Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

286 New today

65,329 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

336

Jun 12

Jun 13

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

355

Jun 24

Jun 25

Critical

High

Medium

Low

Latest

MALWAREBYTES

“Total access to all your devices.” Sextortion scammers strike again_MALWAREBYTES:0FD9C7128A95FF6374187563C0B72426

At the moment, we’re seeing all kinds of sextortion emails. The scam is cheap to run, easy to automate, and apparently profitable enough that cybercriminals keep using it. Some criminals put more effort into their messages than others. Sextortion emails are messages claiming...

MALWAREBYTES:0FD9C7128A95FF6374187563C0B72426

Jun 24, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	SCHNEIER:7A1236...	Embedding Forbidden Text in Spyware to Discourage AI Analysis_SCHNEIER:7A1236483F174AEC1AD949F80DF69235 At least one malware developer is adding text about nuclear and biological weapons to their spyware, in an effort to stop automatic AI analysis. D...	N/A	N/A	Jun 24, 2026	SCHNEIER
NONE	THN:E39759F4A03...	Dawn of the Apex Agentic Adversary_THN:E39759F4A03F44F39AA790935B0FBE4A ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjuQ2GvCcnjBgMTXoXBXqazE9MU3nbNgeccOlWELBQOL9WcHHH4uXS1BKCrrmv6iWWAn6vu1LZJzpHl1MGetv...	N/A	N/A	Jun 24, 2026	THN
MEDIUM 5.5	CVE-2026-11968	Improper Neutralization of Argument Delimiters in a Command (‘Argument Injection’) in TortoiseGit_CVE-2026-11968 Argument Injection in TortoiseGitBlame via Malicious Git History Filenames Leads to Arbitrary File Write in TortoiseGit	TortoiseGit team	TortoiseGit 1.8.10.0	Jun 24, 2026	CVE
MEDIUM 6.9	CVE-2026-13150	SSRF in Pentestify PDF generation endpoint via Host header_CVE-2026-13150 Server-Side Request Forgery (SSRF) (CWE-918) in the PDF generation endpoint GET /api/reports/{id}/pdf (backend/main.py) in ccyl13 Pentestify 1.0.0 ...	Pentestify	Pentestify	Jun 24, 2026	CVE
HIGH 7.8	4BA3261D-2DE6-	Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel_4BA3261D-2DE6-5D66-AE25-4FA760E8F87D rootpacket CVE-2026-31431 A Linux Docker-to-host cryptojacking toolkit captured from live attacks on Kinryū Labs honeypots. It breaks in through an...	N/A	N/A	Jun 24, 2026	GITHUBEXPLOIT
CRITICAL 10	776C9ED4-3841-	Exploit for Code Injection in Craftcms Craft_Cms_776C9ED4-3841-5FC1-B7D1-370CEAB62FAB PoCCVE-2025-32432 CraftCMS CVE-2025-32432 - Clean PoC Version nettoyée et améliorée du PoC original. Crédits - Recherche originale : Orange Cyberde...	N/A	N/A	Jun 24, 2026	GITHUBEXPLOIT
HIGH 8.8	3F58B0E8-968C-	Exploit for Uncontrolled Search Path Element in Checkmk_3F58B0E8-968C-5526-9652-3C321B0F8C30 CVE-2024-0670 - CheckMK Agent MSI Repair Privilege Escalation NanoCorp HTB This repository contains a PowerShell script used to exploit CVE-2024-06...	N/A	N/A	Jun 24, 2026	GITHUBEXPLOIT
NONE	F66CF4CF-53AC-	agentslastexam_F66CF4CF-53AC-54A7-B775-49F009E71162 pwnremotecapture A remote binary-exploitation task contributed to Agents' Last Exam. Two variants from one task module: the agent gets a running ne...	N/A	N/A	Jun 24, 2026	GITHUBEXPLOIT
NONE	QUALYSBLOG:A246...	CERT-In’s AI Vulnerability Blueprint: Why Indian CISOs Need Machine-Speed Risk Operations in the Post-Mythos Era_QUALYSBLOG:A2463FDB3F5DB3414AFD13F999ADEC69 __A Qualys India perspective on CERT-In 's blueprint, the post-Mythos threat landscape India faces, and why the operating model needs to change.__ ...	N/A	N/A	Jun 24, 2026	QUALYSBLOG

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

“Total access to all your devices.” Sextortion scammers strike again_MALWAREBYTES:0FD9C7128A95FF6374187563C0B72426

Recent Advisories

Embedding Forbidden Text in Spyware to Discourage AI Analysis_SCHNEIER:7A1236483F174AEC1AD949F80DF69235

Dawn of the Apex Agentic Adversary_THN:E39759F4A03F44F39AA790935B0FBE4A

Improper Neutralization of Argument Delimiters in a Command (‘Argument Injection’) in TortoiseGit_CVE-2026-11968

SSRF in Pentestify PDF generation endpoint via Host header_CVE-2026-13150

Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel_4BA3261D-2DE6-5D66-AE25-4FA760E8F87D

Exploit for Code Injection in Craftcms Craft_Cms_776C9ED4-3841-5FC1-B7D1-370CEAB62FAB

Exploit for Uncontrolled Search Path Element in Checkmk_3F58B0E8-968C-5526-9652-3C321B0F8C30

agentslastexam_F66CF4CF-53AC-54A7-B775-49F009E71162

CERT-In’s AI Vulnerability Blueprint: Why Indian CISOs Need Machine-Speed Risk Operations in the Post-Mythos Era_QUALYSBLOG:A2463FDB3F5DB3414AFD13F999ADEC69

Protect Your Attack Surface with RedGem

Security Intelligence
Feed