category_news - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	WIRED:CAC1E18E4...	Android Is Fighting Phone Scams With a New Feature to Prove Who’s Calling_WIRED:CAC1E18E4DDE17F26161566540D00A57 Available for Android 12 and later, the anti-scam feature is baked into Google Dialer, which sends a silent “confirmation signal” to ensure whoever...	N/A	N/A	Jun 2, 2026	WIRED
HIGH 7.5	THN:1DB8C609A00...	Oracle WebLogic CVE-2024-21182 Added to KEV Catalog After Active Exploitation_THN:1DB8C609A0019C07637C95FF2CBAEDDE ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjyTRAA7jrm-wO7d39ZhI2e75GnwqNE6t-CKpScXYfVikGGVRC4fYajbw5kn3aHqZc9rmbdjIqft5nwFLWAxC...	N/A	N/A	Jun 2, 2026	THN
HIGH 8.8	THN:EC1CA545F49...	Gamaredon Exploits WinRAR to Deliver GammaWorm and GammaSteel Against Ukraine_THN:EC1CA545F493C8BBF09867DC93311116 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiIWYqVAlf5o0isz1fGZ_KcAkqIAroOtFMRAvlOMseZrj7e5iLaZ47_92-zoFzN4rtQHJpmGHjMaOShanlb01...	N/A	N/A	Jun 2, 2026	THN
NONE	QUALYSBLOG:1BBF...	The HazyBeacon Protocol – How Malware Weaponizes Amazon Web Services (AWS) Lambda Function URLs_QUALYSBLOG:1BBF6B5B1C7D340BAA7806C60697CFB8 #### Key Takeaways * HazyBeacon (CL-STA-1020) targets Southeast Asian government networks by abusing AWS Lambda Function URLs configured wit...	N/A	N/A	Jun 2, 2026	QUALYSBLOG
NONE	HACKREAD:2E9D50...	Hackers Abused Meta’s AI Support Bot to Hijack Major Instagram Accounts_HACKREAD:2E9D502BFC2B8914062A7FBB82DE7BDF Hackers abused Meta’s AI support bot to hijack major Instagram accounts, bypassing security checks as videos showed the flaw before Meta fixed the ...	N/A	N/A	Jun 2, 2026	HACKREAD
MEDIUM 4.3	H1:3775183	PortSwigger Web Security: Incomplete fix for CVE-2022-35406: meta-redirect content-type check bypassable via parameter injection_H1:3775183 The fix for CVE-2022-35406 (#1541301) stops Burp from following a redirect when the response Content-Type/Content-Disposition would prevent HTML r...	N/A	N/A	Jun 1, 2026	HACKERONE
NONE	HACKREAD:A859BC...	New WordPress Malware Uses Steam Profile Comments to Hide C2 Instructions_HACKREAD:A859BC8DD11318D4E895D6DE1465E49B GoDaddy researchers found WordPress malware using Steam Community profile comments to hide encoded command and control data, with nearly 1,980 site...	N/A	N/A	Jun 2, 2026	HACKREAD
NONE	MALWAREBYTES:46...	23andMe exposed genetic information of millions, lawsuit says_MALWAREBYTES:46EE52F369EEB44D3019F748673C84FE California has sued the former shell of DNA testing company 23andMe over alleged security failures and misleading statements surrounding its 2023 d...	N/A	N/A	Jun 2, 2026	MALWAREBYTES
NONE	SCHNEIER:1ECE26...	Microsoft Threatening Security Researcher_SCHNEIER:1ECE2692DEE62B7F3334654E1470732C An anonymous security researcher called "Nightmare Eclipse" has been publishing a series of significant security exploits against Microsoft Windows...	N/A	N/A	Jun 2, 2026	SCHNEIER
NONE	WIRED:61A3D23A6...	The Manhattan Institute Helped Kill DEI. Now It’s Coming for Protests_WIRED:61A3D23A65282D109ABA0177071B5B53 The right-wing think tank is actively pushing “civil terrorism”—increasing penalties for minor crimes committed while people engage in constitution...	N/A	N/A	Jun 2, 2026	WIRED