RCE+61
AI+55
Supply Chain+45
API Security+34
Bug Bounty+22
SSRF+15
Python+10
XSS+9
AuthZ+9
SQLi+8
Authentication+7
OSINT+6
Recon+5
Secrets+4
IDOR+3
Talks+2
Burp Suite+1
CSRF+1
Fuzzing+1
GraphQL+1
RCE +61
| Date | Resource | Summary |
|---|---|---|
| 2026-06-25 | Chrome 149 Update Resolves 18 Severe Vulnerabilities | Chrome's 149 update addresses 18 critical security vulnerabilities, enhancing user protection. The update is now available for download. |
| 2026-06-25 | CVE-2026-1606: Code Injection Vulnerability in GitLab CE/EE Snippets Affected Versions Risks and Remediation Steps | CVE-2026-1606: Code Injection Vulnerability in GitLab CE/EE Snippets – Affected Versions, Risks, and Remediation Steps https://ift.tt/fJxn0Ia |
| 2026-06-25 | Chrome 149 Security Update Patch for Critical Flaws that Enable Code Execution Attacks | Google has released Chrome 149, a security update addressing critical vulnerabilities that could allow attackers to execute arbitrary code on users' devices. The update is crucial for patching these flaws and protecting users from potential exploits. The specific details regarding the patch and its implications are available via the provided link. No bug bounty payout amount is mentioned in the content. |
| 2026-06-24 | Laravel Livewire Applications Compromised to Steal Credentials Exploiting RCE Vulnerability | Laravel Livewire applications are vulnerable to Remote Code Execution (RCE), allowing attackers to steal user credentials. A recently discovered flaw permits malicious actors to craft specific payloads that can execute arbitrary code on the server. This compromise enables the theft of sensitive information, including login credentials. Developers are advised to update their Livewire versions to patch this critical security vulnerability. No specific bounty payout amount is mentioned in the provided content. |
| 2026-06-24 | PoC Exploit Released for libssh2 Remote Code Execution Vulnerability | A Proof-of-Concept (PoC) exploit has been released for a remote code execution (RCE) vulnerability in the libssh2 library. This vulnerability could allow attackers to execute arbitrary code on systems using vulnerable versions of libssh2. The release of a PoC indicates that the exploit is publicly available and could be used by malicious actors to compromise systems. Users of libssh2 are advised to update to a patched version to mitigate this risk. |
| 2026-06-24 | CISA Warns Critical Lantronix EDS5000 Flaw Is Being Actively Exploited | Writeup of CVE-2025-67038, a critical code injection flaw in Lantronix EDS5000 Series devices, actively exploited and urging Federal Civilian Executive Branch (FCEB) agencies to patch by June 26, 2026. The vulnerability, disclosed by Forescout Research Vedere Labs as part of the BRIDGE:BREAK campaign, allows attackers to execute arbitrary OS commands with root privileges via the HTTP RPC module's unsanitized username parameter. This also mentions active exploitation of Ubiquiti UniFi OS vulnerabilities CVE-2026-34908, CVE-2026-34909, and CVE-2026-34910, chaining them for root privileges and broad network compromise. |
| 2026-06-24 | Critical FFmpeg Vulnerability Allows Attackers to Weaponize Media Files | A critical vulnerability has been discovered in FFmpeg, a widely-used multimedia framework. This flaw allows attackers to weaponize media files, potentially leading to system compromise. The vulnerability, if exploited, could enable malicious actors to execute arbitrary code by tricking users into processing a specially crafted media file. Further details on the exploitability and impact are not immediately available, but the severity of this bug highlights the ongoing security challenges in complex software like FFmpeg. No specific bounty payout amount is mentioned. |
| 2026-06-24 | New Cisco RCE was fixed | New Cisco RCE was fixed |
| 2026-06-24 | High severity vulnerability found in libcurl and curl (CVE-2023-38545) | Writeup on CVE-2023-38545, a high-severity heap-based buffer overflow in libcurl and curl, released October 2023. This vulnerability, impacting numerous open source ecosystems and Linux distributions, requires specific exploit conditions like interacting with compromised servers or using attacker-controlled SOCKS5 proxy URLs. Snyk offers reporting features to identify affected projects by CVE number. |
| 2026-06-24 | FFmpeg PixelSmash Vulnerability Enables Remote Code Execution | Writeup on CVE-2026-8461, the "PixelSmash" vulnerability, details how a flaw in FFmpeg's MagicYUV decoder allows remote code execution via specially crafted media files. This critical vulnerability, with a CVSS score of 8.8, affects numerous FFmpeg-dependent applications like Jellyfin and Nextcloud, and can be triggered by automated processes such as thumbnail generation or metadata extraction. Researchers successfully demonstrated RCE and denial-of-service conditions across various products including Kodi, mpv, and OBS Studio. Mitigation strategies include patching FFmpeg, disabling unnecessary codecs, restricting media uploads, and isolating media-processing workloads. |
| 2026-06-24 | FFmpeg PixelSmash Flaw Allows RCE on Video Players Media Servers NAS Appliances | Library for detecting and mitigating CVE-2026-8461, a critical heap out-of-bounds write vulnerability dubbed PixelSmash within FFmpeg's MagicYUV decoder. This flaw, present in numerous video players, media servers, and NAS appliances, enables attackers to achieve remote code execution (RCE) by delivering a crafted media file, potentially leading to zero-click attacks. The library aids in identifying vulnerable FFmpeg builds and understanding the exploit vector, which involves targeting the AVBuffer struct to inject shell commands before the inevitable process crash. |
| 2026-06-24 | Hole in widely-used FFmpeg codec could crash media servers or enable RCE | Vulnerability CVE-2026-8461, nicknamed PixelSmash, is a heap out-of-bounds write in FFmpeg's MagicYUV decoder impacting numerous media servers and applications like Kodi, mpv, Jellyfin, and Nextcloud. Discovered by JFrog, this vulnerability can cause crashes and potentially enable remote code execution, as demonstrated by crafting simple media files. While disabling the MagicYUV decoder is a workaround, the wider lesson highlights the importance of attack surface management and Software Bills of Materials (SBOMs) for visibility into software dependencies to mitigate supply chain risks. |
| 2026-06-23 | Critical libssh2 Vulnerability Allows Attackers to Execute Remote Code Via Malicious SSH packets | A critical vulnerability in the libssh2 library allows attackers to execute remote code by sending specially crafted SSH packets. This exploit bypasses security measures and grants unauthorized access to systems. The vulnerability, detailed in a linked report, poses a significant threat to applications and services relying on libssh2 for secure SSH communication. Users are advised to update their libssh2 installations immediately to mitigate the risk of compromise. No bounty payout amount is mentioned in the provided content. |
| 2026-06-23 | FFmpeg vulnerability PixelSmash could enable RCE via video file | Library update addressing CVE-2026-8461, a heap buffer overflow in FFmpeg's MagicYUV decoder, dubbed PixelSmash. Exploiting a mismatch in chroma plane height calculations for YUV420P pixel formats, an attacker can achieve out-of-bounds writes, potentially overwriting function pointers within the AVBuffer struct for remote code execution. Researchers demonstrated RCE on Jellyfin and potential exploitation against Nextcloud via crafted AVI files. The flaw also enables denial-of-service. |
| 2026-06-23 | Watch video get pwned: critical FFmpeg vulnerability realizes the worst pirates fears | A critical vulnerability in FFmpeg allows attackers to gain remote code execution by tricking users into playing a specially crafted video file. This "watch video, get pwned" exploit can compromise systems, potentially leading to widespread damage. The vulnerability affects FFmpeg, a widely used multimedia framework, raising concerns for users and developers alike. |
| 2026-06-23 | Critical FFmpeg Vulnerability Enables Weaponized Media File Attacks | Critical FFmpeg Vulnerability Enables Weaponized Media File Attacks https://ift.tt/bq3uANy |
| 2026-06-23 | Leaky Vessels: runC and BuildKit container escape vulnerabilities - everything you need to know | Writeup detailing "Leaky Vessels," container escape vulnerabilities in runC (CVE-2024-21626) and BuildKit (CVE-2024-23651, CVE-2024-23652, CVE-2024-23653). The runC flaw allows host filesystem access via leaked file descriptors, posing significant risk to Kubernetes and build pipelines. BuildKit issues involve race conditions and mount feature manipulation enabling host file modification or deletion, or elevated container privileges when using the security.insecure entitlement. The analysis highlights affected Linux distributions and cloud providers, emphasizing the widespread risk and advising immediate patching. |
| 2026-06-23 | Critical Vulnerabilities in Ivanti Exploited in-the-Wild: everything you need to know | Reference detailing CVE-2023-46805, CVE-2024-21887, CVE-2024-21888, and CVE-2024-21893, critical vulnerabilities affecting Ivanti Connect Secure and Policy Secure. These flaws, including authentication bypass, command injection, privilege escalation, and SSRF, have been exploited in-the-wild. The entry highlights urgent patching recommendations, mitigation strategies, and detection methods for affected Ivanti products. |
| 2026-06-23 | February Fortinet Advisory: everything you need to know | Advisory detailing critical RCE vulnerabilities CVE-2024-21762 and CVE-2024-23113 in FortiOS and FortiProxy. CVE-2024-21762, a buffer overflow in SSL-VPN, is actively exploited. CVE-2024-23113, a format string vulnerability in fgfmd, affects recent versions. Mitigations include disabling SSL VPN or removing FGFM access. Wiz customers can utilize Wiz Threat Center queries for detection. |
| 2026-06-23 | PixelSmash – Critical FFmpeg Vulnerability Turns Media Files into Weapons | Tool for detecting PixelSmash (CVE-2026-8461), a critical FFmpeg vulnerability enabling remote code execution via crafted media files. This heap out-of-bounds write affects hundreds of applications like Jellyfin, Nextcloud, Kodi, and mpv by exploiting the MagicYUV decoder's handling of slice heights, leading to crashes or arbitrary code execution when processing malicious AVI, MKV, or MOV files. |
| 2026-06-22 | FFmpeg fixes PixelSmash flaw in widely used video decoder | Library fixes for CVE-2026-8461, the 'PixelSmash' heap out-of-bounds write in FFmpeg's MagicYUV decoder, mitigate remote code execution and denial-of-service vulnerabilities in applications like Jellyfin, Kodi, Emby, and OBS Studio. The flaw can be triggered by malicious video files and poses a supply-chain risk due to its presence in hundreds of projects relying on FFmpeg. Exploitation for RCE may require bypassing ASLR, potentially through chaining with other vulnerabilities. |
| 2026-06-22 | FFmpeg PixelSmash bug triggers code execution on media file open | Library for FFmpeg's CVE-2026-8461, "PixelSmash," a critical heap out-of-bounds write vulnerability in the MagicYUV decoder. This flaw allows remote code execution through specially crafted media files like AVI, MKV, or MOV, impacting numerous downstream applications including Kodi, OBS Studio, Jellyfin, and Nextcloud. Exploitation involves overwriting function pointers within FFmpeg's heap structures, enabling arbitrary command execution. The vulnerability was patched in FFmpeg 8.1.2. |
| 2026-06-22 | Microsoft fixes AutoGen Studio flaw that enabled code execution | Writeup of AutoJack, a vulnerability chain in Microsoft's AutoGen Studio, detailing how attackers could manipulate AI agents into executing arbitrary commands. The chain exploits weaknesses in WebSocket trust, authentication middleware, and URL parameter handling to enable remote code execution by tricking a browsing agent into loading malicious JavaScript. Microsoft remediated the flaw before its PyPI release, limiting exposure to developers building from source during a specific window. |
| 2026-06-22 | Critical Command Execution Vulnerability Patched in Cisco ISE | Writeup of CVE-2026-20181, a critical command execution vulnerability in Cisco Identity Services Engine (ISE) and ISE-PIC. This flaw, with a CVSS score of 9.1, allows authenticated attackers with administrative credentials to execute arbitrary commands on the underlying operating system by sending a crafted HTTP request. Exploitation can lead to privilege escalation to root or, in single-node deployments, a denial-of-service condition. Cisco has released patches for versions 3.3, 3.4, and 3.5. The update also addresses CVE-2026-20190, an information disclosure vulnerability. |
| 2026-06-22 | Critical flaw in popular SSH library enable hackers hijack systems remotely | A critical vulnerability has been discovered in a widely-used SSH library, potentially allowing hackers to remotely hijack systems. This flaw poses a significant security risk, as it could grant unauthorized access and control over compromised devices. The details of the vulnerability and its implications are still emerging, but it highlights the importance of keeping SSH implementations up-to-date and secured. |
| 2026-06-22 | [News] RCE found in Meccha Chameleon | Writeup detailing a Remote Code Execution (RCE) vulnerability in the game Meccha Chameleon, specifically within its custom map functionality. The vulnerability arises from the game's Blueprint scripting system executing arbitrary code via the `LaunchURL` function, which internally uses `ShellExecuteW`. Attackers can craft malicious custom maps containing a batch file in a predictable Steam Workshop content directory. When a user subscribes to this map, the batch file is automatically executed, leading to arbitrary command execution on the victim's machine. The article highlights the risk of user-generated content and recommends allowlisting asset file types and restricting Blueprint usage. |
| 2026-06-22 | Backdoor in XZ Utils allows RCE: everything you need to know | Analysis of CVE-2024-3094, a critical RCE vulnerability in XZ Utils versions 5.6.0 and 5.6.1, detailing the supply chain compromise. The backdoor, injected via obfuscated test files during compilation on specific Linux distributions, targets liblzma and can affect OpenSSH, leading to remote code execution. Exploitation requires specific runtime conditions, including the absence of the TERM environment variable and targeting of the sshd binary. Mitigation involves downgrading XZ Utils versions and hunting for suspicious activity. |
| 2026-06-22 | CVE-2024-4040 exploited in the wild: everything you need to know | Writeup detailing CVE-2024-4040, a critical vulnerability in CrushFTP versions prior to 10.7.1 and 11.1.0. Initially described as a VFS sandbox escape allowing arbitrary file reads, researchers found it enables unauthenticated remote code execution and administrator bypass. Exploited in the wild, this flaw, potentially a server-side template injection, affects 1.7% of cloud environments. Updating to patched versions is crucial, as previous mitigation advice regarding DMZs has been retracted. |
| 2026-06-22 | AutoJack: How a single page can RCE the host running your AI agent | Technique AutoJack demonstrates how a single web page can achieve remote code execution on the host running an AI agent, specifically targeting AutoGen Studio. By exploiting three weaknesses in the Model Context Protocol (MCP) WebSocket — an origin allowlist easily bypassed by an agent, opt-out authentication middleware, and unvalidated `server_params` from the URL—an attacker can trick the browsing agent into executing arbitrary commands on the host. This crosses the localhost trust boundary, turning the agent into a delivery vehicle for RCE. |
| 2026-06-22 | Android Multiple Vulnerabilities | Bulletin detailing multiple vulnerabilities in Android 17, impacting security patch levels prior to 2026-07-01. Exploits can lead to denial of service, remote code execution, elevation of privilege, and sensitive information disclosure. Specific CVEs include CVE-2022-25836, CVE-2022-25837, CVE-2023-40108, CVE-2023-40132, and several CVEs in the 2025 and 2026 range. Applying vendor-issued fixes is recommended. |
| 2026-06-22 | Microsoft Edge Multiple Vulnerabilities | Bulletin regarding multiple vulnerabilities in Microsoft Edge, impacting versions prior to 149.0.4022.80. These issues, identified by CVEs such as CVE-2026-12437, CVE-2026-12439, and CVE-2026-12440, can lead to spoofing, remote code execution, denial of service, security restriction bypass, and sensitive information disclosure. Users are advised to update to version 149.0.4022.80 or later. |
| 2026-06-21 | Multiple Vulnerabilities in Firefox 152 Enables Remote Code Execution Attacks | Firefox 152 contains multiple vulnerabilities that allow for remote code execution. These security flaws could enable attackers to compromise user systems by exploiting these weaknesses. The provided link offers more details on these critical vulnerabilities. |
| 2026-06-21 | Active Exploitation of Critical CVE-2026-20253 in Splunk Enterprise: Unauthenticated RCE via PostgreSQL Sidecar Service | Writeup detailing active exploitation of CVE-2026-20253 in Splunk Enterprise, a critical vulnerability allowing unauthenticated remote code execution via the PostgreSQL Sidecar Service. This flaw, cataloged by CISA, enables attackers to create or truncate arbitrary files by abusing backup and restore endpoints, leading to potential system compromise. The article covers exploitation mechanics, including chaining operations to write malicious scripts, and provides example exploit requests, detection indicators, and mitigation steps like upgrading Splunk or disabling the affected service. |
| 2026-06-21 | Windows Server 2016 Security Update Failures and CVE-2024-49116 RCE Vulnerability: Analysis and Mitigation Strategies | Analysis of CVE-2024-49116, a critical RCE vulnerability in Windows Remote Desktop Services, details use-after-free and race condition flaws exploitable by unauthenticated requests. This entry also addresses Windows Server 2016 update failures leading to domain controller restarts, resolved by KB5091572. Mitigation strategies include applying December 2024 security updates, disabling Remote Desktop Gateway services, restricting network access, and enabling NLA. Affected versions span Windows Server 2016 through 2025. |
| 2026-06-21 | Active Exploitation Alert: Critical CVE-2026-42945 NGINX Rift Vulnerability in NGINX and F5 ProductsPatch Immediately | Writeup of CVE-2026-42945, dubbed "NGINX Rift," a critical heap-based buffer overflow in NGINX and F5 products. This vulnerability, affecting numerous NGINX Open Source and Plus versions, enables unauthenticated remote code execution and denial-of-service via crafted HTTP requests, particularly when using rewrite and set directives. A public PoC exploit exists, and active exploitation is confirmed. Related vulnerabilities include CVE-2026-42946 and CVE-2026-40701. Mitigation involves immediate patching or replacing unnamed PCRE captures with named ones. |
| 2026-06-21 | Chaining Security Bugs in Discuz! X5.0: from Race Condition to Pre-Auth RCE | Library for chaining vulnerabilities in Discuz! X5.0, demonstrating a pre-authentication RCE attack. The exploit combines a Cross-Context Token Reuse leading to a Race Condition and Authentication Bypass, a custom OCR model for CAPTCHA bypass, and an administrative Local File Inclusion (LFI) vulnerability to achieve full server control. |
