category_news - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	THN:542858AF03A...	Kimsuky Deploys HTTPSpy, Expands Arsenal with HelloDoor and VS Code Tunnels_THN:542858AF03AD63381599625C01317BB6 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjJfUl1K-os1XyLN-SBt6PgMia_jFG03ArRa3H0FI2hsiUqNa3lqSWY2NJcvOhY33TArSKJxeookUpkATdERU...	N/A	N/A	May 29, 2026	THN
NONE	MSSECURE:7DF62C...	Typosquatted npm packages used to steal cloud and CI/CD secrets_MSSECURE:7DF62CBD211C4009099D29D730CB02CF In this article 1. Attack chain overview 1. The lure: typosquats and spoofed metadata 2. Execution: npm lifecycle hook abuse 3. G...	N/A	N/A	May 29, 2026	MSSECURE
NONE	TALOSBLOG:4FE4A...	Less panic patching, more precision_TALOSBLOG:4FE4A1E5153F51581C603B5FCEB8D657 ![Less panic patching, more precision](https://storage.ghost.io/c/af/a0/afa04ee3-414f-4481-8d23-7e7c146f192e/content/images/2026/05/threat_source-3...	N/A	N/A	May 28, 2026	TALOSBLOG
NONE	WIRED:BF8726078...	The Pentagon Knew Enemies Could Track Troops’ Phones for Years. Now They Are_WIRED:BF8726078E539A67DCDAC444F3D25C4F The US military has long known that cheap fixes could stop location data from exposing its troops. It adopted almost none—and now says adversaries ...	N/A	N/A	May 28, 2026	WIRED
NONE	HACKREAD:BB27C5...	The CISO Whisperer’s Watch List For The Gartner Security & Risk Management Summit 2026_HACKREAD:BB27C53E5FDB508B659F60B261DA3856 New York, USA, 28th May 2026, CyberNewswire	N/A	N/A	May 28, 2026	HACKREAD
NONE	THN:1B3EA063614...	Critical Gogs RCE Vulnerability Lets Any Authenticated User Execute Arbitrary Code_THN:1B3EA063614B3D919BA51FD740B31911 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhaqRd_3DDSSASg_YzvuUEqv3elhvFWSjk56bXPoqJeNIWVo-K0giuJ3TNEXV-aYpnuVfOv00_VM428vIFVaM...	N/A	N/A	May 28, 2026	THN
NONE	MSRC:561EBC4487...	A shared responsibility: Protecting customers through Coordinated Vulnerability Disclosure_MSRC:561EBC44873C0577ED08F81509C28CD9 In recent weeks several zero-day vulnerabilities have been publicly disclosed. The details of these vulnerabilities were not shared with Microsoft ...	N/A	N/A	May 27, 2026	MSRC
NONE	QUALYSBLOG:1995...	Extending EOL/EOS Software Intelligence Across Containers, Kubernetes, and Modern Workloads_QUALYSBLOG:19950494C35325E8C77647020B48BAA3 #### Key Takeaways * Unsupported software increasingly exists inside container images and Kubernetes workloads, not just traditional infrastruct...	N/A	N/A	May 28, 2026	QUALYSBLOG
NONE	MSSECURE:B2A71A...	The Gentlemen ransomware: Dissecting a self-propagating Go encryptor_MSSECURE:B2A71A1D1F7692CEF70F81FB96F2D422 In this article 1. Pre-encryption 2. File encryption 3. Post-encryption 4. Defending against The Gentlemen ransomware 5. Microsoft Defen...	N/A	N/A	May 28, 2026	MSSECURE
CRITICAL 9.8	THN:D97193EFADC...	Threat Actors Exploit Critical FortiClient EMS Flaw to Deploy Credential Stealer_THN:D97193EFADC5B4154DDA7A6F3603678A ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiLo8Mb8UwcN2lkMlnUi-l3a8DXNNL2_dW0VcATt8d34xxXX-kQN8HMolrIuw8ty0WZmpURI7hyphenhyphen...	N/A	N/A	May 28, 2026	THN