category_news - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	HACKREAD:C2038D...	Hackers Use PyInstaller and AMSI Patching to Deliver XWorm RAT v7.4_HACKREAD:C2038D5E91B5BF75E99339EAFC00B266 Hackers are hiding XWorm malware in PyInstaller files to bypass Windows security, steal data and remotely control devices through ads.	N/A	N/A	May 15, 2026	HACKREAD
NONE	AKAMAIBLOG:F4D2...	Mini Shai-Hulud: The Worm Returns and Goes Public_AKAMAIBLOG:F4D25B1D0D97F1FD5B5A9DFB2A4FA4C5 {“lastseen”:”2026-05-15T18:05:07″,”description”:””,”published”:”2026-05-15T14:00:...	N/A	N/A	May 15, 2026	AKAMAIBLOG
NONE	THN:ABF8D55EC17...	Turla Turns Kazuar Backdoor Into Modular P2P Botnet for Persistent Access_THN:ABF8D55EC17616A17F41AE04CCAFCABE ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg8BT1AOScncZQM_A-0WBdCzTDAHGHSey48_Mywhij-TJupCdzP3s3o-MIImRtMZcoV2OqX3RjRV4COpVqkB1...	N/A	N/A	May 15, 2026	THN
CRITICAL 9.6	THN:7B70F7FA3D1...	Four OpenClaw Flaws Enable Data Theft, Privilege Escalation, and Persistence_THN:7B70F7FA3D169B0C37FE8A4B304EDDC9 ![OpenClaw Flaws](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgz_tK9S8jS_n5CK694-FLGjQP5_Mmpg7z9ZRiBayWsJLsuFRIm-8j1hTlhH90779Fvnvhp...	N/A	N/A	May 15, 2026	THN
NONE	MALWAREBYTES:AD...	Attackers replaced JDownloader installer downloads with malware_MALWAREBYTES:ADBA5FBB43CDF0C2A7E760B56A5EB285 If you downloaded the JDownloader installer during the compromise window (May 6-7), you are advised to verify the file. JDownloader is a popular d...	N/A	N/A	May 15, 2026	MALWAREBYTES
NONE	MALWAREBYTES:0E...	Meta’s confusing new approach to chat privacy_MALWAREBYTES:0EBFBEBA3FE059126E8DB76BB934D2F6 Recent news had us wondering whether Meta actually knows what it wants. On one platform, Meta is promoting AI chats that it says even it cannot re...	N/A	N/A	May 15, 2026	MALWAREBYTES
NONE	HACKREAD:6A519A...	CalPhishing Scam Uses EvilTokens Kit, Outlook Invites to Steal M365 Sessions_HACKREAD:6A519A75E1CC5FFA979C45A02F000751 Hackers are exploiting Outlook calendar invites and device code phishing to steal M365 session tokens, bypass MFA and breach enterprise accounts.	N/A	N/A	May 15, 2026	HACKREAD
NONE	SCHNEIER:9D4247...	Bypassing On-Camera Age-Verification Checks_SCHNEIER:9D424713D581DE09B26127F836BE6D8A Some AI-based video age-verification checks can be fooled with a fake mustache.	N/A	N/A	May 15, 2026	SCHNEIER
NONE	THN:2D1EEDFE954...	What 45 Days of Watching Your Own Tools Will Tell You About Your Real Attack Surface_THN:2D1EEDFE954449BEB50FAB433DFE1700 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhVcSUDrpIZyFrHqIlIGnXfIShsEamRNviaM6TguPwmQI9KkhrIXOQbQ0WVKiOkcBGkFqKTKZmK16zPChmlcC...	N/A	N/A	May 15, 2026	THN
NONE	THN:99E23D8DD96...	TanStack Supply Chain Attack Hits Two OpenAI Employee Devices, Forces macOS Updates_THN:99E23D8DD967F6B2FAA3C78801102B2F ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj1l4Vq20M4553fkDfGbO9VqLV9Au-6EefivLp8HT2W5QxJvgWf1mr6pg5xsbC5j3FCJzOOCJv_CImY1LjjFY...	N/A	N/A	May 15, 2026	THN