| 2026-06-21 | Critical RCE vulnerability in PHP CGI: everything you need to know | Writeup of CVE-2024-4577, a critical RCE in PHP CGI, details its exploitation by TellYouThePass ransomware via argument injection on Windows systems. The vulnerability, particularly affecting Chinese and Japanese locales, leverages Windows' Best-Fit encoding feature to bypass previous protections. Affected PHP versions include 8.3 before 8.3.8, 8.2 before 8.2.20, and 8.1 before 8.1.29, as well as end-of-life versions. Mitigation involves upgrading PHP, applying temporary rewrite rules, or disabling CGI for XAMPP installations. |
| 2026-06-21 | Probllama: Ollama Remote Code Execution Vulnerability (CVE-2024-37032) – Overview and Mitigations | Writeup of CVE-2024-37032, "Probllama," a Remote Code Execution vulnerability in Ollama, the popular open-source AI model deployment tool. The vulnerability stems from insufficient input validation in the `/api/pull` endpoint, allowing path traversal to overwrite arbitrary files. This can be leveraged to achieve arbitrary file reads and ultimately remote code execution, particularly in Docker deployments where the server runs with root privileges. Users are advised to upgrade to Ollama version 0.1.34 or newer. |
| 2026-06-21 | RCE vulnerability in OpenSSH: everything you need to know | Library detailing CVE-2024-6387, a critical RCE-as-root vulnerability in OpenSSH (sshd) dubbed "regreSSHion." This signal handler race condition affects default configurations on 32-bit glibc-based Linux distributions, potentially leading to heap corruption and arbitrary code execution. Exploitation requires specific environmental conditions, making widespread attacks unlikely but possible against targeted, patient adversaries. Patches are available for affected versions, and organizations should upgrade and restrict internet-facing SSH access. |
| 2026-06-21 | Krampus delivers an end-of-year Struts vulnerability | Analysis of CVE-2023-50164, a critical Struts path traversal vulnerability, with a proof-of-concept exploit. This vulnerability allows attackers to upload files to arbitrary locations within an application's web-served directories, potentially leading to remote code execution. The article details remediation steps, including upgrading Struts to version 2.5.33 or 6.3.0.2 and implementing custom code checks using Snyk's SAST and SCA tools to prevent malicious file uploads and identify vulnerable dependencies. |
| 2026-06-20 | Critical Cisco ISE Vulnerability Enables Remote Code Execution Attacks | A critical vulnerability has been discovered in Cisco Identity Services Engine (ISE) that allows for remote code execution. This flaw could enable attackers to compromise systems without user interaction, posing a significant security risk. The vulnerability's nature suggests it could be exploited by malicious actors to gain unauthorized access and control over affected devices. Further details regarding the specific exploit and its impact are available at the provided link. No payout amount was specified. |
| 2026-06-20 | Critical Firefox 152 Vulnerabilities Enable Remote Code Execution | Critical vulnerabilities in Firefox 152 have been discovered, allowing for remote code execution. These security flaws could enable attackers to compromise user systems by tricking them into visiting a malicious website. Further details about the specific vulnerabilities and potential impacts are available at the provided link. No bug bounty payout amount is mentioned in this content. |
| 2026-06-20 | Microsoft AutoJack exposes RCE via AI browsing agents | Writeup on AutoJack, a chained exploit affecting pre-release builds of AutoGen Studio (0.4.3.dev1, 0.4.3.dev2). A malicious webpage rendered by a local AI browsing agent bypasses origin checks, exploits missing authentication on Model Context Protocol (MCP) WebSocket endpoints, and leverages unsafe parameter handling to execute arbitrary processes on the host, leading to host-level RCE. The stable version 0.4.2.2 is unaffected, and a fix is available in GitHub main. This vulnerability highlights localhost trust abuse in agentic systems, similar to previous Semantic Kernel RCEs (CVE-2026-26030, CVE-2026-25592) and ChatGPhish. |
| 2026-06-20 | F5 Patches Critical High-Severity NGINX Vulnerabilities | Library updates from F5 address critical NGINX vulnerabilities, including CVE-2026-42530 and CVE-2026-42055, which could lead to code execution via use-after-free or heap-based buffer overflows. Patches also resolve high-severity flaws like CVE-2026-11311 and CVE-2026-50107 in NGINX Gateway Fabric, enabling authenticated configuration directive injection, sensitive data exposure, and denial-of-service conditions. Medium-severity vulnerabilities allowing memory disclosure and worker process restarts are also fixed. |
| 2026-06-20 | Use-after-free in the QPACK encoder of nginx HTTP/3 - CVE-2026-42530 | Writeup detailing CVE-2026-42530, a use-after-free vulnerability impacting the QPACK encoder within nginx's HTTP/3 implementation. The analysis provides insights into the specific flaw found in the popular web server software. |
| 2026-06-20 | Microsoft Working on Patch for RoguePlanet Zero-Day | Advisory for CVE-2026-50656, a privilege escalation vulnerability in Microsoft Defender's Malware Protection Engine, dubbed "RoguePlanet." Disclosed by researcher Nightmare Eclipse, it exploits a race condition to grant System privileges. A proof-of-concept exploit demonstrates local privilege escalation on Windows 11 and 10, with potential for remote code execution and applicability to Windows Server. This follows other zero-day disclosures by Nightmare Eclipse against Microsoft products, including BlueHammer, RedSun, and UnDefend. |
| 2026-06-19 | Splunk Enterprise Vulnerability Exploited in Attacks Days After Disclosure | Analysis of CVE-2026-20253, a critical Splunk Enterprise vulnerability allowing unauthenticated attackers to create or truncate arbitrary files via a PostgreSQL sidecar service, highlighting its immediate exploitation in attacks and inclusion in CISA's Known Exploited Vulnerabilities catalog. |
| 2026-06-19 | Rapid7 Analysis: CVE-2020-12271: Sophos XG Firewall Pre-Auth SQL Injection Vulnerability | Analysis of CVE-2020-12271 details a pre-authentication SQL injection vulnerability affecting Sophos XG Firewalls, which can lead to remote code execution. Exploited in the wild, this zero-day flaw, with a CVSSv3 score of 10, allows attackers to download malware, establish persistence, and exfiltrate credentials. Affected versions include 17.0, 17.1, 17.5, and 18.0. The analysis highlights reverse engineering efforts and ongoing threats even after a patch is available. |
| 2026-06-19 | Critical Splunk Vulnerability Actively Exploited | Writeup on CVE-2026-20253, a critical unauthenticated file manipulation flaw in Splunk, actively exploited after its June 10 patch release. The vulnerability, affecting Splunk Enterprise, allows attackers to create or truncate arbitrary files by targeting the PostgreSQL sidecar service endpoint without authentication. WatchTowr demonstrated chaining backup and restore APIs to achieve remote code execution, enabling the writing of malicious Python scripts to the Splunk filesystem. CISA has added this flaw to its Known Exploited Vulnerabilities catalog. |
| 2026-06-19 | AutoJack Attack Lets One Web Page Hijack AI Agent for Host Code Execution | Writeup detailing the AutoJack attack, an exploit chain targeting AutoGen Studio's pre-release versions (0.4.3.dev1 and 0.4.3.dev2). This vulnerability allows a malicious webpage, loaded by an AI browsing agent, to execute arbitrary commands on the host machine. The attack exploits three weaknesses in the Model Context Protocol (MCP) WebSocket: localhost trust, skipped authentication middleware, and unauthenticated command execution. While a plain `pip install autogenstudio` is unaffected, users of pre-releases must pull fixes from GitHub main (commit b047730) as a patched PyPI release is not yet available. This research highlights broader risks in agent frameworks, echoing similar localhost vulnerabilities found in Semantic Kernel (CVE-2026-26030, CVE-2026-25592) and ChatGPhish. |
| 2026-06-19 | Microsoft warns AI agents are being 'AutoJack'-ed to deliver RCE payloads by browsing untrusted websites | Vulnerability chain called "AutoJack" in AutoGen Studio allows remote code execution (RCE) through malicious websites. Exploiting flaws like localhost channel misuse and skipped login checks, an attacker can trick an AI agent into running arbitrary code supplied by the untrusted website. This attack chain highlights the risks of AI agents browsing external content without strict authentication and isolation of local control planes. |
| 2026-06-19 | NGINX Vulnerability Patch: F5 Fixes Critical HTTP/3 and HTTP/2 Remote Code Execution Flaws | Patch addressing critical NGINX vulnerabilities CVE-2026-42530 (HTTP/3 use-after-free) and CVE-2026-42055 (HTTP/2 heap buffer overflow). These flaws, with CVSS v4.0 scores of 9.2, allow unauthenticated remote attackers to crash NGINX worker processes and potentially achieve arbitrary code execution, particularly on systems with weakened ASLR. F5 has released fixes for NGINX Open Source, NGINX Plus, and NGINX Gateway Fabric, with temporary mitigations available for those unable to patch immediately. |
| 2026-06-19 | Cisco Identity Services Engine Remote Code Execution and Information Disclosure Vulnerabilities | Writeup on CVE-2026-20181 and CVE-2026-20190 affecting Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC). CVE-2026-20181, a critical RCE vulnerability with a CVSS score of 9.1, requires administrative credentials and exploits insufficient input validation, allowing command execution and privilege escalation. CVE-2026-20190, a high-severity information disclosure vulnerability (CVSS 7.5), exploits improper authorization checks, potentially revealing hashed credentials. Both vulnerabilities are addressed by Cisco software updates. |
| 2026-06-19 | F5 Patches NGINX Vulnerability Enabling Code Execution and DoS Attacks | F5 has released patches for a critical vulnerability in NGINX that could allow attackers to execute arbitrary code and launch Denial of Service (DoS) attacks. The vulnerability, identified as CVE-2023-40574, affects NGINX versions 1.25.1 and earlier, as well as NGINX Plus R28 and earlier. F5 strongly advises users to update to patched versions immediately to mitigate the risks. No specific bounty payout amount was mentioned in the provided content. |
| 2026-06-19 | Critical Cisco ISE Vulnerability Allows Attacker to Execute Malicious Code Remotely | Critical Cisco ISE Vulnerability Allows Attacker to Execute Malicious Code Remotely https://ift.tt/2ilx8Qz |
| 2026-06-19 | TryHackMe — Blog CTF | Full Write-Up | This TryHackMe room, "Blog," is a medium-difficulty CTF focused on a WordPress blog run by "Billy Joel." The challenge features CVE-2019–8942, a WordPress image crop Remote Code Execution vulnerability, alongside a custom binary for privilege escalation. The write-up details the steps to exploit these vulnerabilities to gain access and complete the room. No bounty payout amount is mentioned. |
| 2026-06-18 | Multiple Vulnerabilities in Firefox 152 Enables Remote Code Execution Attacks | Multiple vulnerabilities have been discovered in Firefox 152, enabling remote code execution attacks. These security flaws could allow attackers to compromise user systems by tricking them into visiting a malicious website or opening a specially crafted file. Users are strongly advised to update their Firefox browsers to the latest version to patch these critical security holes and protect themselves from potential exploitation. No specific bounty payout amount was mentioned in the provided content. |
| 2026-06-18 | F5 Releases Emergency Security Update For Critical NGINX Vulnerabilities | F5 has issued an emergency security update to address critical vulnerabilities found in NGINX, a widely used web server. These flaws could potentially allow attackers to gain unauthorized access or disrupt services. The update is crucial for organizations utilizing NGINX to patch their systems and mitigate these risks. Further details on the specific vulnerabilities and the recommended update procedures are available through the provided link. No specific payout amounts were mentioned. |
| 2026-06-18 | F5 issues out-of-band patches for critical NGINX vulnerabilities | Patches address critical NGINX vulnerabilities, including CVE-2026-42530 (ngx_http_v3_module) and CVE-2026-42055 (ngx_http_proxy_v2_module, ngx_http_grpc_module), allowing unauthenticated attackers remote code execution via use-after-free or heap-based buffer overflow. Mitigation for CVE-2026-42530 involves disabling HTTP/3, and for CVE-2026-42055, removing `ignore_invalid_headers off` and reducing `large_client_header_buffers`. High-severity NGINX Gateway Fabric flaws, CVE-2026-11311 and CVE-2026-50107, enable authenticated attackers to inject NGINX configuration directives. |
| 2026-06-18 | F5 Patches Two Critical NGINX Open Source Flaws Enabling Remote Code Execution | Writeup of CVE-2026-42530 and CVE-2026-42055, two critical NGINX Open Source vulnerabilities patched by F5. CVE-2026-42530, a use-after-free flaw in the HTTP/3 QUIC module, allows remote code execution. CVE-2026-42055, a heap-based buffer overflow in proxy modules, also enables code execution. Both flaws have high CVSS scores and affected various NGINX products, including NGINX Plus and Ingress Controller. Mitigations involve disabling HTTP/3 or adjusting proxy configurations. |
| 2026-06-18 | F5 Patches NGINX Vulnerability That Enables Code Execution and DoS Attacks | F5 has released a patch for a critical vulnerability in NGINX that could allow attackers to execute code and launch denial-of-service (DoS) attacks. The flaw, identified as CVE-2024-24924, impacts NGINX versions 1.25.0 through 1.25.2 and 1.24.0 through 1.24.3. While specific details on exploitation are limited, the vulnerability arises from improper handling of certain HTTP/2 frames. F5 urges users to update to the patched versions promptly to mitigate these risks. No bug bounty payout amount was specified. |
AI +55
| Date | Resource | Summary |
|---|---|---|
| 2026-06-25 | Choosing an AI-SPM tool: The four questions every security organization needs to ask | Ensure you are staying secure as your organization adopts AI by following these four guiding questions |
| 2026-06-25 | The top 10 AI security articles you must read in 2024 | We've curated a collection of 10 AI security articles that cover novel threats to AI models as well as strategies for developers to safeguard their models. |
| 2026-06-25 | Wiz extends its AI-SPM offering to OpenAI platform | Wiz becomes the first CNAPP to provide AI security for OpenAI, allowing data scientists and developers to detect and mitigate risk in their OpenAI organization with a new OpenAI SaaS connector. |
| 2026-06-25 | Wiz Research presents its latest report: “State of AI in the Cloud 2024” | Get a sneak peek at the Wiz research team’s new report examining key observations about AI use in the cloud. |
| 2026-06-25 | Claude Enterprise Meets the Security Graph: Wiz Integrates with Anthropic's Compliance API | Security and compliance teams can now monitor Claude activity directly in Wiz, extending the workflows they already rely on to AI |
| 2026-06-25 | Defending at Machine-Speed: Building AI Threat Readiness with Wiz | How Wiz helps organizations adopt an AI Operating Model for AI Threat Readiness |
| 2026-06-25 | AI Threat Readiness Pillar 4: Detect and contain threats in real-time | Your guide to operationalizing AI-powered threat detection and response with Wiz to stay ahead of AI-driven attackers. |
| 2026-06-25 | How AI Is Rewriting the SecOps Playbook | Adversaries now operate at machine speed, drastically shortening attack timelines. Traditional SecOps, reliant on manual investigation and response, can no longer keep pace to prevent damage. To combat this, Security Operations must fundamentally shift its playbook. The focus needs to be on prioritizing speed, implementing robust automation, and enabling continuous decision-making processes to effectively defend against modern threats. |
| 2026-06-25 | Identiverse 2026: The Challenges Of Solving Identity For AI Agents At Scale | Identiverse 2026 highlighted significant challenges in managing identity for increasingly scaled AI agents within enterprises. Key concerns identified include establishing clear ownership, enabling secure delegation of tasks, implementing the principle of least privilege, and ensuring robust auditability. Addressing these foundational identity issues is crucial to mitigate production risks as AI agent adoption accelerates. |
| 2026-06-25 | How JFrog and NanoClaw are Bringing Software Supply Chain Security to the Age of Autonomous AI | There’s a category of security risk that most organizations aren’t ready for. It doesn’t live in your code repository, your CI pipeline, or your developer laptops. It lives in your runtime, in the aut... |
| 2026-06-24 | 7 AI Security Testing Tools for LLMs Agents and AI Pipelines (2026) | Library for AI security testing that shifts focus from static code to probabilistic reasoning, addressing vulnerabilities in LLM agents and AI pipelines. It emphasizes behavioral analysis and programmatic adversarial input generation to simulate complex attack scenarios, including multi-turn manipulations and indirect injections that bypass standard filters. The library aims to map entire AI pipelines, providing Code-to-Runtime traceability to distinguish theoretical jailbreaks from high-impact system exposures, and validating security throughout CI pipelines to catch behavioral regressions. |
| 2026-06-24 | I compiled a unified LLM-CTF benchmark – 2,639 real data points from NeurIPS 2024 + original multi-agent runs | I compiled a unified LLM-CTF benchmark – 2,639 real data points from NeurIPS 2024 + original multi-agent runs |
| 2026-06-24 | Biden's AI Executive Order: What it says, and what it means for security teams | Analysis of Executive Order 14110 provides security teams with practical implications for AI development and deployment. Key directives include establishing rigorous NIST standards for red-team testing, prioritizing privacy-preserving techniques, and ensuring equitable AI use in the workforce. For the healthcare sector, it mandates safety programs and responsible AI development. The order also emphasizes fairness in criminal justice applications of AI, impacting areas like risk assessments and predictive policing. |
| 2026-06-24 | The New Security Control Point: Governing AI Agents Inside the Execution Loop | Library for governing AI agent behavior within the execution loop. It secures AI agents by observing actions before and after they occur, offering visibility into decisions made during tasks like executing shell commands, reading files, and making network requests. This session-aware approach enables detection of behavioral risks as agent workflows unfold, moving security closer to the decision point and allowing real-time governance of agent actions based on organizational policy. |
| 2026-06-24 | What nearly 10,000 developer environments reveal about agentic development risk | Analysis of nearly 10,000 developer environments reveals significant risks in agentic development, with 43% of developers using multiple AI coding tools and 50.8% employing MCP servers. These configurations, along with agent skills (used by 22.8%), introduce a new supply chain layer where prompt injection findings and malicious code patterns are already present in active tooling. Traditional AppSec controls need expansion to govern these developer environments, as risks emerge before code commitment, impacting tools like Claude, Cursor, and VS Code extensions. |
