Recent Advisories

Severity ID Title Vendor Product Date Type
NONE MALWAREBYTES:39...

A week in security (May 18 – May 24)_MALWAREBYTES:39B6F132FAAB7B7C24114FA07BFFFA87

Last week on Malwarebytes Labs: * Update Chrome now: Critical bugs could let attackers run code * Microsoft Defender vulnerabilities are being...

N/A N/A MALWAREBYTES
NONE THN:5A78D74D437...

TrapDoor Supply Chain Attack Spreads Credential-Stealing Malware via npm, PyPI, and CratesIO_THN:5A78D74D437AA99549A244FECBD74F10

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjOb58wXNPgRDazHcSLTObawPnMVsCDUEAoFclGVn3CC8qe6Pr_0-Gce-SxCO7FJ5HzU23WE_soU5iTc0zvLL...

N/A N/A THN
NONE HACKREAD:A91B58...

Hacker Selling 340 Million OnlyFans User Records Built From Old Breaches_HACKREAD:A91B58CA97B2EA635D5C6DFE0507CF5E

A hacker is selling a 340M OnlyFans user database allegedly built by matching old breach data and public profiles to real OnlyFans accounts.

N/A N/A HACKREAD
NONE IMPERVABLOG:C03...

Real-Time Webhook Notifications: No More Lost Security Alerts_IMPERVABLOG:C0352C43EEEEF906CB937260B70AED49

Every security team knows the pain: a critical alert lands in someone’s inbox, buried under dozens of other emails, or filtered out by a spam rule....

N/A N/A IMPERVABLOG
HIGH 7.8 MS:CVE-2026-41054

Missing exit out of permission check in haveged could lead to root exploit_MS:CVE-2026-41054

{“lastseen”:”2026-05-24T09:15:35″,”description”:””,”published”:”2026-05-23T08:02:...

N/A N/A MSCVE
NONE THN:1F5DB06F0A1...

npm Adds 2FA-Gated Publishing and Package Install Controls Against Supply Chain Attacks_THN:1F5DB06F0A1CBAE3C17369D47934772C

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi4rnMZgOYbsYr65UN9AZ3oFzcAwqXSYqgRfjUGpeaQeyP-0OAaqJ9aceXPAiujRKwyGQMa_4ShcSvtOWPb9T...

N/A N/A THN
NONE THN:125E85C26B1...

Packagist Supply Chain Attack Infects 8 Packages Using GitHub-Hosted Linux Malware_THN:125E85C26B191619421AFF33782F588B

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiQ5LyRYJIkEVUSrrBV-_qvrXIKC-B4h0JAxyV4IalzuiEzXi6KeCnZNTUWIIld3oeC5kDx85xppqYm9tG_UB...

N/A N/A THN
NONE HACKREAD:D8678F...

RondoDox Botnet Exploits Critical 2018 Vulnerability to Hijack ASUS Routers_HACKREAD:D8678FA7FECB09EEC072D6D2AC211CEA

Cybersecurity firm VulnCheck reveals hackers are using a critical 2018 vulnerability to bypass authentication and hack over a million ASUS routers.

N/A N/A HACKREAD
NONE WIRED:19F6DF013...

The FBI Wants ‘Near Real-Time’ Access to US License Plate Readers_WIRED:19F6DF0137B1A6CDEDF4CD03F67D79AD

Plus: Google publishes a live exploit for an unpatched flaw, the feds arrest two men accused of creating thousands of nonconsensual deepfake nudes,...

N/A N/A WIRED
CRITICAL 9.3 THN:F3DF0F1FAAD...

Claude Mythos AI Finds 10,000 High-Severity Flaws in Widely Used Software_THN:F3DF0F1FAAD5F0559EB7E7FFF600C23D

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjOPcHXcMRS-BJNvy9aeoCz5H2Mmdh6mO6Kl3kM-l216B-3Wc0Iy5wayPkxJ79KtkHx2CGBwDVPMMeuB9E3jQ...

N/A N/A THN