category_news - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 10	THN:82BA9B5DB79...	SEPPMail Secure E-Mail Gateway Vulnerabilities Enable RCE and Mail Traffic Access_THN:82BA9B5DB79C1C4AAF0301BF4117B09A ![SEPPMail Secure E-Mail Gateway Vulnerabilities](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiortK4EUp9FwJsfVYW-j20LfpbM5qMNelk5-T8...	N/A	N/A	May 19, 2026	THN
NONE	THN:767D26D229D...	Compromised Nx Console 18.95.0 Targeted VS Code Developers with Credential Stealer_THN:767D26D229DD4F280A6DA73A0717EB08 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi61imbY3-QbM_mT_6WAxBXaFeZ3eXwprN147ox_bMvVqh9NrS69IwqwwL4qu2z1eRA8NfrWwyJi9bIDuREGE...	N/A	N/A	May 19, 2026	THN
NONE	THN:4A1D4C8F1F4...	GitHub Actions Supply Chain Attack Redirects Tags to Steal CI/CD Credentials_THN:4A1D4C8F1F41BDB4260E5E273EC4557E ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgc7jpVO6HhBuEBTjkwmNjYhKlFmhhmytOqNZHYuGP-dNWrf3AoyE68yoKj77elddOX4Ps2x9jSuwhi5sE-Qj...	N/A	N/A	May 19, 2026	THN
NONE	THN:52FFF2D015B...	Mini Shai-Hulud Pushes Malicious AntV npm Packages via Compromised Maintainer Account_THN:52FFF2D015B90EFF3BB99C75AD03B66B ![Mini Shai-Hulud](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjpyJDg_FqUDfeOeVX8IyhBHj9HqwkGZ-hV7b998CMLiBK2uPpmuQEN1cv1xYXJzRiznN6...	N/A	N/A	May 19, 2026	THN
NONE	MSSECURE:5AD7A8...	How Storm-2949 turned a compromised identity into a cloud-wide breach_MSSECURE:5AD7A84325AFB86E0C1059E1736E3D0E In this article 1. Attack chain overview 1. Cloud compromise: Microsoft Entra ID and Microsoft 365 2. Initial access and persistence t...	N/A	N/A	May 18, 2026	MSSECURE
CRITICAL 9.2	AKAMAIBLOG:2EBB...	CVE-2026-42945: Mitigating a Critical Heap Buffer Overflow Vulnerability in NGINX_AKAMAIBLOG:2EBB19974A112B2B366B39269E61E188 Discover CVE-2026-42945 (NGINX Rift), a critical heap buffer overflow vulnerability. Learn about the affected versions and critical patch updates.	N/A	N/A	May 18, 2026	AKAMAIBLOG
NONE	KREBS:C7BC6C4D1...	CISA Admin Leaked AWS GovCloud Keys on Github_KREBS:C7BC6C4D1F5D2D297FA1745B49D61684 Until this past weekend, a contractor for the Cybersecurity & Infrastructure Security Agency (CISA) maintained a public GitHub repository t...	N/A	N/A	May 18, 2026	KREBS
NONE	HACKREAD:0DD869...	10 Top OSINT Tools Every Investigator Should Know in 2026_HACKREAD:0DD86923B4A3BEEC03580BB5FD719830 Modern OSINT platforms rely more on AI and automation, while older social tracking methods keep losing access due to privacy and API restrictions.	N/A	N/A	May 18, 2026	HACKREAD
NONE	TRENDMICROBLOG:...	Agentic Governance: Why It Matters Now_TRENDMICROBLOG:8B361C0BE66D189FF06197B57178CA42 AI agents now act inside the trust boundary with real credentials, and agentic governance is what keeps them from quietly breaking things at machin...	N/A	N/A	May 18, 2026	TRENDMICROBLOG
NONE	HACKREAD:902583...	New Reaper Malware Uses Fake Microsoft Domain to Steal macOS Passwords_HACKREAD:902583C36C4D416DA3F2E82A4FF4DA3F The newly discovered Reaper malware bypasses Apple's macOS Tahoe 26.4 security updates to steal passwords, crypto assets, and install a permanent b...	N/A	N/A	May 18, 2026	HACKREAD