| 2026-06-24 | Announcing Agentic Development Security (ADS) | Library for Agentic Development Security (ADS) that secures AI-driven software development by embedding security directly into workflows. It provides visibility, governance, and control over tools agents use, their actions, and generated code. ADS addresses risks from dynamic, multi-step workflows and autonomous agent behavior, moving security from post-code analysis to real-time evaluation of agent supply chains, behavior, and generated code, preventing issues like the deletion of a production database by an AI agent with improper credentials and no guardrails. |
| 2026-06-24 | Stop Treating Coding Agent Plugins Like Settings: Introducing Agent Plugins Repositories | Library for managing agent plugin repositories, addressing the security risks of uncontrolled distribution channels like GitHub repos and Slack commands. It highlights that plugins are executable software with no inherent versioning, provenance, or audit trail, making them vulnerable to supply-chain attacks similar to those seen with npm packages and Docker images. The library enables signed, immutable releases, unified access control, complete audit trails, and single-copy storage for agent assets, integrating them into existing CI/CD pipelines and offering a governed alternative to Git for hosting these executable assets. |
| 2026-06-24 | OpenClaw’s Skill Marketplace and the Emerging AI Supply Chain Threat | Analysis of persistent malicious skills on ClawHub reveals three distinct AI supply chain threat categories: infostealers like macOS cluw, evasion techniques involving inflated file sizes, and novel agentic threats including runtime affiliate injection and front-running for financial gain. This research identified five unblocked skills, which were subsequently reported and removed, highlighting the evolving risks in AI agent ecosystems beyond traditional software supply chain vulnerabilities. |
| 2026-06-23 | Assessing Automated Prompt Injection Attacks in Agentic Environments | Analysis of automated prompt injection attacks against LLM agents, adapting white-box GCG and black-box TAP methods within the AgentDojo framework. The study found black-box optimization significantly outperformed gradient-based methods, with TAP's effectiveness influenced by the attacker model's general capability and safety tuning. Task-universal attacks transferred effectively to unseen domains, but attacks optimized on smaller models did not transfer to frontier models like GPT-5, indicating a model-dependent threat. |
| 2026-06-23 | Wiz Enhances AI-SPM Support for Amazon Bedrock | Library enhancing AI-SPM support for Amazon Bedrock. This offering provides AI-BOM visibility into Amazon Bedrock custom models and fine-tuned jobs, visualizing the model, training data, and access. It includes out-of-the-box configuration rules to assess Amazon Bedrock setup and detect misconfigurations, such as the absence of customer-managed encryption keys. Additionally, it extends attack path analysis to Amazon Bedrock, correlating vulnerabilities, misconfigurations, identities, data, and secrets to prioritize critical AI risks for secure generative AI application development. |
| 2026-06-23 | Wiz AI-SPM extends support to Microsoft Azure OpenAI Service models | Tool for Cloud Security Posture Management (CSPM) that extends support to Microsoft Azure OpenAI Service models. Wiz AI-SPM offers full visibility into AI pipelines and risks within Azure AI Services, including misconfiguration rules, detection of toxic combinations, and attack path analysis to identify potential lateral movement. It provides agentless inventory of all Azure AI services and technologies, allowing security teams to manage their use and map them on the Wiz Security Graph for end-to-end pipeline visibility. |
| 2026-06-23 | Why You Need a Security Companion for AI-Generated Code | Library that emphasizes a holistic DevSecOps approach for AI-generated code, highlighting that GenAI assistants like Copilot can introduce numerous vulnerabilities, including CWE-78: OS Command Injection, CWE-330: Use of Insufficiently Random Values, and CWE-703: Improper Check or Handling of Exceptional Conditions. This library addresses the increased developer confidence in insecure AI-produced code and the critical need for faster, more intuitive security solutions to complement AI-driven development, ensuring secure coding practices without hindering productivity. |
| 2026-06-22 | OrcaRouter Releases AI Threat Report 2026 and Makes Its Security Controls Free Amid Rise in Prompt-Injection Attacks | Report detailing the rise of prompt-injection attacks as the top risk to LLM applications, with OrcaRouter Security Research releasing its agent Firewall and input/output Guardrails for free. The report highlights incidents like EchoLeak (CVE-2025-32711) and chained CVE-2026-39987 exploitation, noting traditional security tools' inability to address these architectural vulnerabilities. OrcaRouter's gateway-level controls provide six layers of security, including scoped identity, input/output guardrails, and an action firewall, to mitigate risks across content and action planes, and align with upcoming regulations like the EU AI Act. |
| 2026-06-22 | Improve MTTR with Wiz’s AI-powered remediation guidance using Microsoft Azure OpenAI service | Library that leverages Azure OpenAI Service for AI-generated remediation guidance. This feature enhances attack path analysis by correlating risks from the Wiz Security Graph and then uses GenAI models to provide tailored, copy-pasteable remediation steps for various environments including CLI, Terraform, and CloudFormation. This aims to significantly reduce Mean Time to Remediate (MTTR) and makes security more accessible to non-security teams. |
| 2026-06-22 | Wiz Research finds architecture risks that may compromise AI-as-a-Service providers and consequently risk customer data; works with Hugging Face on mitigations | Writeup of AI-as-a-Service infrastructure risks, detailing how Wiz Research collaborated with Hugging Face to address vulnerabilities. The analysis highlights shared inference infrastructure takeover via malicious, pickle-serialized models and potential CI/CD pipeline compromise through malicious AI applications. These findings underscore the critical need for robust tenant separation and security practices within rapidly growing AI platforms to protect sensitive customer data and models from cross-tenant attacks. |
| 2026-06-22 | Boosting efficiency with Wiz's AI-driven remediation steps powered by Amazon Bedrock | Integration leveraging Amazon Bedrock provides AI-driven remediation guidance to enhance security and reduce mean time to remediate (MTTR). This solution analyzes Wiz Issues, which detect risks like vulnerabilities and misconfigurations, and generates actionable, copy-paste remediation steps for tools such as CLI, Terraform, and CloudFormation, empowering both security teams and developers to address risks efficiently. |
| 2026-06-22 | 4 Advantages of using AI code review | Library for AI-powered code review that augments manual efforts to identify security vulnerabilities, performance bottlenecks, and code smells. It enhances Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) by analyzing vast codebases rapidly, reducing human error, and boosting developer productivity. Techniques like deep learning and pattern recognition help find known and unknown issues, with a human-in-the-loop approach to minimize false positives and negatives, exemplified by Snyk Code's AI semantic analysis. |
| 2026-06-22 | Nightfall AI and Snyk unite to deliver AI-powered secrets scanning for developers | Library integrating Nightfall AI's advanced secrets scanning with Snyk's developer security platform. This partnership enables automated detection of PII, PHI, PCI, API keys, and other sensitive data across cloud environments and AI-generated code. Nightfall's AI-native capabilities offer over 100 data type detectors, context-aware alerts to reduce false positives, and developer-centric remediation, enhancing Snyk's ability to secure the software supply chain and application security posture. |
| 2026-06-21 | The risk in malicious AI models: Wiz Research discovers critical vulnerability in AI-as-a-Service provider, Replicate | Library detailing a critical vulnerability in Replicate, an AI-as-a-service provider. The vulnerability, discovered by Wiz Research, allowed for remote code execution via a malicious Cog container. This RCE enabled attackers to access a shared Redis instance, then use TCP injection via tools like `rshijack` to bypass authentication and inject Lua scripts. These scripts could modify customer prompts and redirect webhook notifications, potentially leading to cross-tenant data leakage and interference with AI model predictions. |
| 2026-06-21 | Wiz AI-SPM model scanning: Securely innovate with AI community models | Library for scanning hosted AI models, including PyTorch and Tensorflow formats sourced from Hugging Face or elsewhere. This library detects malicious models, such as those using pickle files for arbitrary code execution, and provides visibility into AI pipelines with an AI Bill of Materials (AI-BOM). It addresses supply chain risks associated with open-source models and offers runtime protection against suspicious model behavior. |
| 2026-06-21 | GenAI risks to be aware of — and prepare for — according to Gartner® | Report from Gartner identifies four major security risks associated with Generative AI (GenAI) and Large Language Models (LLMs): privacy and data security due to inadequate anonymization and third-party sharing; enhanced attack efficiency through sophisticated "smart malware" and automated attacks; misinformation spread via realistic synthetic content; and fraud and identity risks from deepfakes undermining biometric authentication. The report suggests vendors should integrate GenAI security considerations into product strategies to address these emerging threats and opportunities. |
| 2026-06-21 | SAPwned: SAP AI vulnerabilities expose customers’ cloud environments and private AI artifacts | Library for auditing SAP AI Core, exposing a vulnerability chain dubbed "SAPwned." This chain allows arbitrary code execution within SAP AI Core pods, bypassing network restrictions via `shareProcessNamespace` and `runAsUser`. Exploitable findings include leaked AWS tokens from Loki, unauthenticated EFS shares with customer AI data, and an unauthenticated Helm server compromising internal Docker registries and Artifactory. The Helm server also provides cluster-admin privileges on the Kubernetes cluster, enabling access to customer secrets, cloud credentials for AWS and Azure, and private AI artifacts. |
| 2026-06-21 | Is your team on the *security* naughty or nice list? | Library for application security teams, this guide highlights "nice" practices like conducting AppSec gap analyses, integrating security into CI/CD pipelines, scanning AI-generated code, and prioritizing fixes holistically beyond just CVSS scores. It contrasts these with "naughty" approaches such as ad hoc security measures, assuming AI code is secure, and neglecting asset inventory. The library emphasizes viewing security as an enabler, using the principle of least privilege with LLMs, and leveraging tools like Snyk for AppSec posture management (ASPM). |
| 2026-06-21 | How to choose a security tool for your AI-generated code | Guide on selecting security tools for AI-generated code, emphasizing real-time IDE analysis powered by Snyk's DeepCode AI, accurate risk management avoiding AI hallucinations through hybrid AI and human oversight, thorough interfile analysis of entire applications, and automated in-platform reporting for compliance. The guide highlights Snyk's approach to secure development workflows for generative AI. |
| 2026-06-21 | 3 tips from Snyk and Dynatrace’s AI security experts | Talk from Snyk and Dynatrace AI experts highlights three key takeaways for secure generative AI adoption. Prioritizing AI governance, involving cross-functional teams for ethics, request ingestion, and communication is crucial. Taking a patient and considered approach to new technologies is advised, with a focus on understanding data flow, explainability, and transparency in AI tools. Finally, balancing AI opportunities with risks in development necessitates rigorous code security practices, including threat management scanning and clear documentation of AI-generated code, to avoid vulnerabilities and data overexposure. |
| 2026-06-21 | Snyk & Atlassian: How to embed security in AI-assisted software development | Library that integrates with AI-assisted development to address risks from tools like GitHub Copilot and Amazon CodeWhisperer. It scans AI-generated code in real-time within the IDE, flagging vulnerabilities stemming from bad training data or hallucinations, and provides quick fixes. The library is presented as a method to verify code against known standards, ensuring trust and security are embedded throughout the SDLC, much like safety measures on a construction site. |
| 2026-06-20 | Essential AI Tools to Boost Developer Productivity and Security | Library that categorizes AI developer tools, highlighting Security Companions like Snyk Code for real-time analysis of AI-generated and developer-written code. It also details Coding Assistants (GitHub Copilot, Amazon CodeWhisperer), Chatbots/LLMs (ChatGPT, Claude.AI), AI code search (Sourcegraph, Phind), and AI code testing (Codium), emphasizing the need to pair coding assistants with security tools. |
| 2026-06-20 | 5 security best practices for adopting generative AI code assistants like GitHub Copilot | Checklist for safely adopting generative AI code assistants like GitHub Copilot and Amazon CodeWhisperer. This guide emphasizes continuous human validation of AI-generated code, integrating security scanning tools within the IDE, and utilizing Software Composition Analysis (SCA) for third-party dependencies. It also highlights the importance of automating security testing and implementing policies to protect intellectual property from being learned by AI models, referencing incidents like Samsung's ChatGPT ban. |
| 2026-06-20 | How Snyk ensures safe adoption of AI | Library that uses DeepCode AI, a hybrid approach combining symbolic and machine learning AI, to secure AI-generated code. This technology analyzes code in real-time within the IDE, identifying vulnerabilities like those introduced by tools such as Copilot. It provides accurate results with reduced false positives by incorporating multi-file, interfile, and dataflow analysis, and offers AI-generated fix candidates that are validated for security before recommendation, mitigating risks of license infringement, IP violations, and software vulnerabilities. |
| 2026-06-20 | Introducing Snyk’s partnership with Gemini Code Assist | Library integrating Snyk's security expertise with Google Gemini's AI coding assistance. This partnership delivers automated fixes and in-line security feedback for AI-generated code within IDEs like Google Cloud Code, providing full application context to identify vulnerabilities early. It leverages DeepCode AI for SAST and aims to accelerate development velocity without compromising security, allowing teams to adopt AI coding assistants confidently. |
| 2026-06-20 | How SAS secures their AI-generated code | Talk from Snyk, moderated by Clinton Herget and featuring Brett Smith and Chris Knackstedt, addresses the security challenges of AI-generated code. The session explores risks such as code quality issues stemming from diverse training data, new attack vectors like prompt injection and library squatting, and AI hallucinations. It emphasizes the importance of developer education regarding AI tool limitations and IP protection, alongside reinforcing traditional security measures like static code analysis (SAST) with tools like Snyk Code to combat the increased velocity of vulnerable code injection. |
| 2026-06-20 | An investigation into code injection vulnerabilities caused by generative AI | Analysis of 4000+ Python repositories reveals code injection vulnerabilities (CWE-94) stemming from generative AI's large language models (LLMs). Issues arise from treating LLM output as trusted, particularly when user input influences prompts (prompt injection) and when LLM responses are passed to insecure functions like Python's `eval()` for parsing expected JSON. This can lead to arbitrary code execution. Recommendations include replacing `eval()` with `json.loads()` and rigorously validating LLM-generated code before execution, ideally within sandboxed environments. |
| 2026-06-19 | Agentic Security Threats: Prompt Injection Becomes Live Malware | Library for detecting and mitigating agentic security threats, specifically focusing on LLM prompt injection. It details the evolution of promptware into live malware, citing examples like IDPI, Check Point's Skynet sample, EchoLeak (CVE-2025-32711), and ESET's PromptLock. The resource outlines the seven-stage promptware kill chain, highlighting tactics such as indirect injection, runtime abuse, and package compromise. It also covers defensive measures including retrieval boundaries, architectural separation, adversarial training, and enhanced monitoring, along with skill development pathways like the AI Ethical Hacker™ certification. |
| 2026-06-19 | Wiz Research Finds Critical NVIDIA AI Vulnerability Affecting Containers Using NVIDIA GPUs, Including Over 35% of Cloud Environments | Library detailing CVE-2024-0132, a critical container-escape vulnerability in the NVIDIA Container Toolkit that allows attackers to gain full host system access. This affects AI applications using GPUs within containers and is particularly concerning for shared compute environments like Kubernetes. Organizations are advised to update the NVIDIA Container Toolkit to version 1.16.2 and the NVIDIA GPU Operator to version 24.6.2 to mitigate this risk. |
| 2026-06-19 | Tricks and Treats: Top 3 GenAI Security Best Practices for a Safer Halloween | Analysis of GenAI security risks including data poisoning, model theft, and adversarial attacks. Best practices focus on eliminating shadow AI through an AI Bill of Materials (AI-BOM), safeguarding sensitive data with encryption and DLP policies, and establishing a swift incident response plan. This addresses supply chain attacks in libraries like lottie-player and enhances cloud-native security for serverless containers. |
| 2026-06-19 | Introducing the next generation of AI-powered remediation: Choose your own remediation strategy | Library that uses GenAI and Wiz Research's expertise to generate granular, contextual remediation guidance for cloud security issues, including "toxic combinations." It allows users to select remediation strategies based on risk, cloud context, and business needs, breaking down complex issues into actionable steps. The system accounts for various risk factors like misconfigurations, vulnerabilities, and external exposure, offering tailored advice for patching vulnerabilities, scoping access, removing exposure, and reducing permissions. |
| 2026-06-19 | Introducing new Amazon Q Developer plugin for Wiz | Library extends Amazon Q Developer with a Wiz plugin, bringing Wiz's Cloud-Native Application Protection Platform (CNAPP) capabilities directly into the AWS console. This integration allows AWS developers to query their cloud security posture using natural language, gaining immediate insights into risks such as critical attack paths and the riskiest assets. By democratizing security and reducing operational overhead, the plugin empowers developers to uphold security best practices and prioritize remediation efforts effectively without leaving their familiar AWS environment. |
