI-26-316: Siemens Simcenter Femap IPT File Parsing Memory Corruption Remote Code Execution Vulnerability

CVEs: CVE-2025-12659

Zero Day Initiative →

CSO Online 📡 RSS May 12

Cybersicherheitsvorschriften: So erfüllen Sie Ihre Compliance-Anforderungen

Domains: shutterstock.com

CSO Online →