Recent Advisories

Severity ID Title Vendor Product Date Type
NONE THN:425C8F77D2E...

ToddyCat-Linked Umbrij Malware Abuses OAuth to Access Gmail via Google API_THN:425C8F77D2E775E794A788739D4B6222

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhMMnC-1ujLiZRcV1xgXbB3qFoIREcbSiGqLCFID8-G-z8GFI3YEY8VniprVEBW4b4TZKJUvoRDg27elntNJW...

N/A N/A THN
NONE SCHNEIER:E75959...

Cybersecurity Mission Creep in the US_SCHNEIER:E759596C7E656DDAABCCFE50B4F0D1BE

Interesting paper: "Cybersecurity Mission Creep." > **Abstract:** Cybersecurity is experiencing mission creep. Policymakers are casting more and m...

N/A N/A SCHNEIER
NONE HACKREAD:E56D6B...

Sysdig Details JADEPUFFER, the First Documented Agentic Ransomware Operation_HACKREAD:E56D6B8E8719F548D5BBEDBAE6A485A9

A new Sysdig report traces how an LLM agent abused a Langflow flaw, stole credentials, reached production MySQL, and destroyed Nacos config data in...

N/A N/A HACKREAD
NONE THN:952025EBFDC...

Identity Lifecycle Management Wasn’t Built for AI Agents _THN:952025EBFDC8E034F24F24D839ADBC97

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgwwp0Bf4s6Xp_L13nlIV5Pf2D0awJsA5cDdev6yCr9f7nLVbmJmzqJ01cmdJkO4K0E3KEvdHhK10ZDai_tXV...

N/A N/A THN
NONE SECURELIST:EFBE...

Missed incidents, persistent threats, and response gaps: Insights from compromise assessment projects_SECURELIST:EFBEB214C8EF3CBBF2A7335775C7EDB0

![](https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2026/07/02075840/SL-compromise-assessment-featured-990x400.png) The followin...

N/A N/A SECURELIST
CRITICAL 9.8 THN:545A87363DE...

AI Agent Exploits Langflow RCE to Automate Database Ransomware Attack_THN:545A87363DEA6B47B61F5465E5995230

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEirfJNnWRTyyKkXeatZdtLvMsQhba-L0J9yuyASwy4T-6nlbGWnkEl0FUBVO8wS6je9Hc9wPdu01JJ0TETOa1...

N/A N/A THN
NONE THN:C9A1143D73F...

New ChocoPoC RAT Targets Vulnerability Researchers via Fake PoC Exploit Repos_THN:C9A1143D73F05246E3C8D296B1E09C36

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjd_BdKzn7-7TCZJfnsZBy25kGm8xiQTrJquj8vMVsjlRXf7LXqMiJLQs8ic-lNLRc51whJzP-B4Nv9OOzfgO...

N/A N/A THN
CRITICAL 9.8 THN:84197EDE93C...

FortiBleed Credential Theft Linked to INC and Lynx Ransomware Operations_THN:84197EDE93C292DD6425E3EC1760B383

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjcA80dQWiuszAlBgwcxzc3suImls2cKOwk_2nYMo7UY5MNSdlKNMgibekQNEhWRuxmX5s1JcLHCd_dsDZ3m9...

N/A N/A THN
HIGH 8.8 THN:9ADD4AB34E0...

SharePoint RCE CVE-2026-45659 Added to CISA KEV After Active Exploitation_THN:9ADD4AB34E0B3C433B116D9EE8081CD5

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgMEHDpcGNoddFf8yfkJ1L21X61VSA66xZiVjYA5qdfJpZ8tyWxzRy7Il8fwcY59pRUm7mlNChrPHhjySmFLV...

N/A N/A THN
HIGH 7.7 IMPERVABLOG:390...

Code Injection in Perforce Helix Core (CVE-2026-6902)_IMPERVABLOG:3902B857BFAE6E32EDDCC0AF92A3ADFF

## Executive Summary In this article, we disclose our latest findings we made on Perforce protocol P4 (Helix Core) between command line client and...

N/A N/A IMPERVABLOG