| 2026-06-19 | The President’s Executive Actions on AI Have a Lot to Say on Cybersecurity | Analysis of the President's Executive Order on AI and NSPM-11, highlighting shifts from static compliance to risk-based vulnerability prioritization. CISA's BOD 26-04 mandates rapid remediation of actively exploited vulnerabilities, replacing older directives like BOD 22-01 and BOD 19–02. This framework emphasizes context-driven assessment and AI-enabled defensive tools for faster detection, investigation, and remediation, influencing federal contracts and private sector partnerships. |
| 2026-06-19 | DevOpsDays Singapore 2024: Unmasking the security pitfalls in AI-generated code | Talk from DevOpsDays Singapore 2024 highlights security challenges in AI-generated code. Tools like Copilot, AWS Code Whisperer, and Gemini can increase development speed but may introduce vulnerabilities such as SQL injection and XSS, or use outdated libraries. An analysis showed 40% of Copilot-generated code had flaws. Live demonstrations illustrated how AI can both introduce and help fix these security issues with proper prompting. Security tools like Snyk, integrating into development environments, are crucial for scanning and remediating these vulnerabilities early in the SDLC. |
| 2026-06-19 | More accurate than GPT-4: How Snyk’s CodeReduce improved the performance of other LLMs | Library that enhances LLM performance for security vulnerability autofixing. It employs proprietary CodeReduce technology, which utilizes program analysis to narrow the LLM's attention to critical code snippets, significantly improving fix generation accuracy and speed. This approach addresses LLM limitations by focusing on curated security fix datasets and contextual code, outperforming existing models like GPT-4 on various vulnerability types including AST, Local, FileWide, SecurityLocal, and SecurityFlow issues. |
| 2026-06-19 | 5 tips for adopting AI code assistance securely | Library of security tips for adopting AI code assistants like GitHub Copilot and Amazon CodeWhisperer. It emphasizes integrating human oversight, using separate security tools for scanning AI code, validating third-party dependencies with Software Composition Analysis (SCA), automating security testing within development workflows, and protecting intellectual property by carefully managing AI prompts to prevent data leakage. |
| 2026-06-19 | Secure AI tool adoption: Perceptions and realities | Survey of 459 IT professionals globally, including AppSec, developers, and C-suite, reveals that while organizations feel ready for generative AI coding tools, less than 20% conduct formal POCs. Security fears are the biggest adoption barrier, yet AppSec teams express greater concern about AI code security and insufficient policies compared to management. The report highlights a discrepancy in AI readiness perceptions across roles, with leadership being more optimistic than those directly involved with code. |
| 2026-06-19 | The full Snyk AI Security Platform, free for open source maintainers | Platform offering open source maintainers free access to the Snyk AI Security Platform. It focuses on issue prioritization using exploitability, reachability, and asset criticality, alongside automated fix pull requests for vulnerable dependencies via the Snyk Remediation Agent, which uses frontier-model reasoning for validated, merge-ready fixes in Snyk Open Source and Snyk Code. |
| 2026-06-19 | [tl;dr sec] #333 - Perplexity's Bumblebee, Evading Cloud Logging, AI Vuln Hunting Spec | Library for detecting malware in packages, agent configurations, and browser extensions, alongside techniques for evading cloud logging, and a specification for building custom AI security scanning systems. It details how formal methods are becoming more practical for AI-generated code, and how Microsoft's Agentic Secret Finder reduced false positives in GitHub's AI secret scanning by 75% through context extraction. The entry also covers the discovery of HTTP/2 Bomb, a DoS vulnerability affecting multiple web servers, and methods for disrupting AWS CloudTrail logging and abusing cloud logging services for defense evasion and visibility. |
| 2026-06-19 | Aikido and OWASP bring agentic Code Audit to the global AppSec community | Library offering agentic Code Audit powered by AI reasoning, allowing OWASP individual members 200 free credits for pentester-grade analysis. This new class of static analysis reasons about code intent to find complex vulnerabilities like insecure direct object references (IDORs), broken access controls, multi-step exploit chains, business logic flaws, authentication bypasses, and privilege escalation, going beyond traditional SAST pattern matching. It supports various languages, configurations, infrastructure-as-code, and diverse repository structures like monorepos and mobile apps. |
Supply Chain +45
| Date | Resource | Summary |
|---|---|---|
| 2026-06-25 | GitHub Actions Supply Chain Flaw Exposes Microsoft and Google to Free-Account Hijack | A critical vulnerability in GitHub Actions' supply chain has been discovered, potentially allowing attackers to hijack free user accounts on major platforms like Microsoft and Google. The flaw, detailed in a linked article, could enable unauthorized access and control over accounts that utilize GitHub Actions for their development workflows. This highlights a significant security risk within the widely used CI/CD platform. |
| 2026-06-25 | Hackers Poisoned 170 Popular npm and PyPI Packages in a 5-Hour Blitz TanStack Mistral AI UiPath Hit | Hackers Poisoned 170+ Popular npm and PyPI Packages in a 5-Hour Blitz, TanStack, Mistral AI, UiPath Hit https://ift.tt/rT9tVOE |
| 2026-06-25 | GitHub Actions Updates Checkout to Block Forked Pull Request Supply Chain Attacks in CI/CD Workflows | GitHub Actions Updates Checkout to Block Forked Pull Request Supply Chain Attacks in CI/CD Workflows https://ift.tt/zqshREt |
| 2026-06-25 | ShapedPlugin Pro WordPress Plugins Supply Chain Attack: Credential Theft Backdoors and Mitigation Guidance | ShapedPlugin Pro WordPress Plugins Supply Chain Attack: Credential Theft, Backdoors, and Mitigation Guidance https://ift.tt/m9CTdb5 |
| 2026-06-25 | Compromised GitHub action codfish/semantic-release-action steals CI/CD secrets | codfish/semantic-release-action was compromised on June 24, 2026. Attackers repointed v2–v5 tags to a Miasma credential-stealing payload targeting CI/CD secrets. Here's what happened and how to check ... |
| 2026-06-24 | Exclusive: Meet AIVEX a New Triage Model Built to Reduce Supply Chain Threat and Risk | Library extension AIVEX, an addition to CycloneDX VEX, transforms context-rich data from a safety relevance interpretation layer (SRIL) into a machine-readable format. SRIL enriches vulnerability data with four dimensions: safety domain classification, lifecycle stage mapping, consequence severity modification, and exploitability in context. This combination addresses the inadequacy of traditional SBOMs, VEX, and CVSS scores for triaging vulnerabilities in AI-driven systems, particularly those controlling physical robots, by providing crucial operational context to risk assessments. |
| 2026-06-24 | Cordyceps CI/CD Flaws Expose 300 GitHub Repositories to Supply-Chain Attacks | Writeup of Cordyceps, a CI/CD vulnerability pattern exposing hundreds of GitHub repositories including those from Microsoft, Google, Apache, and Cloudflare to supply-chain attacks. Exploitable by unauthenticated users, this flaw grants attackers full repository control, enabling credential theft, code execution, and command injection. Novee Security discovered this issue stems from weak CI/CD configurations allowing untrusted pull requests to trigger privileged workflows, demonstrated by attacks on Azure Sentinel and Google's AI Agent Development Kit. |
| 2026-06-24 | Preventing Future Supply Chain Attacks: The OX Guide to Version Pinning Installation Cooldown and Defense in Depth | Guide detailing defense-in-depth strategies against software supply chain attacks, focusing on strict version pinning for deterministic build pipelines, installation cooldowns to avoid the "golden hour" of malicious package distribution, and disabling package hooks with flags like –ignore-scripts. It emphasizes treating lockfiles as the absolute source of truth using exact-match commands like `npm ci`, and enforcing namespace scoping with private registries, offering an alternative to default auto-resolve behaviors that accelerate upstream malware delivery. |
| 2026-06-24 | LastPass Customer Data Exposed in Klue Supply Chain Attack | Klue has confirmed a supply chain attack that resulted in the exposure of LastPass customer data. The breach, which exploited a vulnerability in a third-party software used by Klue, allowed attackers to access sensitive information. Details regarding the exact nature of the exposed data and the number of affected customers are still being investigated. No bug bounty payout amount is mentioned in the provided content. |
| 2026-06-24 | LastPass says supply chain attack exposed customer data | LastPass has announced a supply chain attack has compromised customer data. Attackers gained access to a third-party cloud storage environment containing production backups of LastPass customer information. This data includes company vault information, and for some users, the content of their password manager vaults. The company is urging all users to reset their LastPass master password and to change their passwords for any critical sites. |
| 2026-06-24 | Priorities from the OpenSSF Secure Open Source Software Summit 2023 | Guide for securing OSS repositories, developed from OpenSSF Secure Open Source Software Summit 2023 priorities. It offers practical guidelines for GitHub and GitLab platforms, complementing OpenSSF Scorecard. This resource helps developers, maintainers, and organizations implement better security for SCM workflows, permissions, and policies. |
| 2026-06-24 | Cybersecurity Venture’s 2023 Software Supply Chain Attack Report | Report on the 2023 Software Supply Chain Attack, predicting escalating costs to $138 billion by 2031. This analysis highlights the increasing effectiveness of supply chain attacks, citing methods like social engineering and stolen credentials, and referencing the devastating SolarWinds incident. It underscores the growing reliance on complex ecosystems of software and dependencies, leading to a projected tripling of affected organizations by 2025. The document stresses the urgent need for proactive application security measures and developer involvement to mitigate these rising risks. |
| 2026-06-24 | When a vendor's breach becomes yours: lessons from the Klue incident | Analysis of the Klue incident highlights risks inherent in SaaS ecosystems, where a compromise of one vendor can impact numerous connected customers like Salesforce. The incident stemmed from an abandoned, unrevoked integration credential, allowing attackers to harvest OAuth tokens and exfiltrate customer data. This demonstrates how a single weak link can cascade through interconnected systems, impacting vendors such as Recorded Future, Tanium, Huntress, and Jamf, and underscoring the importance of managing third-party access and dormant credentials. |
| 2026-06-24 | 5 Socket security alternatives and why they are better | Library comparing Socket security alternatives, highlighting Aikido Security as a stronger option. It notes Socket's strengths in behavioral package analysis for supply chain attacks, but points out limitations in providing actionable fixes beyond upgrades, managing alerts across multiple repositories, and install-time protection bypasses. Socket also lacks container scanning, runtime protection, comprehensive license detection, and broader AppSec capabilities like SAST, DAST, or IaC scanning, leading to potential tool sprawl and increased incident risk. |
| 2026-06-24 | Aikido x Drydock | A way for maintainers to catch malware before it ships | Library for maintainers that integrates with Drydock to review staged package releases for malware before publishing. It analyzes staged npm packages by downloading tarballs, diffing them against previous versions, and flagging security-relevant changes like new lifecycle scripts, unexpected files, or network-accessing code. For PyPI or non-staged npm packages, it operates as a GitHub Actions gate. The tool supports npm and PyPI at no cost, allowing maintainers to catch malicious code before it enters public repositories. |
| 2026-06-23 | Klue investigating supply chain attack that targeted Salesforce integrations | Klue is investigating a supply chain attack that compromised Salesforce integrations. The incident highlights the risks associated with third-party applications and their access to sensitive data. While the full scope of the breach is still being assessed, the focus is on understanding the vulnerabilities exploited and the potential impact on organizations using these integrated services. Klue's investigation aims to identify the perpetrators and implement measures to prevent future occurrences. |
| 2026-06-23 | GitHub Updates actions/checkout to Block Common Pwn Request Attack Patterns | Library update from GitHub's `actions/checkout` v7 blocks common pwn request attack patterns by default in `pull_request_target` and `workflow_run` workflows when processing pull requests from forks. This change prevents the execution of malicious code with elevated privileges, safeguarding against vulnerabilities exploited in recent attacks like the compromise of Nx build system packages, PostHog, and TanStack. Developers should still review workflows, restrict permissions, and avoid executing untrusted code, as this update focuses specifically on checkout behavior. |
| 2026-06-23 | LastPass confirms data breach in Klue supply chain attack | Writeup detailing the LastPass data breach resulting from a Klue supply chain attack. Hackers, identified as the Icarus extortion group, leveraged compromised legacy credentials to access Klue's infrastructure, stealing OAuth tokens that provided access to LastPass's Salesforce environment. Exposed customer data includes names, phone numbers, email addresses, physical addresses, and support case information, potentially leading to phishing and social engineering attacks. LastPass has taken steps to mitigate the incident, including disabling access to Klue and rotating exposed tokens. |
| 2026-06-23 | What the Miasma campaign reveals about the new supply chain threat model and the underground market for developer credentials | What the Miasma campaign reveals about the new supply chain threat model and the underground market for developer credentials https://ift.tt/v3N6PkL |
| 2026-06-23 | ShapedPlugin Supply Chain Attack Backdoors Pro Plugin Updates | Writeup of the ShapedPlugin supply chain attack, where attackers compromised the vendor's build pipeline to inject backdoor code into Pro plugin updates for products like Real Testimonials Pro and Product Slider Pro between April and June 2026. The malware establishes a two-stage infection, including a self-deleting loader and a sophisticated payload that disguises itself, creates a REST API backdoor, bundles file managers, installs webshells, and bypasses logins. Notably, it exfiltrates Two-Factor Authentication TOTP seeds, making password rotation insufficient. Forensic evidence suggests a CI/CD pipeline compromise, with C2 infrastructure linked to Russian-based entities. |
| 2026-06-23 | Black Duck named a Leader in the first-ever Gartner Magic Quadrant for Software Supply Chain Security | Black Duck has been recognized as a Leader in the inaugural Gartner Magic Quadrant for Software Supply Chain Security. This designation highlights Black Duck's strengths in the emerging field of securing software development and delivery pipelines. |
| 2026-06-23 | Microsoft blames North Korean group for attack on AI development packages | Microsoft has identified a North Korean hacking group as responsible for a recent cyberattack targeting AI development packages. The group, known as Lazarus, is suspected of exploiting vulnerabilities in these packages to gain unauthorized access. This incident highlights the increasing sophistication of state-sponsored cyber threats, particularly those targeting emerging technologies like artificial intelligence. The specific impact and any associated payout amounts for this incident were not disclosed in the provided information. |
| 2026-06-23 | Weak Hash vulnerability discovered in crypto-js and crypto-es (CVE-2023-46233 & CVE-2023-46133) | Library for detecting the "Use of Weak Hash" vulnerability (CVE-2023-46233 & CVE-2023-46133) affecting crypto-js and crypto-es. These libraries, particularly crypto-js due to its discontinued maintenance, are susceptible to brute-force attacks when using PBKDF2 with insecure SHA1 and low iteration counts. Updated versions address this by increasing iterations to 250000, mitigating risks to stored passwords and signatures. |
| 2026-06-23 | Secure your software supply chain with the new Snyk Vulnerability Intelligence for SBOM ServiceNow integration | Integration that brings Snyk package vulnerability intelligence to SBOMs stored in ServiceNow. This tool identifies vulnerability severity within application and software package contexts, offering fix information and remediation guidance. It automates the creation of application vulnerable items in ServiceNow Vulnerability Response, enabling task assignment, progress tracking, and stakeholder notification. The integration aids in managing risks from zero-day vulnerabilities, such as recent http2 or curl vulnerabilities, and facilitates the analysis of third-party SBOMs for pre-deployment vulnerability assessment. |
| 2026-06-23 | North Korean Hackers Poison Mastra AI Framework | Library compromising AI frameworks: North Korean hackers, attributed to BlueNoroff, compromised the Mastra AI framework by planting credential-stealing code in over 140 npm packages. This supply-chain attack leveraged a hijacked npm maintainer account to publish malicious versions of packages, including a typosquat of the dayjs library. The compromised code contained a postinstall hook that disabled TLS verification, established command and control communication, and deployed Node.js and PowerShell backdoors to exfiltrate credentials, cryptocurrency wallet information, and browser data. |
| 2026-06-22 | Hackers hijacked Hola Browser for secret crypto mining | Writeup of a supply chain attack that compromised Hola Browser (version 1.251.91.0) to secretly mine Monero cryptocurrency on user devices. The malicious `me{.}exe` file bypassed Microsoft Defender exclusions, disguised itself as `HolaMonitorService{.}exe`, and established a persistent background service, only activating when the computer was idle. The attack highlights the risks of software supply chain vulnerabilities and the importance of keeping applications updated. |
| 2026-06-22 | ShapedPlugin WordPress Pro Plugins Backdoored in Supply Chain Attack | Writeup on a supply chain attack impacting ShapedPlugin's Pro WordPress plugins, specifically Product Slider Pro for WooCommerce (CVE-2026-49777), Real Testimonials Pro, and Smart Post Show Pro. Threat actors injected backdoor code into official update channels, leading to credential theft, arbitrary file writes, and data exfiltration including `wp-config.php` contents and WooCommerce order data. The incident, tracked as CVE-2026-10735, affects licensed Pro versions distributed via account.shapedplugin[.]com. |
| 2026-06-22 | Homebrew to Packages: No ID No Service | Library update details Homebrew 6.0.0's new supply-chain security measures, which mimic npm's approach by requiring explicit user trust for third-party repositories and blocking untrusted installation scripts. This includes a "Guestlist" of pre-approved remote URLs and a `trusted` flag for state management, alongside Bubblewrap integration for sandboxing builds on Linux. Package maintainers and CI/CD pipelines may need to update installation instructions and scripts. |
