category_news - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.6	MALWAREBYTES:A9...	Firefox 151 packs big privacy upgrades into a small update_MALWAREBYTES:A9AAD1F75D1D3EF4DEB6940D4F2AD189 Mozilla has published release notes for Firefox browser version 151.0, and this update includes several genuinely meaningful privacy and security i...	N/A	N/A	May 20, 2026	MALWAREBYTES
NONE	THN:D38B87899EF...	Typosquatting Is No Longer a User Problem. It’s a Supply Chain Problem_THN:D38B87899EF6C0352A86AFED368CBA71 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiLWPxY_gRwc5keQNREyoTXSadlwpCLyUdAq4v1fQA5_lA2tJ0Ia6xOk-FaLuNHwJjV_xaF7M0xzPvqHk4e7a...	N/A	N/A	May 20, 2026	THN
HIGH 8.8	SECURELIST:861A...	How an image could compromise your Mac: understanding an ExifTool vulnerability (CVE-2026-3102)_SECURELIST:861A55A4A0356D7F0CE3D0DF172397AE ![exiftools featured](https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2026/05/19160550/exiftools-featured-990x400.jpg) ## Introd...	N/A	N/A	May 20, 2026	SECURELIST
NONE	WIRED:1907CD99D...	Data Brokers’ and AI Firms’ Opt-Out Forms Are Built to Fail, Report Finds_WIRED:1907CD99D838033D9EB5C8A1C1C24E7A A new study finds AI companies, defense firms, and dating apps are among 38 data collectors allegedly using manipulative design to confuse users wh...	N/A	N/A	May 20, 2026	WIRED
NONE	HACKREAD:342A87...	Banana RAT Malware in Fake Invoices Hits Customers at 16 Brazilian Banks_HACKREAD:342A87FA613180698473B970180505B4 Banana RAT malware hidden in fake invoices and security update screens targets customers at 16 Brazilian banks stealing data with QR fraud.	N/A	N/A	May 20, 2026	HACKREAD
MEDIUM 6.8	THN:C50BB9D9A96...	Microsoft Releases Mitigation for YellowKey BitLocker Bypass CVE-2026-45585 Exploit_THN:C50BB9D9A965032E3A06C37C0870FAA6 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh8DmW5nAG63-9iR2RmnP7i3GVJ9EBtLznscnnjROZ-DWRALYo0zsPNjUm2J6khkqSDJiX5Gmwb8sxPh4jHRc...	N/A	N/A	May 20, 2026	THN
NONE	THN:ADCBB089F8C...	Grafana GitHub Breach Exposes Source Code via TanStack npm Attack_THN:ADCBB089F8CC6693C182556DE847998A ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi1N3gjAFZQ-1hptUuKwQmHMjlZwIMDn6H6mKc9UuDELAKWl_3Kow6EcD72IkWpBf8ZB2Db8wrZW86zVxKaEg...	N/A	N/A	May 20, 2026	THN
NONE	THN:CB647DAD1B1...	GitHub Investigating TeamPCP Claimed Breach of ~4,000 Internal Repositories_THN:CB647DAD1B1B8BAF80B95BD14349F8F9 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgoDiyeJZY33dxAsa8qElLYXNILLDT4NhloINZiuzcx3La2JvDK_d54kM8qsx_obt8vQ3FpTJr2ZVoMYiEcqH...	N/A	N/A	May 20, 2026	THN
MEDIUM 6.8	MS:CVE-2026-45585	Windows BitLocker Security Feature Bypass Vulnerability_MS:CVE-2026-45585 Microsoft is aware of a security feature bypass vulnerability in Windows publicly referred to as "YellowKey". The proof of concept for this vulnera...	N/A	N/A	May 19, 2026	MSCVE
NONE	MS:CVE-2026-42834	Windows Admin Center in Azure Portal Elevation of Privilege Vulnerability_MS:CVE-2026-42834 Improper link resolution before file access ('link following') in Azure Portal Windows Admin Center allows an authorized attacker to elevate privil...	N/A	N/A	May 19, 2026	MSCVE