Posts

The Hacker News - CISA Adds Exploited Magento RCE Flaw CVE-2026-45247 to KEV Catalog

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a critical flaw impacting Mirasvit Cache Warmer, a popular Magento full-page cache extension, to its Known Exploited Vulnerabilities (KEV) catalog, following reports of active exploitation in the wild. The vulnerability, tracked as CVE-2026-45247 (CVSS score: 9.8), is a case of deserialization of untrusted from The Hacker News https://thehackernews.com/2026/06/cisa-adds-exploited-magento-rce-flaw.html
Post a Comment
Read more

The Hacker News - DoJ Disrupts Southeast Asia Crypto Fraud Networks, Freezes $3.8 Million in Assets

The U.S. Department of Justice (DoJ) on Wednesday announced the results of a sweeping action undertaken by government authorities and private sector companies to combat cyber-enabled and cryptocurrency fraud targeting Americans. The "Disruption Week" operation began May 18, 2026, leading to the takedown of millions of social media, email, and internet access accounts used by transnational from The Hacker News https://thehackernews.com/2026/06/doj-disrupts-southeast-asia-crypto.html
Post a Comment
Read more

KnowBe4 - Phishing Attacks Are Using Real Hotel Reservation Info to Target Travelers

Image
Scammers are using legitimate hotel booking details to craft targeted phishing attacks, WIRED reports. Victims are far more likely to fall for a phishing attack if a message contains real information that they wouldn’t expect a scammer to know. According to researchers at Norton, this phishing campaign is targeting customers of at least 350 hotels and vacation rentals across 50 countries. from KnowBe4 Blog https://blog.knowbe4.com/phishing-attacks-are-using-real-hotel-reservation-info-to-target-travelers
Post a Comment
Read more

KnowBe4 - Warning: Scammers are Exploiting Geopolitical Unrest

Image
Scammers are taking advantage of the conflicts in the Middle East and Ukraine to exploit people’s emotions, according to researchers at ESET. from KnowBe4 Blog https://blog.knowbe4.com/scammers-exploit-geopolitical-unrest-fake-charities
Post a Comment
Read more

The Hacker News - Autonomous AI Tool Finds 2-Year-Old RCE Flaw in Redis (CVE-2026-23479)

Redis has patched a use-after-free in its blocking-client code that lets an authenticated user run arbitrary OS commands on the machine hosting the database. The flaw was found by an autonomous AI tool built to hunt bugs in large codebases. Tracked as CVE-2026-23479, the flaw was introduced in Redis 7.2.0 and remained in every stable branch until the May 5 fixes, unnoticed for over two years. from The Hacker News https://thehackernews.com/2026/06/autonomous-ai-tool-finds-2-year-old-rce.html
Post a Comment
Read more

KnowBe4 - Athletes Are Increasingly Targeted by Social Engineering Attacks

Image
Scammers are increasingly targeting athletes with advanced social engineering attacks , the Guardian reports. The Guardian cites a recent report from Ernst & Young that found that athletes and teams have lost nearly $1 billion to fraud over the past twenty years, and more than 40% of these losses were reported in the past six years. from KnowBe4 Blog https://blog.knowbe4.com/athletes-are-increasingly-targeted-by-social-engineering-attacks
Post a Comment
Read more

Schneier - AI Used to Decrypt Medieval Ciphers

Researchers are using machine learning algorithms to decrypt historical pencil-and-paper ciphers. from Schneier on Security https://www.schneier.com/blog/archives/2026/06/ai-used-to-decrypt-medieval-ciphers.html
Post a Comment
Read more