| 2026-06-22 | North Korean hackers behind supply chain attack on AI platform: Microsoft | Library of over 140 compromised JavaScript packages, attributed to North Korean actor Sapphire Sleet, targeting the Mastra AI framework for data theft and cryptocurrency wallet reconnaissance. Microsoft's analysis indicates a financially motivated campaign by DPRK operators, impacting the software supply chain to gain access to sensitive financial information. |
| 2026-06-22 | Security Posture Management for GitHub: spotting and fixing risks in your GitHub organization just got a lot easier | Library for Security Posture Management for GitHub, this tool identifies and mitigates risks from misconfigured GitHub organizations, repositories, and branches. It evaluates misconfigurations, identity, and secrets, alongside cloud context, to prioritize attack paths impacting your VCS. Customers can measure their posture against the OpenSSF's Source Code Management Best Practices Guide by assessing their GitHub instance against over 30 configuration rules. |
| 2026-06-22 | Defense in depth: XZ Utils | Tool for detecting and mitigating CVE-2024-3094, a backdoor affecting XZ Utils. This application uses agentless scanning and SBOM search to identify exposure, and offers CLI scanning and runtime policies for prevention. It also leverages Linux sensors for detecting post-exploitation activity. |
| 2026-06-22 | Finding the needle in the haystack: effortless SBOM search in your cloud with Wiz | Tool for cloud SBOM search, Wiz enables users to locate specific libraries and packages across their cloud environments. It helps identify obsolete or vulnerable components, such as the xz-utils backdoor (CVE-2024-3094), and the resources they are installed on. This visibility aids in risk assessment, remediation planning, and compliance by providing a comprehensive view of deployed software, including versions like Log4j and OpenSSL. |
| 2026-06-21 | Microsoft Links Mastra AI npm Supply Chain Attack to North Korean Sapphire Sleet Hackers | Microsoft has linked the Mastra AI npm supply chain attack to North Korean hackers, identified as Sapphire Sleet. This group, also known by other aliases, is accused of compromising an npm package to inject malicious code, potentially impacting developers using the Mastra AI tool. The attack highlights the ongoing threat of sophisticated supply chain compromises orchestrated by nation-state actors. |
| 2026-06-21 | npm Supply Chain Attack: North Korea Backdoored 144 AI Packages in 88 Minutes | Library for detecting and mitigating npm supply chain attacks, as demonstrated by North Korea's Sapphire Sleet group. The attack compromised 144 @mastra AI packages by exploiting dormant account permissions and npm's semantic versioning to inject a malicious easy-day-js package with a postinstall hook. This hook deployed a cross-platform RAT to steal LLM API keys, cloud credentials, and cryptocurrency wallets, bypassing traditional CVE-based scanners. Detection and mitigation strategies include behavioral supply-chain monitoring, with tools like Socket and StepSecurity's Harden Runner offering protection. |
| 2026-06-21 | Kroger’s approach to supply chain security | Library integrating a shift-left approach to software supply chain security, utilizing Snyk Code and APIs for proactive vulnerability detection and SBOM generation. Kroger’s implementation emphasizes developer efficiency and risk management, with features that scan pull requests, alert on suspicious package downloads, and automate compliance for PCI DSS 4.0 requirements. The platform supports the company’s efforts in navigating complex technology stacks and addressing open-source dependency risks. |
| 2026-06-20 | Microsoft links Mastra AI supply chain attack to North Korean hackers | Analysis of the Mastra AI supply chain attack, attributed to North Korean threat actor Sapphire Sleet (BlueNoroff), details a compromise of over 140 npm packages. Attackers hijacked an npm maintainer account to publish malicious updates, introducing a typosquatted dependency, "easy-day-js," which acted as a malware dropper. This dropper targeted Windows, Linux, and macOS systems, aiming to steal credentials, API keys, and cryptocurrency wallets, including those from MetaMask, Phantom, and Coinbase Wallet, utilizing tactics previously associated with Sapphire Sleet campaigns. |
| 2026-06-20 | Supply chain attack hits widely-used AI package risks impacting thousands of companies | Library compromise targeting LiteLLM versions 1.82.7 and 1.82.8 highlights the risks of supply chain attacks. Malicious code within these versions was designed to exfiltrate sensitive data, including cloud credentials and API keys, and maintain persistence. This incident, attributed to a group called TeamPCP, emphasizes the potential for widespread impact, affecting developers, organizations, and downstream users due to LiteLLM's extensive use in AI systems and cloud environments. |
| 2026-06-20 | GitHub “besieged” by malware repositories and repo confusion: Why you'll be ok | Library for securing open-source development against threats like malware repositories, repo confusion, typosquatting, and dependency confusion. It emphasizes code vetting, repository authentication, and provides best practices for developers and security teams. Tools like Snyk Advisor and Snyk Learn are mentioned for assessing package health and improving security knowledge. |
| 2026-06-20 | Securing your SBOM on Google Cloud | Guidance on securing SBOMs details NSA recommendations for open source software management, secure repository creation, and crisis management. Practices include evaluating OSS, risk assessment, maintaining internal repositories, vulnerability response, and creating validated SBOMs with details on components, versions, and licenses. Snyk integrates with Google Cloud services like CloudBuild, Artifact Registry, and GKE to help users find and fix vulnerabilities, scan containers, and generate enriched SBOMs. |
| 2026-06-20 | The XZ backdoor CVE-2024-3094 | Analysis of CVE-2024-3094, a critical backdoor in the liblzma library affecting Linux distributions like Debian and Fedora. The exploit, a sophisticated supply chain attack, targeted x86-64 Linux systems using glibc and GCC, aiming to bypass SSH authentication and potentially achieve remote code execution. The vulnerability leverages modified build files and the GNU C Library's IFUNC mechanism to compromise OpenSSH. Detection methods using Snyk CLI for applications and containers are also outlined. |
| 2026-06-19 | VS Code 1.123 Adds Two-Hour Extension Update Delay to Limit Supply Chain Attacks | Library introducing a two-hour delay for VS Code extension auto-updates to mitigate supply chain attacks, following similar cooldown mechanisms in package managers like Pip and npm. While this new protection aims to provide a window for detecting malicious updates, it notably exempts "trusted publishers." Critics suggest the delay is too short, with alternative proposals including sandboxing extensions and staged rollouts. The change offers teams disabling auto-updates more control via policy-based allowlists or internal marketplaces. |
| 2026-06-19 | Cybersecurity Firms Impacted by Klue Supply Chain Attack | Writeup of the Klue supply chain attack, detailing how threat actors compromised Klue's backend servers to steal OAuth tokens for customer integrations, impacting cybersecurity firms Huntress and Recorded Future. The attack primarily targeted Salesforce data, exfiltrating CRM information, business contacts, and price quotes. The incident bears similarities to previous attacks on Salesloft, Drift, and Gainsight, and is attributed to the Icarus extortion group. |
| 2026-06-19 | Supply chain attack on lottie-player: everything you need to know | Library compromise impacting lottie-player versions 2.0.5 through 2.0.7. Malicious code injected via a compromised npm token allowed attackers to serve Web3 wallet connection prompts, aiming to steal cryptocurrency. Organizations like 1inch were affected, with at least one reported loss of 10 Bitcoin. Developers should audit dependencies and update to version 2.0.8 or revert to 2.0.4. |
| 2026-06-19 | npm v12’s Biggest Security Change: From Implicit to Explicit Trust | Library introducing explicit trust for npm package installations in v12, blocking script execution, Git repositories, and remote URLs by default, requiring explicit approval. This change directly addresses common malware delivery mechanisms exploited in campaigns like Shai-Hulud variants and easy-day-js, which leveraged lifecycle scripts, Git dependencies, and remote URLs to steal credentials and compromise developer environments. |
| 2026-06-18 | Supply-chain malware is evolving into self-propagating worms | Library catalog entries for Shai-Hulud demonstrate how supply-chain malware has evolved into self-propagating worms that exploit developer workflows. This new class of malware, unlike traditional single-point compromises, automates credential theft, package infection, and republishing across ecosystems like npm, PyPI, and GitHub. This worm-like behavior turns dependency chains into active propagation mechanisms, posing significant risks by extending compromises into CI/CD pipelines and cloud services, necessitating robust security measures such as securing developer environments, tightening credential management, strengthening dependency controls, and improving pipeline visibility. |
API Security +34
| Date | Resource | Summary |
|---|---|---|
| 2026-06-25 | 25-Year-Old Vulnerability in cURL Used by 30 Billion Devices Finally Patched | 25-Year-Old Vulnerability in cURL Used by 30 Billion Devices Finally Patched https://ift.tt/ScLJbuf |
| 2026-06-25 | Agentic Red-Team Tools Expose API Keys Sandbox Escape and Host Compromise Risks | Agentic red-team tools pose significant risks by exposing API keys, enabling sandbox escapes, and potentially leading to host compromises. This highlights vulnerabilities in how these tools are developed and deployed, creating opportunities for attackers. The article, linked via ift.tt/OandJ1k, details these security concerns. No specific bounty payout amounts were mentioned in the provided content. |
| 2026-06-25 | Setting secure defaults on AWS and avoiding misconfigurations | Wiz cloud security researcher, Scott Piper, suggests measures organizations can adopt to ensure secure defaults on AWS and improve their security posture. |
| 2026-06-25 | Wiz ❤️ HashiCorp: Wiz’s new integration with Terraform Run Tasks helps customers slash risks and boost developer productivity | Mutual Wiz and HashiCorp customers can leverage this integration to scan their IaC configuration and enforce security best practices to reduce risk. |
| 2026-06-25 | See and Secure Everything at the Edge with Wiz and Akamai | Wiz and Akamai have integrated to provide enhanced visibility and security for edge computing. Akamai's edge configurations are now visible on the Wiz Security Graph, offering a unified view of risk across the entire environment, from the edge to runtime. This collaboration aims to empower security teams with comprehensive insights, enabling them to better understand and mitigate potential threats at the edge. |
| 2026-06-25 | Wiz at Wiz: Reducing Risk through Service Ownership | How Wiz security uses Service Catalog to turn cloud risk into service ownership |
| 2026-06-25 | Introducing Wiz Audit History: Track Every Change Across your Environment | Wiz Audit History is now generally available, offering a continuous, cross-cloud timeline of changes to resource configurations and findings. This new feature aims to accelerate incident response and simplify compliance efforts by providing a comprehensive record of all alterations within an environment. Users can track every change made, enhancing visibility and control over their cloud resources. |
| 2026-06-25 | ServiceNow Confirms Vulnerability Allowing Unauthorized Access to Customer Instance Tables | ServiceNow Confirms Vulnerability Allowing Unauthorized Access to Customer Instance Tables https://ift.tt/CZIae95 |
| 2026-06-24 | Red-Team AI Tool Vulnerabilities Let Attackers Exfiltrate API Keys and Compromise Operators' Systems | Vulnerabilities in a red-team AI tool allowed attackers to exfiltrate API keys and compromise operator systems. The specific tool and its functions are not detailed in the provided information. The content highlights a security risk associated with AI-powered security tools, indicating that even systems designed for defense can be exploited. No specific bounty payout amount was mentioned. |
| 2026-06-24 | API Vulnerability Could Have Let Attackers Hijack FIFA World Cup Broadcast Streams | A critical API vulnerability discovered by Google Cloud security researcher, Natalie Timms, could have allowed attackers to hijack FIFA World Cup broadcast streams. The flaw in the content delivery network (CDN) infrastructure used by FIFA's streaming provider enabled unauthorized access and manipulation of video streams. While the specific payout amount is not mentioned, the potential impact of this vulnerability was significant, raising concerns about media integrity and broadcast security during the high-profile event. |
| 2026-06-24 | Dify flaws expose cross-tenant AI data Zafran says | The article reports that vulnerabilities within the Dify platform have been discovered, potentially exposing AI data across different tenants. This means that one user's data could be accessible to another. The severity of the issue highlights a significant security risk for Dify users. No specific bug bounty payout amount is mentioned in the provided content. |
| 2026-06-24 | Top 10 Application Security Tools for Enterprises in 2026 | Guide to the top 10 application security tools for enterprises in 2026, featuring Checkmarx One, Veracode, and Wiz Code, detailing their capabilities in identifying and remediating vulnerabilities across the SDLC, supporting AI-generated code, and integrating with cloud environments. It highlights selection criteria such as core functionalities, usability, integrations, pricing, and customer support, while also discussing the growing importance of appsec tools in addressing the security implications of widespread AI adoption in coding. |
| 2026-06-23 | 4 vulnerabilities in Dify expose cross-tenant data | Writeup on four Dify vulnerabilities, DifyTap, impacting cross-tenant data security. These include critical flaws CVE-2026-41947 and CVE-2026-41948, enabling unauthenticated data exfiltration and arbitrary endpoint access via path traversal. CVE-2026-41949 and CVE-2026-41950 allow unauthorized document previewing and file reading. The report also notes Dify's extended use of a vulnerable PDFium binary and challenges in detecting these issues with standard container security scanners due to unpackaged code. |
| 2026-06-23 | DifyTap Flaws Allow Attackers to Wiretap AI Data Across Tenants | This article highlights critical security vulnerabilities in DifyTap, an AI application development platform. These flaws allow attackers to potentially intercept and access sensitive AI data belonging to different tenants, a serious breach of data isolation. The content does not mention any bug bounty payout amounts. |
| 2026-06-23 | OpenAI Releases GPT5.5Cyber With Full Automation for Vulnerability Detection and Patching | OpenAI has launched GPT-5.5-Cyber, an advanced AI model designed for fully automated vulnerability detection and patching in cybersecurity. This new system aims to significantly enhance security by identifying and fixing security flaws without human intervention. The release signifies a major step towards proactive and self-healing cybersecurity infrastructure, promising to streamline threat response and strengthen defenses against evolving cyber threats. |
| 2026-06-23 | OpenAI expands Daybreak debuts GPT-5.5-Cyber to accelerate software defense | OpenAI has announced the expansion of its Daybreak program with the introduction of GPT-5.5-Cyber. This new AI model is designed to enhance software defense capabilities by accelerating the process of identifying and mitigating security vulnerabilities. The expansion of Daybreak and the debut of GPT-5.5-Cyber signify OpenAI's commitment to leveraging advanced AI for cybersecurity applications, aiming to provide more robust and proactive solutions for protecting software systems. |
| 2026-06-22 | AI-Powered iOS Applications Expose LLM API Credentials Through Network Traffic | AI-powered iOS applications are inadvertently exposing sensitive Large Language Model (LLM) API credentials within their network traffic. This vulnerability allows attackers to potentially gain unauthorized access to these APIs, leading to misuse or data breaches. Developers are urged to implement robust security measures to prevent the leakage of such credentials in their applications. |
| 2026-06-21 | WordPress Email Plugin Flaw Triggers 17 Million Attacks: Gravity SMTP Leaks Live API Keys | Library for WordPress email plugins, specifically addressing CVE-2026-4020 in Gravity SMTP, which allowed unauthenticated retrieval of sensitive configuration data including live API keys for services like Amazon SES, Google, Mailjet, Resend, and Zoho. This vulnerability, despite its medium severity rating, led to over 17 million exploit attempts, exposing credentials and site software versions to attackers for potential further exploitation. |
| 2026-06-21 | Hackers Exploit Klue Integration to Steal Salesforce CRM Data Using OAuth Tokens | Hackers are exploiting a vulnerability in the Klue integration with Salesforce CRM to steal sensitive data. The attackers are leveraging compromised OAuth tokens to gain unauthorized access to Salesforce accounts. This allows them to exfiltrate customer information and other critical business data stored within the CRM. The exploit highlights the risks associated with third-party integrations and the importance of securing OAuth tokens. |
| 2026-06-21 | Hackers Exploit Gravity SMTP WordPress Plugin Vulnerability | Hackers are actively exploiting a vulnerability in the Gravity SMTP WordPress plugin. The exploit allows them to send emails from compromised websites without the site owner's knowledge, potentially for phishing or spam campaigns. This poses a significant security risk to websites using the affected plugin. Users are advised to update to the latest version to patch this vulnerability and protect their sites. |
| 2026-06-21 | Custom runtime rules and runtime response policies: new layers of defense | Library introducing custom runtime rules and runtime response policies for cloud environments. These features enhance defense-in-depth by providing real-time threat detection through flexible rule creation based on process execution, network connections, DNS queries, network listening, and actors. Matches can trigger alerts, update security graphs, or initiate automated response policies, which can block high-certainty threats to mitigate damage and reduce manual effort. |
| 2026-06-21 | How Wiz customers are flippin' vulnerabilities this July 4th weekend | Library demonstrating how three companies, Schrödinger, Schibsted, and a financial services firm, achieved zero critical cloud vulnerabilities by leveraging Wiz for enhanced visibility, proactive remediation, and DevSecOps integration. The approach includes using the Wiz Command Line Interface for early detection, integrating with JIRA for issue tracking, centralizing security across multiple brands, and automating security settings via API queries, enabling cross-team collaboration and informed risk prioritization. |
