Recent Advisories

Severity ID Title Vendor Product Date Type
HIGH 8.3 MS:CVE-2026-12019

Chromium: CVE-2026-12019 Out of bounds write  Codecs_MS:CVE-2026-12019

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...

N/A N/A MSCVE
NONE THN:5ECAD1271CF...

North Korean Hackers Are Turning Developer Tools Into Malware Delivery Channels_THN:5ECAD1271CF75693FD227FF64E64A476

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiaqLMLYAQa1ICXVdOhmxnFqqoh_YonevmQPjEtYbmqLsdFC7JJnGc_F7K1no96DjZhTicVxI7sJUO04JM3e6...

N/A N/A THN
NONE THN:E5FD7F85C5E...

Chinese Hackers Abused Google Workspace Rules to Steal Research and Defense Emails_THN:E5FD7F85C5EE76073D1CE0837CEF2D0D

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjE7EMoBrh5-6_V336v7LMFfChDVp-Sux8RX-UY5zhONtACR6kiz2w_VQ9o7e8nuqaWCqbxrvzPgSrruvEXN0...

N/A N/A THN
NONE MALWAREBYTES:FC...

Inside a malicious infrastructure delivering EtherRAT, phishing pages, and malicious software_MALWAREBYTES:FCB122BA82E07977E3F393F732A03DA2

During our recent threat hunting activities, we found EtherRAT malware being distributed by a website with a strange homepage. This homepage allowe...

N/A N/A MALWAREBYTES
NONE MSSECURE:A65050...

Microsoft Defender email security benchmarking: Key insights from one year of data_MSSECURE:A650500D4863A9781E2203D208A89002

Microsoft publishes quarterly email security benchmarking data comparing Microsoft Defender against secure email gateway (SEG) and integrated cloud...

N/A N/A MSSECURE
HIGH 8.8 THN:DED9C232B49...

LiteLLM Vulnerability Chain Lets Low-Privilege Users Take Over AI Gateway Servers_THN:DED9C232B49BBF1CB0977760C793F104

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjiH9LcMRhk5Li59rG05yXoOOofNzGpeG1MMSKQqhFCGW_28n0SjLKd9D4MC68N7jPP6dF2h2l8gW1OE7Y7ak...

N/A N/A THN
NONE MALWAREBYTES:BF...

Deepfake porn sites are going offline (re-air) (Lock and Code S07E12)_MALWAREBYTES:BF08B1C9F99DFB1F6F78F43B4FDCFAE4

_This week on the Lock and Code podcast …_ If you weren't taking deepfakes seriously before, it's too late now to ignore them. According to new ...

N/A N/A MALWAREBYTES
NONE MALWAREBYTES:DD...

Claude Fable 5 and Mythos 5 “abruptly disabled” after US gov. ban_MALWAREBYTES:DD733E96F8F10DD6044EE94F4172A510

Anthropic has been ordered by the US government to cut off its newest Claude Fable 5 and Mythos 5 models for fear of abuse by adversaries. Reuters...

N/A N/A MALWAREBYTES
NONE QUALYSBLOG:FAEE...

What Changed in OWASP Top 10 2025 and Recommendations for Each Category_QUALYSBLOG:FAEEFB8C63E738452101F3466498A8D5

##### Key Takeaways * The 2025 list introduces two new categories – Software Supply Chain Failures (A03) and Mishandling of Exceptional Conditi...

N/A N/A QUALYSBLOG
HIGH 7.5 THN:0C053FA1B9E...

One-Click Microsoft 365 Copilot Flaw Could Have Let Attackers Steal Emails, Files_THN:0C053FA1B9E28CFF8B119BFB93E9A94A

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgH3B8zgsVZmHEyLi8McE-eOrGvwf6Uh3zyqWrttvaEddXJCot7sybI1o-Ly5Q1TtuEJx9BzXol3oaXSFdzFi...

N/A N/A THN