category_news - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	MSSECURE:5AD7A8...	How Storm-2949 turned a compromised identity into a cloud-wide breach_MSSECURE:5AD7A84325AFB86E0C1059E1736E3D0E In this article 1. Attack chain overview 1. Cloud compromise: Microsoft Entra ID and Microsoft 365 2. Initial access and persistence t...	N/A	N/A	May 18, 2026	MSSECURE
CRITICAL 9.2	AKAMAIBLOG:2EBB...	CVE-2026-42945: Mitigating a Critical Heap Buffer Overflow Vulnerability in NGINX_AKAMAIBLOG:2EBB19974A112B2B366B39269E61E188 Discover CVE-2026-42945 (NGINX Rift), a critical heap buffer overflow vulnerability. Learn about the affected versions and critical patch updates.	N/A	N/A	May 18, 2026	AKAMAIBLOG
NONE	KREBS:C7BC6C4D1...	CISA Admin Leaked AWS GovCloud Keys on Github_KREBS:C7BC6C4D1F5D2D297FA1745B49D61684 Until this past weekend, a contractor for the Cybersecurity & Infrastructure Security Agency (CISA) maintained a public GitHub repository t...	N/A	N/A	May 18, 2026	KREBS
NONE	HACKREAD:0DD869...	10 Top OSINT Tools Every Investigator Should Know in 2026_HACKREAD:0DD86923B4A3BEEC03580BB5FD719830 Modern OSINT platforms rely more on AI and automation, while older social tracking methods keep losing access due to privacy and API restrictions.	N/A	N/A	May 18, 2026	HACKREAD
NONE	TRENDMICROBLOG:...	Agentic Governance: Why It Matters Now_TRENDMICROBLOG:8B361C0BE66D189FF06197B57178CA42 AI agents now act inside the trust boundary with real credentials, and agentic governance is what keeps them from quietly breaking things at machin...	N/A	N/A	May 18, 2026	TRENDMICROBLOG
NONE	HACKREAD:902583...	New Reaper Malware Uses Fake Microsoft Domain to Steal macOS Passwords_HACKREAD:902583C36C4D416DA3F2E82A4FF4DA3F The newly discovered Reaper malware bypasses Apple's macOS Tahoe 26.4 security updates to steal passwords, crypto assets, and install a permanent b...	N/A	N/A	May 18, 2026	HACKREAD
NONE	MS:CVE-2026-42822	Azure Local Disconnected Operations (ALDO) Elevation of Privilege Vulnerability_MS:CVE-2026-42822 Improper authentication in Azure Local Disconnected Operations allows an unauthorized attacker to elevate privileges over a network.	N/A	N/A	May 18, 2026	MSCVE
NONE	THN:DE0795EDD86...	INTERPOL Operation Ramz Disrupts MENA Cybercrime Networks with 201 Arrests_THN:DE0795EDD863401ECBAB3002B5E40CFF ![INTERPOL Operation Ramz Disrupts MENA](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEivxxVYex3z2F03m6RYOR72whyegN5TEzzNxZO3tTOSHNTQ4...	N/A	N/A	May 18, 2026	THN
NONE	MSSECURE:E5598F...	How to better protect your growing business in an AI-powered world_MSSECURE:E5598FF641557BA6C7DA58B40E66D892 AI is rapidly reshaping how work gets done in companies and organizations. In celebrating National Small Business Month, we want to acknowledge the...	N/A	N/A	May 18, 2026	MSSECURE
NONE	HACKREAD:51E9EA...	10 Tips for Phrasing Employee Feedback in Reviews_HACKREAD:51E9EA6F23266B3CEE32D6EEA692BD82 Performance reviews inside cybersecurity teams carry unusually high stakes. Security analysts, incident responders, IT administrators, and complian...	N/A	N/A	May 18, 2026	HACKREAD