| 2026-06-21 | Enhance existing security workflows with high-fidelity cloud security data from Wiz in ServiceNow | Library for integrating Wiz's cloud security data into ServiceNow, enhancing existing IT, vulnerability response, compliance, and configuration management workflows. This integration populates ServiceNow Vulnerability Response with enriched vulnerability fields, Container Vulnerability Response with container image context, Configuration Compliance with misconfiguration findings mapped to frameworks, and the CMDB with accurate cloud inventory via a Service Graph Connector. It also generates tickets in ServiceNow ITSM for issue tracking and remediation, enabling teams to prioritize and fix cloud security issues with greater context and efficiency. |
| 2026-06-21 | Your control tower to secure code across GitHub, GitLab, and Azure Repos | Library that unifies code security across GitHub, GitLab, and Azure Repos. It leverages a Security Graph for holistic visibility, detailed ownership mapping, and risk prioritization. Wiz scans code for vulnerabilities, IaC misconfigurations (Terraform, CloudFormation, Kubernetes), secrets, and malware. It also checks VCS configurations against benchmarks like OpenSSF SCM Best Practices and OWASP TOP10 CI/CD. WizCLI integrates with CI/CD pipelines, offering a unified policy engine and consolidated findings for secure code delivery. |
| 2026-06-21 | Build and deploy a Node.js security scanning API to Platformatic Cloud | Library for building a Node.js security scanning API using Platformatic and Fastify. This resource details how to scaffold a Node.js service with Platformatic, integrate the Snyk CLI and API for vulnerability detection, and create a POST endpoint to test npm packages. It emphasizes securing API tokens using environment variables and IDE extensions like the Snyk VS Code extension for secret detection. |
| 2026-06-20 | Mass Exploitation of Gravity SMTP Plugin Exposes Enterprise API Keys Globally | Tool for mass exploitation of Gravity SMTP plugin, registered as CVE-2026-4020, which leaks enterprise API keys globally. The vulnerability arises from an unauthenticated API endpoint that unconditionally returns "true" for permission checks, allowing attackers to retrieve detailed server configurations including web server versions, document roots, and active extensions. This high-fidelity reconnaissance data, alongside exposed API credentials for services like AWS, Google, Mailjet, and Zoho, facilitates targeted attacks and the weaponization of trusted email supply chains. |
| 2026-06-20 | JetBrains Plugin Security Alert: 70000 Installs Linked to AI Key Theft | A JetBrains plugin with over 70,000 installations has been identified as a security risk, potentially stealing AI API keys. The plugin's malicious code was designed to exfiltrate sensitive authentication credentials. Users are strongly advised to uninstall the plugin immediately and to change their AI API keys. This incident highlights the importance of careful vetting of third-party software, especially in development environments where sensitive data is handled. No bounty payout amount is mentioned in the provided content. |
| 2026-06-20 | Hackers Exploit Gravity SMTP WordPress Plugin Bug to Expose API Keys | Writeup of CVE-2026-4020 in Gravity SMTP, a WordPress plugin that allows unauthenticated attackers to extract API keys and system details via an exposed REST API endpoint. Exploited versions can reveal sensitive data including PHP and web server versions, active plugins, WordPress configuration, and credentials for email integrations like Amazon SES and Google. Attackers leverage this information for further compromise. A patch is available in version 2.1.5. |
| 2026-06-20 | Avoiding security incidents due to request collapsing | Library for mitigating security incidents caused by request collapsing in web caching, a feature of caching services like Amazon CloudFront that can return sensitive data intended for one user to multiple others. This behavior occurs when multiple identical requests for the same cache key arrive before the first response is returned, leading to delayed requests receiving a response that should not have been cached, even when Cache-Control: no-cache is used. The library suggests using the "CachingDisabled" managed cache policy or setting minimum TTL to 0 and configuring the origin to send Cache-Control: no-cache. |
| 2026-06-20 | Node.js Fixes 12 Vulnerabilities Including 2 High-Severity Authentication Bypasses | Node.js has released security updates addressing 12 vulnerabilities. Two of these are high-severity authentication bypass flaws. While the specific payout amounts for these vulnerabilities are not mentioned, the fix addresses critical security weaknesses in the Node.js runtime, enhancing its overall security posture. Users are advised to update to the latest versions to protect against these newly resolved issues. |
| 2026-06-19 | API Sprawl | Analysis of API Sprawl discusses the security risks and inefficiencies arising from unmanaged and undocumented APIs. Fueled by factors like decentralized development, microservices architectures, and DevOps practices, API sprawl leads to an expanded attack surface, with instances of shadow and zombie APIs posing significant threats. Organizations like Imperva report having more active APIs than they are aware of, contributing to an average of 10% to 20% more. This proliferation, highlighted by SALT's survey showing 57% of organizations suffering API-related data breaches, underscores the urgent need for robust API management and governance to mitigate security vulnerabilities and costs. |
| 2026-06-19 | Node.js Releases Security Updates for 12 Vulnerabilities Two Rated High Severity | Node.js has released security updates addressing 12 vulnerabilities, with two classified as high severity. These updates are crucial for maintaining the security and integrity of applications built with Node.js. Users are strongly advised to apply these patches promptly to mitigate potential risks associated with the identified vulnerabilities. No specific payout amounts were mentioned in the provided content. |
| 2026-06-19 | Hackers Breach Klue Integration to Steal Salesforce CRM Data | Hackers exploited a vulnerability in Klue's integration with Salesforce CRM, leading to the theft of customer data. The breach targeted the connection between the two platforms, compromising sensitive information stored within Salesforce. Further details on the exact nature of the exploited vulnerability and the extent of the data stolen are still emerging. This incident highlights the security risks associated with third-party integrations and the critical need for robust security measures in cloud-based CRM systems. |
| 2026-06-18 | Hackers Exploit WordPress SMTP Plugin With 100000 Installs to Steal Sensitive Data | Hackers Exploit WordPress SMTP Plugin With 100,000+ Installs to Steal Sensitive Data https://ift.tt/7jPmD58 |
Bug Bounty +22
| Date | Resource | Summary |
|---|---|---|
| 2026-06-25 | Exploiting vulnerabilities in Johnson & Johnson web apps | Exploiting vulnerabilities in Johnson & Johnson web apps |
| 2026-06-25 | TryHackMe — Mr. Robot CTF | Full Write-Up | Platform: TryHackMe Room: Mr. Robot CTF Difficulty: Medium Author: Shikhali Jamalzade ( @alisalive ) Date: May 2026 Tags: #CTF #TryHackMe #WordPress #PrivilegeEscalation #PenTest #MrRobot “Give a man ... |
| 2026-06-25 | AI Finds Vulnerabilities. Security Experts Find Impact. | AI assisted a security consultant in 80% of a web application assessment, but human expertise was crucial for the remaining 20% to identify actual vulnerabilities. The AI performed well in initial stages, however, it also generated confident but incorrect explanations. This highlights the continued importance of human judgment in security assessments for identifying genuine threats. The content does not specify a bug bounty payout amount. |
| 2026-06-23 | Midnight Blizzard attack on Microsoft corporate environment: a detailed analysis, detections and recommendations | Analysis of the Midnight Blizzard attack on Microsoft's corporate environment details the APT29 actors' exploitation of a legacy, non-production test tenant account lacking MFA. The attackers leveraged OAuth applications, specifically abusing the `Directory.ReadWrite.All`, `RoleManagement.ReadWrite.Directory`, `Application.ReadWrite.All`, and `AppRoleAssignment.ReadWrite.All` MS Graph permissions, to create a new global administrator user within the production tenant. This allowed them to grant elevated `full_access_as_app` permissions to new malicious OAuth applications, ultimately compromising corporate mailboxes through techniques including password spraying and illicit consent. |
| 2026-06-23 | Our favorite 2023 Snyk Fetch the Flag CTF writeups from the community | Writeups of the 2023 Snyk Fetch the Flag CTF challenges offer insights into solving over 30 hacking puzzles, including web exploitation and cryptography. These community-contributed analyses detail approaches to challenges like "Quick Maths," "GetHub," and "You Wouldn’t Steal A /Flag.txt," providing practical learning opportunities for cybersecurity enthusiasts. |
| 2026-06-23 | Introducing Patch the Planet | Library for coordinating open-source project hardening, "Patch the Planet," leverages frontier models like GPT-5.5-Cyber to discover and fix vulnerabilities. This initiative, involving Trail of Bits engineers and project maintainers, has already addressed issues in 19 projects including cURL, NATS, and pyca. Patches range from bug fixes and new tests to supply-chain improvements and the integration of CI security scanning with tools like zizmor. The program aims to measurably improve the security posture of essential open-source software by focusing on the challenging aspects of vulnerability confirmation, patching, and long-term hardening. |
| 2026-06-22 | Snyk Fetch the Flag CTF 2023 writeup: Audiopolis | Writeup of the Audiopolis challenge from Snyk's Fetch the Flag CTF 2023, detailing a command injection vulnerability in a speech-to-text web application. The writeup explains how to exploit the application by crafting malicious `.wav` files using the `text2wave` program to achieve command execution, ultimately leading to the discovery of the flag. |
| 2026-06-22 | Snyk Fetch the Flag CTF 2023 writeup: Silent Cartographer | Writeup of the Silent Cartographer challenge from Snyk's Fetch the Flag CTF 2023, detailing the exploitation of the Covenant C2 framework. This challenge involves identifying the vulnerable application, leveraging known exploits for default JWT secret key leakage in Covenant versions prior to 0.5, and fabricating a JWT to gain administrator privileges. The writeup further addresses the practical challenge of binding the exploit's new listener to port 80, necessitating the use of a tunneler like Ngrok for successful reverse shell handling. |
| 2026-06-22 | Snyk Fetch the Flag CTF 2023 writeup: Protect The Environment | Writeup of Snyk's Fetch the Flag CTF 2023 "Protect The Environment" challenge, detailing a file inclusion vulnerability. The solution involves bypassing a custom base64 encoding layer on paths to include the `/proc/<pid>/environ` file, exploiting Flask's inability to correctly chroot static files. The writeup notes that PID 1 or enumerated PIDs like 8 (used by Gunicorn workers) are viable targets. |
| 2026-06-22 | Snyk Fetch the Flag CTF 2023 writeup: Honey Baked Messages | Writeup of Snyk Fetch the Flag CTF 2023 "Honey Baked Messages" challenge, detailing the solution involving Hamming codes. The process includes understanding (7, 4) Hamming codes, reading input lines, determining the required parity check matrix (H matrix), and performing error correction on the entire file to extract the flag. A Python script demonstrates the complete solve. |
| 2026-06-22 | Snyk Fetch the Flag CTF 2023 writeup: I Do Math | Writeup of Snyk Fetch the Flag CTF 2023's "I Do Math" challenge, detailing the solution for successful login. Players must authenticate as "admin" with the pin 9007199254740992, which represents JavaScript's MAX_SAFE_INT value. Numbers outside this range prevent successful access. |
| 2026-06-22 | Snyk Fetch the Flag CTF 2023 writeup: Off the SETUID | Writeup detailing the "Off the SETUID" challenge from Snyk's Fetch the Flag CTF 2023. The solution involves exploiting a PHP code injection vulnerability in an HTTP server to gain initial access, followed by a kernel privilege escalation. The escalation leverages a custom `fun_setuid` syscall with a design flaw allowing a NULL pointer dereference, enabling root privileges by manipulating kernel credentials. The writeup also introduces the `memexec` tool for fileless execution of binaries within PHP environments. |
| 2026-06-21 | Introducing the Prompt Airlines CTF: Test Your AI Security Skills | Library for testing AI security skills, the Prompt Airlines CTF challenges participants to identify and exploit vulnerabilities in AI systems. The CTF provides a hands-on environment to explore common AI security risks, including those found in large language models and other AI integrations. Success in the CTF demonstrates proficiency in securing AI applications and understanding their unique attack surfaces. |
| 2026-06-21 | 7 tips to become a successful bug bounty hunter | Guide offering seven tips for aspiring bug bounty hunters, emphasizing starting with Vulnerability Disclosure Programs (VDPs) to hone skills before engaging in competitive bug bounty programs. It advises finding a niche like XSS, SSRF, or IDOR, committing to continuous learning, maintaining consistency, collaborating within the security community, and automating repetitive tasks. The guide also encourages stepping outside comfort zones and taking necessary breaks to avoid burnout. |
| 2026-06-20 | Hacking in the age of AI: LLMs, agentic CLIs and MCP servers for Bug Bounty hunters | This article explores how AI, specifically Large Language Models (LLMs) and agentic CLIs, are transforming bug bounty hunting. It discusses leveraging AI tools for tasks like vulnerability discovery, code analysis, and exploit generation. The content highlights how LLMs can assist in understanding complex codebases and identifying potential weaknesses, while agentic CLIs can automate repetitive security testing processes. The integration of these AI technologies aims to enhance efficiency and effectiveness for bug bounty hunters in the evolving cybersecurity landscape. |
| 2026-06-20 | VulnHub — sunset: dawn | Full Walkthrough | This VulnHub machine, "sunset: dawn" by @whitecr0wz, is a beginner-to-intermediate Debian GNU/Linux 10 machine. The walkthrough details an attack path starting with SMB enumeration. This leads to discovering a writable share, which is directly mapped to a directory used by a root-owned cron job. This vulnerability allows for uploading a reverse shell. No bug bounty payout amount is mentioned. |
| 2026-06-20 | Web-RTA Exam Writeup — Passed | CyberWarFare Labs | The Web-RTA (Web Red Team Analyst) certification from CyberWarFare Labs is a practical, black-box exam focusing on web application penetration testing. It features two live web applications and requires capturing 16 flags, testing real-world vulnerabilities. The exam is designed for beginner to intermediate skill levels and does not include theoretical or multiple-choice questions. No bug bounty payout amount is mentioned in this content. |
| 2026-06-20 | CRTA Exam Writeup — Passed | CyberWarFare Labs | The CRTA (Certified Red Team Analyst) exam from CyberWarFare Labs is a practical, black-box assessment focused on hands-on red teaming. The certification requires users to compromise machines within a live lab environment and collect flags, with no theoretical questions. Success is determined solely by achieving root access and flag retrieval. |
| 2026-06-19 | I Pentested a Real CRM System and Found 4 Critical Vulnerabilities — Here’s the Full Attack Chain | The author, Shikhali Jamalzade, conducted a pentest on a real CRM system with explicit authorization. They discovered and successfully chained four critical vulnerabilities, demonstrating a complete attack path. Sensitive details were redacted to protect the organization. No specific bounty payout amount is mentioned in this excerpt. |
| 2026-06-19 | VulnHub — Shenron: 1 | Full Walkthrough | This VulnHub machine, "Shenron: 1" by Shubham Mandloi, is an easy to medium difficulty Ubuntu 20.04.1 LTS target. The walkthrough details a penetration test starting with credentials found in an HTML comment. This leads to a Remote Code Execution vulnerability via a malicious extension upload within a misconfigured Joomla CMS. The ultimate goal is achieving full root access on the system. |
| 2026-06-19 | Building a Hackbot for Bug Bounties — Auth Testing Subagent Setup | If you have been keeping up with the current state of Bug Bounties on X, you probably heard that some hunters are making small fortunes using their own custom-made hackbots to aid them in Bug Bounty H... |
| 2026-06-19 | Shynet | VERSION 0.13.1 | Library identifying vulnerabilities in Shynet version 0.13.1. Two issues were found: an unauthenticated stored cross-site scripting (XSS) vulnerability (CVE-2026-35508) allowing malicious JavaScript injection into analytics scripts, and an insecure input validation flaw in the password reset feature enabling account takeover via Host header spoofing. |
SSRF +15
| Date | Resource | Summary |
|---|---|---|
| 2026-06-25 | Exploiting web cache poisoning vulnerabilities | Web (or HTTP) caching is a highly adopted practice to effectively optimize web page loading times for clients. However, as with most technologies, when incorrectly implemented, it may open up a new ex... |
| 2026-06-24 | Varonis Reveals SearchLeak Exploiting Copilot Enterprise | Writeup of SearchLeak (CVE-2026-42824), a critical vulnerability in Microsoft 365 Copilot Enterprise, details a three-stage exploit chain. This chain combines Parameter-to-Prompt injection, an HTML rendering race condition, and a Content Security Policy bypass via Bing's image search. The attack leverages these weaknesses to exfiltrate sensitive enterprise data, including emails, two-factor authentication codes, and documents, with a single click. This illustrates a new AI-native attack surface where prompt injection amplifies traditional web vulnerabilities, emphasizing the need for robust vendor mitigations. |
| 2026-06-24 | Hugo | DevOps | Cybersecurity : #CVE-2026-54008 - #SSRF in Open #WebUI. OAuth picture URL redirect validation bypass. #CVSS 8.5. No patch available. Disable #OAuth until fixed. #CVEAlert #OpenWebUI #infosec #devsecops #devops More FREE detailed information on this and other #CVE: | Hugo | DevOps | Cybersecurity 🇱🇻: #CVE-2026-54008 - #SSRF in Open #WebUI. OAuth picture URL redirect validation bypass. #CVSS 8.5. No patch available. Disable #OAuth until fixed. #CVEAlert #OpenWebUI ... |
| 2026-06-24 | PoC Released for Microsoft Exchange Server EWS InstallApp SSRF Vulnerability | PoC Released for Microsoft Exchange Server EWS InstallApp SSRF Vulnerability https://ift.tt/mviylfV |
| 2026-06-24 | Cisco Unified Communications Manager Flaw Exposes Systems to SSRF Attacks and Root Access | A critical vulnerability in Cisco Unified Communications Manager allows unauthenticated attackers to exploit Server-Side Request Forgery (SSRF) attacks, potentially leading to root access. The flaw resides in the Extended Markup Language (XML) processing module. Attackers can craft malicious requests to access internal resources or execute arbitrary commands on affected systems. Cisco has released patches to address this serious security risk. |
