category_news - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	HACKREAD:DDBF97...	5,561 GitHub Repositories Hit by Megalodon Supply Chain Attack in Six Hours_HACKREAD:DDBF9773068FE322ED85F247D9279669 SafeDep uncovered the Megalodon attack targeting 5,561 GitHub repositories with malicious CI workflows and cloud credential theft.	N/A	N/A	May 22, 2026	HACKREAD
NONE	SCHNEIER:DF530F...	CISA Security Leak_SCHNEIER:DF530F528E503478E3B4998CF22595F2 Crazy story: > Until this past weekend, a contractor for the Cybersecurity & Infrastructure Security Agency (CISA) maintained a public GitHub repo...	N/A	N/A	May 22, 2026	SCHNEIER
NONE	THN:B715BF86D6D...	Making Vulnerable Drivers Exploitable Without Hardware – The BYOVD Perspective_THN:B715BF86D6D89FC0CAFC530317C003E6 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiUdjbDFZeTbwpdUFibGsmuDSgX_NHbFfTYroqcGYEGB6yvuKR3eUBSHo9XaphMTYmXC3cqmICDOGUjlsBrww...	N/A	N/A	May 22, 2026	THN
NONE	THN:183AC3EA8A4...	Megalodon GitHub Attack Targets 5,561 Repos with Malicious CI/CD Workflows_THN:183AC3EA8A4026154F70C3684DE5DE18 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjC_sjVeLejyyBZJ0DWW2y9-Z2Jvmrzz9h-5XEIKPFTcJvDj49Jlt-z1FNbSp51K9XcQ8FqC9MBDFPPPdZuzR...	N/A	N/A	May 22, 2026	THN
HIGH 9.3	SECURELIST:2FCB...	Cloud Atlas activity in the second half of 2025 and early 2026: new tools and a new payload_SECURELIST:2FCB8D07E3287A4A6D4C4DC2D658F98F ![](https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2026/05/22085059/cloud-atlas-2026-scaled-1-990x400.jpg) In 2025, we observed...	N/A	N/A	May 22, 2026	SECURELIST
NONE	THN:96E878CC719...	Kimwolf DDoS Botnet Operator Arrested in Canada Over DDoS-for-Hire Attacks_THN:96E878CC71987AB6D7C729C400BE873D ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi5VYMnsK-UMv3L8TZp1KhZ4PQti0VtUXkbDREtK-R9Hbtj6bdYrPRwwn8VItL49asZcHEMSOFJyfV25Da96C...	N/A	N/A	May 22, 2026	THN
CRITICAL 9.4	THN:542DCC54A54...	CISA Adds Exploited Langflow and Trend Micro Apex One Vulnerabilities to KEV_THN:542DCC54A54A4BA7149FC37622AFB0AD ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi04a_rowIzNPvHHvDTUE34d3bZlOhBeQXtC0UdXyjlf988G4zVE89QKWqSWASKd2LD0T8O2XhkDVgG7UGFIx...	N/A	N/A	May 22, 2026	THN
NONE	MS:CVE-2026-47280	Azure Resource Manager Elevation of Privilege Vulnerability_MS:CVE-2026-47280 Improper authentication in Azure Resource Manager (ARM) allows an unauthorized attacker to elevate privileges over a network.	N/A	N/A	May 21, 2026	MSCVE
NONE	MS:CVE-2026-26147	Azure Stack HCI Information Disclosure Vulnerability_MS:CVE-2026-26147 Improper input validation in Azure Compute Gallery allows an authorized attacker to disclose information over a network.	N/A	N/A	May 21, 2026	MSCVE
NONE	MS:CVE-2026-35430	Azure Privileged Identity Management (PIM) Elevation of Privilege Vulnerability_MS:CVE-2026-35430 Authorization bypass through user-controlled key in Azure Privileged Identity Management (PIM) allows an authorized attacker to elevate privileges ...	N/A	N/A	May 21, 2026	MSCVE