CYBERSECZERO-DAY

CISA Adds Two Joomla Zero-Days to KEV Catalog: Deadline July 13

On July 10, 2026, CISA added two actively exploited zero-day vulnerabilities in Joomla extensions to its Known Exploited Vulnerabiliti…

Jul 13, 2026views - 1.4k

malware

RedHook RAT: Android Malware Gains Shell Access Without Root or PC

The RedHook trojan upgrades its arsenal by abusing Wireless ADB, Shizuku, and Accessibility Service to obtain shell privileges on non-…

Jul 12, 2026views - 1.3k

CYBERSECZERO-DAY

ZDI Publishes 0-Day in Glary Utilities: LPE via Junction, No Patch

Trend Micro's Zero Day Initiative has disclosed ZDI-26-402, a local privilege escalation vulnerability in Glarysoft Glary Utilities. T…

Jul 12, 2026views - 1.3k

exploitEXPLOIT

Metasploit Arms FlowiseAI and macOS: Two Exploits Land in the Framework

Metasploit has merged exploit modules for CVE-2026-41264, an unauthenticated RCE in FlowiseAI's CSV Agent, and CVE-2024-27822, a local…

Jul 11, 2026views - 1.3k

cveCRITICAL

Adobe ColdFusion: 10 Critical CVEs With In-the-Wild RCE, Forced Update

Adobe patched 10 ColdFusion vulnerabilities, including CVE-2026-48282 with a CVSS 10.0 score and confirmed exploitation. The legacy RD…

Jul 11, 2026views - 1.3k

ransomware

The Gentlemen Climbs RaaS Rankings: 90% Payout and 580 Victims in One Year

The Gentlemen, tracked as Storm-2697, has become the second most active RaaS operation of 2026 with over 6x growth and a 90% affiliate…

Jul 10, 2026views - 1.5k

ransomware

GodDamn Ransomware Uses Microsoft-Signed Driver to Disable EDR

The GodDamn ransomware, a rebrand of the Hyadina family, leverages the PoisonX driver — signed with a valid Microsoft Windows Hardware…

Jul 10, 2026views - 1k

aiCRITICAL

Friendly Fire: Defensive AI Agents Turn into RCE Attack Vectors

The AI Now Institute's Friendly Fire report, published July 8, 2026, demonstrates that Anthropic's Claude Code and OpenAI's Codex — to…

Jul 10, 2026views - 1.3k

CYBERSECCRITICAL

Zimbra Patches Critical Stored XSS in Classic Web Client, Reported by Google TAG

Zimbra released ZCS 10.1.19 on July 7, 2026 to fix a stored cross-site scripting vulnerability in the Classic Web Client reported by G…

Jul 10, 2026views - 967

blockchain

Ill Bloom: 431 Wallets Drained for $3.1M via Insecure PRNG

The Ill Bloom vulnerability exposed 2,114 crypto addresses due to weak pseudorandom number generators. No patch exists: the only defen…

Jul 10, 2026views - 1.7k

CYBERSECEXPLOIT

Chinese-Linked Cluster Exploits Roundcube to Spy on Strategic Research in North America

Proofpoint has identified UNK_MassTraction, a suspected Chinese cluster, exploiting two Roundcube N-day vulnerabilities to compromise…

Jul 10, 2026views - 1.3k

malware

Operation Muck and Load: 222 GitHub Repositories Weaponized to Distribute Windows Malware

A threat actor built a network of 222 GitHub repositories across 190 accounts to distribute Windows malware via malicious Go modules.…

Jul 10, 2026views - 1.7k