| 2026-06-24 | Cisco Unified CM Flaw CVE-2026-20230 Actively Exploited in the Wild | Writeup on CVE-2026-20230, a critical Cisco Unified Communications Manager vulnerability (CVSS 8.6) allowing unauthenticated SSRF and root privilege escalation. Exploitation is confirmed in the wild by Defused Cyber researchers, utilizing public PoC code to write files to the operating system. Mitigation involves disabling the WebDialer service until a patch is available. |
| 2026-06-24 | Attackers exploit Cisco Unified CM flaw weeks after patch release | Writeup on CVE-2026-20230, a critical Server-Side Request Forgery (SSRF) vulnerability in Cisco Unified Communications Manager (CUCM). Attackers are actively exploiting this flaw, which allows unauthenticated remote attackers to write arbitrary files to the underlying operating system and potentially gain root-level access. The vulnerability requires the WebDialer service to be enabled and can be chained with other weaknesses for code execution. Cisco has released patches but offers no workarounds, advising immediate upgrades. |
| 2026-06-24 | PoC Released for Microsoft Exchange EWS SSRF Flaw Targeting Internal Services | A Proof of Concept (PoC) has been released for a Server-Side Request Forgery (SSRF) vulnerability in Microsoft Exchange's Extended Web Services (EWS). This flaw allows attackers to target internal services by exploiting the EWS functionality. The release of a PoC indicates that the vulnerability is now publicly demonstrable, potentially increasing its risk and encouraging its exploitation. No payout amount is mentioned. |
| 2026-06-24 | Hugo | DevOps | Cybersecurity : #CVE-2026-53755 - #SSRF in #Crawl4ai #Docker API. Proxy bypass allows access to internal services & cloud metadata. #CVSS 8.6. No patch available. Disable Docker #API or restrict #network access immediately. #CVEAlert #infosec @Docker #devsecops #devops #sysadmin #k8s more: | Hugo | DevOps | Cybersecurity 🇱🇻: #CVE-2026-53755 - #SSRF in #Crawl4ai #Docker API. Proxy bypass allows access to internal services & cloud metadata. #CVSS 8.6. No patch available. Disable Docker #API... |
| 2026-06-24 | Critical Cisco Unified CM and SME Flaw Enables Remote Attacker to Launch SSRF Attacks | Critical Cisco Unified CM and SME Flaw Enables Remote Attacker to Launch SSRF Attacks https://ift.tt/S7RnOo5 |
| 2026-06-24 | Critical Cisco Unified Communications Manager SSRF Flaw Lets Attackers Elevate to Root | A critical Server-Side Request Forgery (SSRF) vulnerability has been discovered in Cisco Unified Communications Manager (CUCM). This flaw allows unauthenticated remote attackers to elevate their privileges to root access on affected systems. The vulnerability can be exploited by sending specially crafted requests, potentially leading to complete system compromise. Users are advised to consult Cisco's security advisories for the latest information on affected versions and mitigation strategies. |
| 2026-06-23 | The Global Namespace Risk: Universal Bucket Hijacking Technique for Cloud Data Exfiltration | Library detailing a universal bucket hijacking technique that impacts multiple cloud service providers (CSPs) like Google Cloud, AWS, and Azure. This method exploits the global namespace risk of cloud storage bucket names, allowing attackers to delete an organization's bucket and recreate it under their own account, thereby rerouting critical logs and sensitive data exfiltration. The library covers the attack flow, including simulations with Google Cloud Logging, Pub/Sub, and Storage Transfer Service, and the necessary permissions for exploitation. |
| 2026-06-21 | Preventing server-side request forgery in Node.js applications | Tool for preventing server-side request forgery (SSRF) in Node.js applications, detailing how attackers exploit input tampering and URL manipulation to make unintended server requests. It covers basic and blind SSRF types, referencing a significant Amazon breach. Mitigation strategies include using updated libraries, employing firewalls, sanitizing user input, enforcing URL schemas like HTTP/HTTPS, and creating allowlists for trusted domains, exemplified by code adjustments in an Express and Axios application. |
| 2026-06-20 | Arookiech: For the rest of the month I'll keep learning and focusing on the specific attack syntax till I know every bypass and every method to carry it out. #ssrf #bugbounty Then maybe I'll be able to build my own tool to automate it properly Thank you Jesus again and again | Arookiech is dedicating the rest of the month to mastering SSRF attack syntax, including bypasses and execution methods. Their goal is to gain such proficiency that they can develop their own tool for automating these attacks. This focus is part of their bug bounty efforts. |
| 2026-06-19 | Microsoft AntiSSRF Library Blocks Server-Side Request Forgery | Library that validates URLs and network connections for .NET and Node.js applications, mitigating server-side request forgery (SSRF) risks. AntiSSRF acts as a drop-in component, checking untrusted input against policies that can define allowed/denied addresses, block plain-text HTTP, and enforce header requirements, preventing data leakage, service disruption, and remote code execution. |
Python +10
| Date | Resource | Summary |
|---|---|---|
| 2026-06-25 | Langflow RCE Flaw Lets Attackers Execute Arbitrary Python Code Without Authentication | A critical Remote Code Execution (RCE) vulnerability has been discovered in Langflow, a popular tool for building and managing LLM applications. This flaw allows unauthenticated attackers to execute arbitrary Python code on the server hosting Langflow. The vulnerability arises from insecure handling of user-provided inputs, enabling malicious code injection. Exploiting this could lead to complete system compromise. Users are strongly advised to update to the latest version of Langflow to patch this severe security risk. No bug bounty payout amount was specified in the provided content. |
| 2026-06-25 | Hunting Leaked PyPI Tokens: 62 Live, 125 Packages Exposed | We found 62 live PyPI tokens leaking on public sources, enough to push malicious code to 125 packages with 25,000 monthly downloads. We reported them to PyPI, which revoked every one. Here's how we de... |
| 2026-06-23 | AI Patching Reaches Open Source: OpenAI Patch the Planet Targets Python cURL Go | Library for AI-driven vulnerability discovery and patching, Patch the Planet, leverages GPT-5.5-Cyber and Trail of Bits security engineers to identify, validate, and fix issues in open-source projects like cURL, Go, and Python. This initiative addresses the overwhelming influx of AI-generated bug reports by adding a human-review layer for validation and patch development, thereby improving security posture without burdening limited maintainer resources. The project also generates reusable security infrastructure, including fuzzing harnesses and analysis pipelines, benefiting participating open-source communities. |
| 2026-06-23 | File encryption in Python: An in-depth exploration of symmetric and asymmetric techniques | Library for Python file encryption, detailing symmetric and asymmetric techniques. It covers Amazon's Key Management Service (KMS) with the `aws-encryption-sdk` for envelope encryption, and PyNaCl's `SecretBox` for symmetric file encryption and decryption. Additionally, it explores asymmetric encryption using PyNaCl's public/private box, emphasizing secure key management and communication. |
| 2026-06-22 | Code injection in Python: examples and prevention | Library for identifying and preventing code injection vulnerabilities in Python applications. It details common exploitation vectors, including insecure use of `eval()`, improper handling of user-controlled inputs, lack of input validation, dynamic code construction, and insecure deserialization. The library advocates for secure coding practices such as input sanitization, using safer alternatives like `literal_eval()`, parameterized queries, and strong access controls to mitigate these risks. |
| 2026-06-21 | Command injection in Python: examples and prevention | Library for preventing command injection vulnerabilities in Python applications, detailing how unsanitized user input passed to system shells via methods like `os.system()`, `subprocess.run(shell=True)`, dynamic command construction, and `eval()` can lead to exploits. It covers common scenarios, including vulnerabilities found in MLflow and PaddlePaddle, and emphasizes proactive mitigation through rigorous input validation, sanitization, and the use of parameterized queries to keep commands and data separate. |
| 2026-06-21 | Mastering Python virtual environments: A complete guide to venv, Docker, and securing your code | Library for managing Python virtual environments using `venv`, `virtualenv`, and `pipenv`, and securing Dockerized Python applications with Snyk. It details the creation, activation, and usage of isolated Python environments to prevent dependency conflicts, ensuring reproducible development workflows. The library also covers containerizing Python applications with Docker, including Dockerfile creation and execution, and vulnerability scanning with Snyk to enhance application security. |
| 2026-06-19 | The ultimate guide to creating a secure Python package | Guide to creating secure Python packages, this tutorial details package structure, naming conventions, and configuration using `pyproject.toml`. It covers importing, installing from PyPI and private indexes with TLS recommendations, and specifying dependencies like NumPy. Modern packaging practices using `setuptools` as a build backend are emphasized over older `setup.py` methods. |
| 2026-06-19 | Symmetric vs. asymmetric encryption: Practical Python examples | Library implementing symmetric and asymmetric encryption in Python, demonstrating practical use cases with examples for TLS/SSL, end-to-end messaging, and secure data storage. It covers algorithms like DES, 3DES, and AES, with a focus on envelope encryption for secure key management, using AWS KMS and the AWS Encryption SDK for practical implementation. |
| 2026-06-19 | How to secure Python Flask applications | Library for securing Python Flask applications, addressing common vulnerabilities like XSS, CSRF, and SQL injection. It details insecure configurations such as secret key exposure, enabled debug mode in production, and unprotected sensitive data in configuration files. The guide recommends best practices including using environment variables for credentials, securely generating secret keys with the `uuid` module, and utilizing the Snyk platform for vulnerability detection and mitigation within IDEs and CI pipelines. |
XSS +9
| Date | Resource | Summary |
|---|---|---|
| 2026-06-25 | CVE-2026-10086: High-Severity XSS Vulnerability in GitLab Enterprise Edition Analytics Dashboard Analysis Impact and Mitigation Steps | CVE-2026-10086: High-Severity XSS Vulnerability in GitLab Enterprise Edition Analytics Dashboard – Analysis, Impact, and Mitigation Steps https://ift.tt/fxES9A8 |
| 2026-06-24 | Webmin Stored XSS Vulnerability Lets Attackers Exploit Root Users | A stored cross-site scripting (XSS) vulnerability has been discovered in Webmin, a web-based system administration tool. This flaw allows attackers to inject malicious scripts into the application, which can then be executed by other users, including those with root privileges. Successful exploitation could lead to unauthorized actions on the server, data theft, or complete system compromise. Users are strongly advised to update their Webmin installations to patch this critical security issue. |
| 2026-06-24 | Critical Webmin Stored XSS Vulnerability Lets Untrusted Users Exploit Root Accounts | Critical Webmin Stored XSS Vulnerability Lets Untrusted Users Exploit Root Accounts https://ift.tt/8gMoQkc |
| 2026-06-23 | CVE-2026-25860 turn XSS to RCE | CVE-2026-25860 turn XSS to RCE |
| 2026-06-23 | Exploring WebExtension security vulnerabilities in React Developer Tools and Vue.js devtools | Writeup detailing WebExtension security vulnerabilities, including unverified external messages in React Developer Tools (CVE-2023-5654) allowing arbitrary URL fetching and unauthorized access to page capture APIs in Vue.js devtools (CVE-2023-5718) leading to screenshot data leakage. This research highlights risks inherent in the WebExtension architecture and its components, affecting cross-browser compatibility and user data. |
| 2026-06-22 | Exploiting Auth0 Defaults in XSS Attacks - elttam | Writeup detailing how XSS vulnerabilities in applications using Auth0 can be exploited. The article highlights the insecure implicit grant flow, enabled by default in Auth0, and demonstrates how it can be combined with other misconfigurations to pivot across tenant applications. Specifically, it shows how an attacker can leverage XSS to steal access tokens intended for a protected API, facilitating lateral movement within an Auth0 tenant. |
| 2026-06-21 | Understanding and mitigating the Jinja2 XSS vulnerability (CVE-2024-22195) | Reference detailing CVE-2024-22195, a cross-site scripting vulnerability in Jinja2 versions prior to 3.1.3. The vulnerability arises from the `xmlattr` filter when processing user input with spaces in keys, allowing attackers to inject arbitrary HTML attributes and potentially execute untrusted scripts. Mitigation involves upgrading to Jinja2 3.1.3 and utilizing tools like Snyk for continuous monitoring and detection of vulnerable dependencies in Python projects and Docker containers. |
| 2026-06-20 | “Bug Bounty Bootcamp #48: OAuth + XSS ” | This "Bug Bounty Bootcamp #48" article, titled "OAuth + XSS," explores a potent combination of vulnerabilities: OAuth and Cross-Site Scripting (XSS). The content suggests that by leveraging these two, attackers can achieve account takeovers, effectively describing it as an "ultimate account takeover one-two punch." The article is part of a series and can be found on InfoSec Write-ups. No specific bounty payout amount is mentioned. |
| 2026-06-19 | Microsoft's Exchange Server Updates Fix OWA XSS Flaw | Library update for Microsoft Exchange Server addresses CVE‑2026‑42897, a cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA). This flaw allows remote attackers to execute malicious JavaScript by sending specially crafted emails. Updates are available for Exchange Server Subscription Edition, 2019, and 2016, with support requirements for older versions. Administrators should use the Exchange Health Checker script and install the latest cumulative and security updates. |
AuthZ +9
| Date | Resource | Summary |
|---|---|---|
| 2026-06-24 | Wiz launches support for Google Cloud excessive access findings based on audit logs | Library support for Google Cloud excessive access findings analyzes audit logs, providing visibility into over-provisioned permissions and inactive users/service accounts. This enables organizations to enforce the principle of least-privilege access and prevent privilege escalation, even for customers without IAM Recommender enabled or those on lower Security Command Center pricing tiers. Wiz identifies identity risks that can create attack paths, such as publicly exposed compute instances with excessive privileges. |
| 2026-06-23 | Secure non-human identities with Wiz’s newest CIEM dashboard | Dashboard for securing non-human identities, addressing risks like exposed, privileged, or vulnerable service accounts, with 42% of organizations exhibiting such issues. This CIEM tool offers visibility into machine identities, detects risky service accounts, visualizes activity by country, and prioritizes risks. It leverages attack path analysis to identify lateral movement and data access pathways, aiding security teams in multi-cloud environments without requiring deep expertise in each platform. |
| 2026-06-23 | New EKS Access Management and Pod Identity features: a security analysis | Analysis of EKS Access Management and Pod Identity features reveals their impact on existing security controls. These new mechanisms, including "access entries" and "access policies" for cloud-to-cluster interaction, and the "eks-pod-identity-agent" for cluster-to-cloud communication, simplify identity management but introduce new complexities in permission auditing. Understanding the "API_AND_CONFIG_MAP" authentication mode and the union of access rules from both EKS API and `aws-config` is crucial for calculating effective permissions, alongside managing the security of identity tokens against lateral movement vectors. |
| 2026-06-23 | New attack vectors in EKS | Analysis of new EKS attack vectors introduced by EKS Access Entries and Pod Identity, detailing how compromised IAM identities can enumerate accessible clusters via `ListAssociatedAccessPolicies` and `DescribeAccessEntry` APIs. The report further explores privilege escalation possibilities on both cloud and Kubernetes RBAC levels, including scenarios involving `AmazonEKSClusterAdminPolicy`, `AmazonEKSEditPolicy`, and exploitation of exposed secrets or sensitive `ConfigMap` files. |
| 2026-06-23 | NamespaceHound: protecting multi-tenant K8s clusters | Tool for assessing Kubernetes multi-tenant cluster risks, NamespaceHound detects potential namespace crossing violations and anonymous access opportunities. This open-source Python CLI tool analyzes cluster configurations to identify attack paths that could lead to cross-tenant security breaches. It helps cluster operators and red teamers by revealing vulnerabilities, extending the PEACH framework for tenant isolation assessment. |
| 2026-06-20 | Defeating Kubernetes Privilege Escalation: A Cloud Detection & Response Case Study | Case study detailing a real-world attack where adversaries escalated privileges from Kubernetes to AWS control planes. The attack leveraged a newly published RCE CVE on an open-source application running on an EKS pod's EC2 instance, which was misconfigured with internet access. This allowed exploitation to gain access to the EC2 instance IAM role via the Instance Metadata Service (IMDS), highlighting the need for rapid, contextualized cloud detection and response. |
| 2026-06-19 | Data access governance: Who's got the keys to your data kingdom? | Capabilities for data access governance leverage Wiz DSPM and CIEM to discover sensitive data, analyze effective permissions of human and non-human identities, and govern access to critical data across multi-cloud environments, including Snowflake and OpenAI, while identifying and remediating risky identities with access to sensitive information. |
| 2026-06-19 | Preventing broken access control in express Node.js applications | Library detailing broken access control vulnerabilities in Express Node.js applications, covering scenarios like unprotected admin panels, predictable user IDs leading to IDOR, and insecure direct object references. It illustrates how to prevent issues such as vertical privilege escalation and horizontal data exposure, emphasizing the risks of clear text logging and insufficient CSRF protection within Express middleware. |
| 2026-06-19 | I almost ordered a product for free. (Business Logic Vulnerability) | Security engineer Sumeet Mahadik discovered a business logic vulnerability that nearly allowed him to order a product for free. While the exact method isn't detailed, the vulnerability presented an opportunity for significant savings. The content is the beginning of a blog post where Mahadik intends to explain his findings. No bounty payout amount is mentioned. |
SQLi +8
| Date | Resource | Summary |
|---|---|---|
| 2026-06-24 | Getting started with query parameterization | Library for preventing SQL injection attacks by demonstrating query parameterization with prepared statements and stored procedures. It details implementing parameterized queries using placeholders, precompiling statements with `Prepare()` for reuse, and utilizing stored procedures for greater control and security. Additional measures like input sanitization and validation are also discussed to bolster database querying defenses. |
