Recent Advisories

Severity ID Title Vendor Product Date Type
NONE THN:6EDDB510298...

29-Year-Old Squid Proxy Bug ‘Squidbleed’ Can Leak Cleartext HTTP Requests_THN:6EDDB51029888D4C2E2682D0407BD7BC

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiA4IfKMjQxVhpOYdrcCC4ty0vlGBDg_qCZuuvSTvyVWXYPXQlli7qyCZkPdHHuGJp-HVH1s-HGmf_Zqn97o2...

N/A N/A THN
HIGH 8.3 MS:CVE-2026-12468

Chromium: CVE-2026-12468 Inappropriate implementation in Updater_MS:CVE-2026-12468

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...

N/A N/A MSCVE
HIGH 8.8 MS:CVE-2026-12466

Chromium: CVE-2026-12466 Heap buffer overflow in WebRTC_MS:CVE-2026-12466

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...

N/A N/A MSCVE
NONE IMPERVABLOG:7EE...

On-Premises API Security on Kubernetes: What It Actually Looks Like in Practice_IMPERVABLOG:7EE2F10AC3EAE78AF944E8104F323628

## Let’s Talk About Where Your APIs Actually Run **Quick answer:** On-premises API security keeps API discovery, detection, and enforcement inside...

N/A N/A IMPERVABLOG
NONE HACKREAD:7F9E2B...

Scammers Use Fake GitHub Stars, VirusTotal Reviews to Spread Crypto Clipper_HACKREAD:7F9E2B8D9C7C3249BBB6DCA19290C526

A multi-platform malware campaign abuses fake trust signals to infect Windows and Mac users with a crypto clipper packed with 15,500 attacker wallets.

N/A N/A HACKREAD
NONE MALWAREBYTES:C4...

Document delivery scams: What are they and what’s their goal?_MALWAREBYTES:C4E6AC758E13C3CCBD3552439D46014E

One of Malwarebytes' managers recently received a call from scammers pretending to be a document delivery service. The voicemail sounded official:...

N/A N/A MALWAREBYTES
MEDIUM 4.3 MS:CVE-2026-12446

Chromium: CVE-2026-12446 Insufficient data validation in Passwords_MS:CVE-2026-12446

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...

N/A N/A MSCVE
NONE THN:7B782DD6342...

Google Sets Sept. 30 Deadline for Android Developer Verification in Four Countries_THN:7B782DD6342D0803A9E4F4BA84097D55

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEisV9q8kKe0eopbInTHgwScUvzjKlnPTpk74j7M6F-6BH46hVr9wcadvztA2RYJdKDQDzpV89bN4wH0hEL9qT...

N/A N/A THN
NONE SECURELIST:C973...

A VBScript campaign distributed through WhatsApp deploying RMM software_SECURELIST:C973A43958C0478ADD5CD4F16D3BFD4A

![](https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2026/06/22071117/SL-WhatsApp-VBS-RMM-featured-990x400.jpg) In June 2026, we ...

N/A N/A SECURELIST
NONE HACKREAD:BF0A33...

Salesforce Disables Klue Integration After OAuth Token Theft Hits Customer Data_HACKREAD:BF0A33257D62E5218E319AA6A66E8EB0

Icarus extortion group used a legacy Klue Battlecards credential to bypass security and steal bulk Salesforce records from affected companies.

N/A N/A HACKREAD