1010.cx – Page 52 – cybersecurity / defense / intelligence

Claude Code GitHub Actions Flaw Exposes Repositories to Full Compromise

·

CVE/vulnerability, cyber security, Cyber Security News, Vulnerabilities, vulnerability

A critical supply chain vulnerability in Anthropic’s Claude Code GitHub Actions workflow has been disclosed, exposing thousands of repositories to potential full compromise through a single malicious GitHub issue. Security researcher Ryota K from GMO Flat Security identified multiple flaws in the Claude Code integration that allowed attackers to bypass permission controls and inject untrusted […]

The post Claude Code GitHub Actions Flaw Exposes Repositories to Full Compromise appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
How Leading Organizations Are Turning EDR Into Operational Resilience

·

Most organizations now recognize that endpoint protection alone is no longer sufficient. That’s why adoption of endpoint detection and response (EDR) has accelerated rapidly in recent years. Organizations understand that modern attacks move faster, evade traditional prevention controls, and require continuous visibility into suspicious activity across the environment. But owning EDR

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
CISA Warns of Active Exploitation of Palo Alto Networks PAN-OS Vulnerability

·

CVE/vulnerability, cyber security, Cyber Security News, vulnerability

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert warning that threat actors are actively exploiting a critical vulnerability in Palo Alto Networks PAN-OS, tracked as CVE-2026-0257. The flaw, categorized as an authentication bypass issue, allows attackers to bypass standard security controls and establish unauthorized VPN connections, potentially granting them access […]

The post CISA Warns of Active Exploitation of Palo Alto Networks PAN-OS Vulnerability appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Pakistan-Linked SideCopy Targets Afghanistan Finance Ministry with Xeno RAT

·

Cybersecurity researchers have disclosed details of a spear-phishing campaign likely undertaken by the Pakistan-aligned SideCopy group targeting Afghanistan’s Ministry of Finance with an open-source remote access trojan called Xeno RAT. “The campaign opens with a spear phishing delivery – a ZIP archive containing a malicious LNK file bearing a carefully crafted Pashto-language filename,”

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
CISA Issues Alert on Oracle WebLogic Server Flaw Under Active Exploitation

·

CVE/vulnerability, cyber security, Cyber Security News, vulnerability

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical Oracle WebLogic Server vulnerability, tracked as CVE-2024-21182, to its Known Exploited Vulnerabilities (KEV) catalog, warning that the flaw is actively exploited in the wild. The alert, published on June 1, 2026, highlights the urgent risk to organizations that rely on Oracle WebLogic for […]

The post CISA Issues Alert on Oracle WebLogic Server Flaw Under Active Exploitation appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Android Zero-Day Vulnerability Actively Exploited in Device Takeover Attacks

·

Android, CVE/vulnerability, cyber security, Cyber Security News, vulnerability, Zero-Day, zeroday

Google has disclosed a critical Android zero-day vulnerability that is reportedly being actively exploited in targeted attacks, raising serious concerns about the risk of large-scale device compromise. The issue, tracked as CVE-2025-48595, was highlighted in the Android Security Bulletin for June 2026, released on June 1. Android Zero-Day Vulnerability According to Google, the vulnerability resides […]

The post Android Zero-Day Vulnerability Actively Exploited in Device Takeover Attacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
34 Malicious Packages Steal Cloud Keys, Wallets, and SSH Credentials

·

cyber security, Cyber Security News

Hackers are actively abusing open-source ecosystems to steal sensitive developer data through a large-scale supply chain attack dubbed “TrapDoor,”. The campaign spans npm, PyPI, and Crates.io, leveraging 34 malicious packages and 384 versions to target developers working in cryptocurrency, DeFi, AI, and cloud environments. The attackers weaponized legitimate package installation and build mechanisms to silently […]

The post 34 Malicious Packages Steal Cloud Keys, Wallets, and SSH Credentials appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Hackers Use Spearphishing to Deploy AZUREVEIL Adaptix C2 Agent

·

cyber security, Cyber Security News

Hackers are actively deploying a sophisticated malware framework dubbed AZUREVEIL, an Adaptix-based command-and-control (C2) agent, through a targeted spearphishing campaign aimed at government and enterprise sectors in the Czech Republic and Taiwan. The attack begins with a malicious ZIP archive delivered via spearphishing emails. The archive contains files disguised as official documents, including a shortcut file […]

The post Hackers Use Spearphishing to Deploy AZUREVEIL Adaptix C2 Agent appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Critical StrongDM Flaw Exposes Users to Authentication Token Theft and Reuse

·

CVE/vulnerability, cyber security, Cyber Security News, vulnerability

A critical security vulnerability tracked as CVE-2026-4387 has been disclosed in StrongDM, allowing attackers to steal and reuse authentication tokens to gain unauthorized access to infrastructure. The issue, discovered by SpecterOps researcher Hope Walker, affects StrongDM desktop and CLI environments before the patched versions and poses significant risks to enterprise environments that rely on centralized […]

The post Critical StrongDM Flaw Exposes Users to Authentication Token Theft and Reuse appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
SolyxImmortal Malware Steals Passwords, Cookies, Files, and Keystrokes

·

cyber security, Cyber Security News, Malware

A newly analyzed Python-based information stealer named SolyxImmortal is actively targeting sensitive user data, including browser credentials, cookies, documents, screenshots, and keystrokes. The malware uses common Python libraries and multi-threading techniques to run multiple surveillance and data theft operations simultaneously, making it efficient and difficult to detect during execution. Security researchers, including Cyfirma, report that […]

The post SolyxImmortal Malware Steals Passwords, Cookies, Files, and Keystrokes appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