| 2026-06-22 | SQL Injection: Why It Persists and How to Prevent It | Guide to preventing SQL injection, a persistent vulnerability that remains in the OWASP Top 10, detailing its mechanisms like in-band, blind, and out-of-band attacks. It emphasizes parameterized queries as the definitive fix, alongside allow-listing structural query parts, least privilege database accounts, error suppression, and static analysis tools like Semgrep for early detection. The guide also suggests manual testing with single quotes and automated tools like sqlmap for identifying and exploiting potential injection points, referencing CVEs and vendor advisories for known vulnerabilities. |
| 2026-06-22 | Vibe-Coding's Hidden Danger: SQL Injection Risks Go Live | Analysis of SQL injection vulnerabilities in AI-generated "vibe-coding" applications, exemplified by the Boomberg website incident. This highlights how developers using tools like OpenAI, GitHub Copilot, and Google's offerings can inadvertently introduce common security flaws, such as those detailed in the OWASP Top 10, due to a lack of deep understanding of the generated code's underlying security implications. |
| 2026-06-22 | pgAdmin 4 Released With Fixes for Seven Security Vulnerabilities and New Features | pgAdmin 4 has been released with fixes for seven security vulnerabilities. The update addresses issues that could have impacted user security and data integrity. Alongside these crucial security patches, the new version also introduces several new features and improvements, enhancing the overall user experience and functionality of the popular PostgreSQL GUI tool. No bug bounty payout amount was specified in the provided content. |
| 2026-06-22 | pgAdmin 4 Released with Patches for Seven Vulnerabilities and Feature Enhancements | pgAdmin 4 Released with Patches for Seven Vulnerabilities and Feature Enhancements https://ift.tt/XSbOx5u |
| 2026-06-22 | New pgAdmin 4 Version Patches Seven Security Flaws and Adds Features | The latest pgAdmin 4 release addresses seven security vulnerabilities and introduces new features. The update enhances the platform's security by patching these flaws. Specific details on the vulnerabilities patched and the new functionalities are available in the full release notes. No bug bounty payout amounts are mentioned in the provided content. |
| 2026-06-21 | Preventing SQL injection attacks in Node.js | Library for Node.js developers detailing SQL injection prevention techniques, including constructing vulnerable Express applications with PostgreSQL to demonstrate how user input manipulation leads to data leaks. It emphasizes using query placeholders and prepared statements with the `pg` library, validating and sanitizing input via `express-validator`, and utilizing tools like `npm audit` and the Snyk IDE extension for identifying known vulnerabilities in dependencies. |
| 2026-06-19 | AI agent framework flaws hit 7000 servers | Flaws in an AI agent framework have affected approximately 7,000 servers, exposing them to potential security risks. The vulnerabilities could allow unauthorized access or control of these AI systems. |
Authentication +7
| Date | Resource | Summary |
|---|---|---|
| 2026-06-23 | Authentication bypass vulnerabilities in TeamCity: everything you need to know | Writeup detailing CVE-2024-27198 and CVE-2024-27199, critical authentication bypass vulnerabilities in JetBrains TeamCity On-Premises versions prior to 2023.11.4. These flaws allow unauthenticated attackers to gain administrative control by manipulating URLs to access authenticated endpoints, enabling actions like creating new administrator accounts. CVE-2024-27199 also leverages path traversal to modify system settings and leak sensitive information. A security patch plugin is available as a workaround for those unable to immediately update. |
| 2026-06-22 | Secure password hashing in Go | Library for secure password hashing in Go, detailing best practices like salting and the importance of robust hashing algorithms such as Argon2id. It covers password storage concepts, explains attack methods like rainbow tables and brute-force, and provides insights into implementing Argon2id with specific parameters for memory, iterations, and parallelism, emphasizing the need to balance security with performance. |
| 2026-06-22 | Top 3 security best practices for handling JWTs | Guide on securing JSON Web Tokens (JWTs) detailing three core best practices. It emphasizes keeping JWTs secret through HTTPS, HttpOnly/Secure cookie flags, and secure browser storage, while highlighting the risks of XSS. The guide stresses the importance of robust JWT validation, including signature verification, and checking claims like expiration, issuer, and audience. It also advocates for setting expiration times on JWTs to limit their usability and prevent unauthorized access. The article mentions tools like Snyk for identifying vulnerabilities and libraries such as Flask-JWT-Extended and PyJWT for implementation. |
| 2026-06-22 | Common SAML vulnerabilities and how to remediate them | Reference detailing common SAML vulnerabilities and their remediation, including signature validation to prevent XML tampering and XML signature wrapping, weak encryption of assertions, and message expiration using "NotBefore" and "NotOnOrAfter" to prevent replay attacks. It also addresses open redirect vulnerabilities exploitable via the "RelayState" parameter and suggests ensuring its value is a trusted URL before redirection, referencing `samlify` and `python3-saml` libraries. |
| 2026-06-20 | Emerging phishing campaign targeting AWS accounts | Writeup on an emerging phishing campaign targeting AWS accounts, detailing its use of redirect chains via services like squarespace.com and cli.re to reach credential harvesting pages, often visually cloning the legitimate AWS sign-in page. The campaign leverages Amazon SES and CloudFront, with observed attacker-controlled domains including consoleportal[.]tech. It emphasizes securing AWS environments by disabling root logins via SCP, using FIDO security keys for MFA, enforcing SSO, implementing least privilege, and enabling Amazon CloudTrail for logging and impact assessment. |
| 2026-06-20 | AWS Console Session Traceability: How Attackers Obfuscate Identity Through the AWS Console | Writeup on the "Console Conceal" technique, which attackers can use to obfuscate their identity within AWS by manipulating role session names and exploiting a quirk in how AWS Console actions are logged in CloudTrail. This method bypasses standard traceability, making it difficult to attribute actions back to compromised credentials, especially when SourceIdentity is not configured. The analysis details how attackers can assume roles with misleading session names and how security teams can still investigate by correlating actions with the original AssumeRole events. |
| 2026-06-19 | “Bug Bounty Bootcamp #46: Not Allowed From Your IP?” | This article from InfoSec Write-ups, "Bug Bounty Bootcamp #46: Not Allowed From Your IP?", details advanced techniques for bypassing authentication barriers in bug bounty hunting. The methods discussed include IP spoofing, brute-force attacks, and mass assignment, all aimed at gaining unauthorized access. The focus is on exploiting authentication vulnerabilities to overcome access restrictions. No specific bug bounty payout amount is mentioned in the provided text. |
OSINT +6
| Date | Resource | Summary |
|---|---|---|
| 2026-06-24 | Phishing Reconnaissance: How Attackers Identify and Target Vulnerable Domains | Phishing Reconnaissance: How Attackers Identify and Target Vulnerable Domains https://ift.tt/sz2mgJR |
| 2026-06-21 | The 10 Top OSINT Tools of 2026 | Library for Open Source Intelligence (OSINT) gathering, featuring tools like theHarvester for early-stage reconnaissance, Shodan for identifying internet-connected devices, and Maltego for visual data mining and relationship mapping. OSINT Framework serves as a categorized directory, while ShadowDragon's Horizon platform offers advanced intelligence software for professional investigators. These resources help uncover hidden connections and insights from public sources. |
| 2026-06-20 | Phone Numbers and Emails to Hidden Subdomains: The OSINT Acquisition Pipeline That Uncovered a… | Phone Numbers and Emails to Hidden Subdomains: The OSINT Acquisition Pipeline That Uncovered a Critical Bug A deep technical blog on using phone numbers and email addresses to discover hidden domains,... |
| 2026-06-20 | BITSCTF 2026 Writeups | OSINT And Steganography / Forensics Challenges | This summary details solutions for OSINT and Steganography challenges from BITSCTF 2026. Tools like zsteg, cyberchef, reverse image search, strings, and exiftool were employed. One OSINT challenge involved identifying a "major event" in Copenhagen in early 2024, described by unusual geometric structures near a river. The event's difficulty was rated 6.5/10. No bug bounty payout amount was mentioned. |
| 2026-06-19 | Unmasking Phishing: Strategies for identifying 0ktapus domains and beyond | Reference detailing strategies for identifying phishing domains, with a focus on the 0ktapus threat actor. It categorizes and analyzes various Document Object Model (DOM) templates used by 0ktapus, providing unique characteristics, example domains, and activity periods for each. This resource aids in detecting known and unknown phishing campaigns by offering a framework for analyzing phishing infrastructure, including techniques for pivoting between landing pages and identifying specific phishing kits like EIGHTBAIT. |
| 2026-06-19 | BEARCAT CTF 2026 WRITEUPS | Flag Format: BCCTF{} #1.RIVER RAIDER (OSINT) For this challenge, we were given a picture of a rogue pirate ship sailing through a river, and we needed to find the name of the bridge right behind it. I... |
Recon +5
| Date | Resource | Summary |
|---|---|---|
| 2026-06-22 | 4300 Outdated Routers Hijacked in Stealthy Spy Infrastructure by AryStinger malware | Library containing Linux malware AryStinger, which exploits outdated routers via vulnerabilities like CVE-2013-3307 and CVE-2016-5681. The malware establishes a stealthy spy infrastructure for reconnaissance, turning infected devices into "Executors" for tasks like port scanning and subdomain enumeration. A more capable Go build targets NAS devices using CVE-2025-11837, incorporating tools such as fscan and httpx, and featuring ScriptWork for dynamic code execution. AryStinger communicates using Protobuf-encoded traffic with XOR encryption, and uses Dropbear SSH for persistence. |
| 2026-06-22 | Scanning malicious websites with 'infinite' number of VPN tunnels (Part 1) | Library for creating a large number of VPN tunnels to scan malicious websites, leveraging Policy Based Routing and network namespaces. This approach aims to circumvent IP blocking by residential IP filters and other threat actor countermeasures, inspired by a previous system that utilized over 80 concurrent exit nodes. The method is adaptable for modern VPN protocols like Wireguard and addresses challenges in maintaining diverse geographical IP exit points. |
| 2026-06-19 | CVE-2026-5667: Unauthenticated Remote Control of Mitsubishi MAC-577IF-2E WiFi Adapters via Probe Request Reconnaissance | Library for unauthenticated remote control of Mitsubishi MAC-577IF-2E WiFi Adapters, detailing how probe request reconnaissance leads to unauthorized access. The vulnerability, identified as CVE-2026-5667, allows attackers to discover devices broadcasting specific SSIDs, capture half-handshakes, crack passwords, and then exploit HTTP Basic Auth to control air conditioners and other connected Mitsubishi devices, including changing temperature and power states. |
| 2026-06-19 | Making Sense of Kubernetes Initial Access Vectors Part 1 – Control Plane | Library introducing a taxonomy of Kubernetes initial access vectors, focusing on control plane threats like unauthenticated API access, exposed Kubeconfig files, `kubectl proxy`, and misconfigured Kubelet APIs. It details associated risks, including those tied to AKS, EKS, and GKE, and outlines protection and detection strategies. The library also touches on risks from exposed management interfaces like Kubernetes Dashboard and Kubeflow. |
| 2026-06-19 | Making Sense of Kubernetes Initial Access Vectors Part 2 - Data Plane | Library on Kubernetes data plane initial access vectors, detailing risks from applications, container images, and execution-as-a-service. It covers attack paths through vulnerable pods, abuse of RBAC, and system privilege escalation, referencing vulnerabilities like Leaky Vessels and cross-tenant issues found in services like HuggingFace and Replicate. Recommendations include namespace separation, Pod Security Standards, image signature verification, and user namespaces to mitigate lateral movement and privilege escalation. |
Secrets +4
| Date | Resource | Summary |
|---|---|---|
| 2026-06-23 | Monitor sensitive data [3**-** ***7] that resides in code | Library for monitoring sensitive data like PII, PHII, and PCI within codebases, pull requests, and CI/CD pipelines. Utilizing Wiz's DSPM capabilities, it helps reduce accidental data exposure, prevent compliance violations under GDPR, CCPA, PCI-DSS, and HIPAA, and establish organizational baselines. Developers and security teams can leverage the Wiz CLI or version control scanners to identify and remediate sensitive data during the development process. |
| 2026-06-20 | 5 Node.js security code snippets every backend developer should know | Library offering Node.js security code snippets covering the Permissions Model for restricting resource access, exemplified by preventing command injection in packages like `pdf-image`, and input validation using Fastify JSON schemas to mitigate SSRF and HTTP parameter pollution. It also touches upon secure password hashing with Bcrypt, and integrating tools like the Snyk VS Code extension to detect vulnerable dependencies. |
| 2026-06-20 | Threat Brief: Mitigating Large-Scale Credential Attacks | Threat brief on "FortiBleed," a large-scale credential attack campaign targeting Fortinet, MSSQL, and Sophos devices, involving password spraying, configuration extraction, and offline cracking. The brief details threat actor techniques, recommends auditing remote access logs, and provides hardening guidelines such as requiring MFA, adopting Zero Trust Architecture, changing default credentials, disabling unused accounts, and updating software. Palo Alto Networks customers can leverage product protections and consulting services to defend against these attacks. |
| 2026-06-18 | CISA Credentials Sensitive Data Exposed in GitHub Repository | CISA has announced that sensitive data, including credentials, was exposed in a GitHub repository. The agency is investigating the incident, which was discovered on October 26th. CISA states that this data exposure did not impact their operational systems or compromise their mission-critical functions. Further details regarding the scope and specific nature of the exposed data have not yet been released. |
IDOR +3
| Date | Resource | Summary |
|---|---|---|
| 2026-06-20 | Breaking Down Two Simple Vulnerabilities That Exposed A School’s Admission Records | Security researchers discovered data-exposure vulnerabilities on a school's website, revealing sensitive admission records containing PII like names, emails, and addresses. The `/print-form.php?app_number=` endpoint was vulnerable to Insecure Direct Object Reference (IDOR), allowing access to records by manipulating application numbers. |
| 2026-06-19 | Build an IDOR Vulnerability Lab: Why WHERE Clauses Don’t Protect Your API. | Last time we covered SQL injection . I promised IDOR was next. Today you are going to see why a WHERE clause alone will not save you. When you learn about backend APIs feeding your frontend, you are r... |
| 2026-06-19 | “Bug Bounty Bootcamp #47: Account Takeover 101 — How to Steal Everyone’s Account (Legally)” | This article, "Bug Bounty Bootcamp #47: Account Takeover 101," explains that hackers don't need advanced skills to achieve account takeovers. Common vulnerabilities like Insecure Direct Object References (IDOR), insecure invite links, or misconfigured "role" fields can be exploited. The piece encourages readers to learn these techniques legally through bug bounty programs. No specific payout amount is mentioned. |
Talks +2
| Date | Resource | Summary |
|---|---|---|
| 2026-06-22 | Top security talks from KubeCon Europe 2024 | Talks from KubeCon Europe 2024 offer insights into Kubernetes security. Sessions cover threat intelligence frameworks using eBPF, strategies for securing clusters beyond Pod Security Admission, modern container image building techniques, and the realistic abilities and limitations of eBPF. Privilege escalation tactics and post-compromise activities are detailed, alongside methods for gaining initial access to clusters and exploiting managed Kubernetes services like GKE, AKS, and EKS. |
| 2026-06-19 | Securing next-gen development: Lessons from Trust Bank and TASConnect | Talk from Black Hat Asia featuring experts from Trust Bank and TASConnect, discussing strategies for securing next-generation applications. It highlights the challenges posed by complex architectures, AI-generated code (like that from GitHub Copilot and Google Gemini), and multi-cloud deployments. The session emphasizes a proactive, developer-first approach, leveraging tools such as Snyk for immediate feedback and risk prioritization, and tracking key metrics like security training implementation and time to remediate to align security with business goals. |
Burp Suite +1
| Date | Resource | Summary |
|---|---|---|
| 2026-06-25 | I Wasted 3 Days Intercepting a Flutter App. Here’s What Actually Works. | The author spent three days attempting to intercept traffic from a Flutter app for security assessment using various tools and techniques like Burp Suite, Objection, ReFlutter, custom CA installation, VPN interception, and Frida scripts. Despite these efforts, all methods resulted in the app displaying a "no internet" error, rather than typical SSL or certificate warnings. The author found that none of the common approaches were successful in capturing the app's traffic. |
CSRF +1
| Date | Resource | Summary |
|---|---|---|
| 2026-06-24 | How to protect Node.js apps from CSRF attacks | Library for protecting Node.js applications from CSRF attacks, detailing how these vulnerabilities exploit authenticated user sessions. It explains the mechanics of CSRF, the impact of successful attacks including data manipulation and account takeover, and practical protection strategies. Key techniques covered include the Synchronizer Token Pattern (STP), implementing SameSite cookies (strict and lax), and the Double Submit Cookie pattern. |
Fuzzing +1
| Date | Resource | Summary |
|---|---|---|
| 2026-06-23 | OpenAI deploys GPT-5.5-Cyber for open-source vulnerability fixes | OpenAI deploys GPT-5.5-Cyber for open-source vulnerability fixes https://ift.tt/TC32xeh |
GraphQL +1
| Date | Resource | Summary |
|---|---|---|
| 2026-06-19 | CVE-2021-4191: GitLab GraphQL API User Enumeration (FIXED) | Writeup of CVE-2021-4191, a GitLab GraphQL API vulnerability, details how remote, unauthenticated attackers could enumerate usernames, names, and email addresses. This information leak, classified as CWE-359, enables attackers to build user lists for brute-force attacks and sophisticated phishing campaigns. The article discusses the vulnerability's introduction in GitLab versions 13.0, outlines exploitation methods via the `/api/graphql` endpoint, and provides a Python script for user enumeration. Mitigation advice includes patching GitLab instances and disabling public profiles. |