Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

SecurityWeek

20 articles

SecurityWeek Phishing 2d ago

Webinar Today: Why Email Security Keeps Failing

Join the webinar as we break down why email-layer defenses alone can’t keep pace with the modern phishing ecosystem. The post Webinar Today: Why Email Securi...

T1566

SecurityWeek →

SecurityWeek Vulnerability Disclosure Google 2d ago

Google Dialogflow CX Bug Allowed Attackers to Hijack AI Conversations

The "Rogue Agent" vulnerability could have enabled attackers to silently manipulate AI conversations, exfiltrate data, and compromise every Dialogflow CX age...

T1041

SecurityWeek →

SecurityWeek General Amazon Adobe 2d ago

CISA Urges Immediate Patching of Exploited ColdFusion, Langflow, Joomla Flaws

Two newly disclosed critical vulnerabilities in Adobe ColdFusion and Langflow join two Joomla extension flaws in CISA's Known Exploited Vulnerabilities catal...

SecurityWeek →

SecurityWeek Vulnerability Disclosure GitHub 2d ago

Critical Vulnerability Exposes GitHub Agentic Workflows to Prompt Injection

Researchers show how attackers can use a crafted public GitHub Issue to trick AI-powered workflows into exposing data from private repositories without authe...

SecurityWeek →

SecurityWeek General 3d ago

County Government Reportedly Paid $1 Million to Cyber Extortion Group

The alleged victim, believed to be a small Ohio county, reportedly paid the extortion group to prevent the public release of sensitive stolen data. The post ...

SecurityWeek →

SecurityWeek CVE 3d ago

Critical Gitea Flaw Under Active Exploitation, Researchers Warn

Attackers are exploiting the critical Gitea vulnerability CVE-2026-20896 to bypass authentication with a single HTTP header and access vulnerable repositorie...

1 IOC

SecurityWeek →

SecurityWeek General Amazon 3d ago

CISA Reportedly Using Anthropic’s Mythos to Scan Government Software for Flaws

The audits are reportedly being spearheaded by CISA’s Attack Surface Evaluation team, a specialized unit tasked with conducting digital defense assessments a...

SecurityWeek →

SecurityWeek CVE Adobe 3d ago

Critical Adobe ColdFusion Vulnerability Exploited in Attacks

Hackers are exploiting a recently patched critical vulnerability (CVE-2026-48282) in Adobe ColdFusion that carries a CVSS score of 10/10. The post Critical A...

1 IOC

SecurityWeek →

SecurityWeek Campaigns 3d ago

Iran-Linked Hackers Using Modular C&C Framework in Cyberattacks

Researchers say the Iran-linked threat actor used an adaptable modular malware framework and compromised IT service providers to reach high-value targets in ...

SecurityWeek →

SecurityWeek General 3d ago

CISO Conversations: Tarah Wheeler, Cybersecurity Leader, Thought Leader and Original Thinker

Tarah Wheeler is CISO at TPO Group, a firm that provides cybersecurity consultancy for high-stakes organizations. But despite this elevated position, her jou...

SecurityWeek →

SecurityWeek Vulnerability Disclosure Linux Intel AMD 3d ago

Linux Kernel Vulnerability Allows VM Escape on Intel and AMD Systems

The 16-year-old Januscape flaw affects Linux's KVM hypervisor, allowing attackers to escape virtual machines and potentially execute code on the underlying h...

SecurityWeek →

SecurityWeek General 3d ago

Keyfactor Scores $1 Billion+ Investment for AI, Post-Quantum Security

Keyfactor, which helps organizations connect humans, machines, and AI with cryptographic security, has secured a strategic growth investment exceeding $1 bil...

SecurityWeek →

SecurityWeek TTPs 4d ago

Blogspot-Hosted Payloads Delivered in ‘Veil#Drop’ Attacks

Securonix says the sophisticated framework abuses compromised websites, Blogspot, PowerShell, and fileless techniques to evade detection and deploy the PureL...

SecurityWeek →

SecurityWeek General 4d ago

The Shift Toward Business-Aligned Risk Management

Moving from isolated, technical data to a continuous risk lifecycle can help organizations align security controls with actual business consequences. The pos...

SecurityWeek →

SecurityWeek Campaigns 4d ago

Armored Likho APT Targeting Government, Electric Power Entities

The threat actor uses modular RATs and information stealers in financially motivated and cyber espionage campaigns. The post Armored Likho APT Targeting Gove...

SecurityWeek →

SecurityWeek Campaigns 4d ago

North Korean Hackers Target Open Source Developers in Supply Chain Attacks 

The PolinRider campaign has compromised more than 100 legitimate open source packages and repositories to deliver a backdoor and information stealer to devel...

T1195

SecurityWeek →

SecurityWeek Vulnerability Disclosure Linux 4d ago

Proof-of-Concept Exploit Released for Linux ‘Bad Epoll’ Root Access Vulnerability

Organizations are urged to patch after proof-of-concept code makes the Linux root escalation flaw easier to exploit. The post Proof-of-Concept Exploit Releas...

SecurityWeek →

SecurityWeek Vulnerability Disclosure 4d ago

Prompt Injection Attacks Trick AI Agents Into Making Crypto Payments

Researchers uncovered two campaigns embedding indirect prompt injections in malicious websites to exploit autonomous AI agents browsing the web. The post Pro...

SecurityWeek →

SecurityWeek General Jul 3

In Other News: Canadian Hacker Jailed, Open Source Zero-Days, Two Sentenced for ATM Jackpotting

Noteworthy stories that might have slipped under the radar: Anonymous-linked Canadian hacker jailed, researcher drops zero-days in open source projects, Vene...

SecurityWeek →

SecurityWeek Ransomware Jul 3

Agentic AI Used to Conduct Ransomware Attack via Langflow

Attack demonstrates how LLM agents can combine known exploitation techniques with real-time reasoning to automate complex, multi-stage intrusions. The post A...

SecurityWeek →

«Previous page 1 2 3 4 ... 23 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA