Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

224 New today

65,462 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

336

Jun 12

Jun 13

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

355

Jun 24

175

Jun 25

Critical

High

Medium

Low

Latest

TALOSBLOG

Introduction to COM usage by Windows threats_TALOSBLOG:DF79C7F3B829B007D2B66F9ECF438A07

* Component Object Model (COM) is a fundamental Windows technology used by legitimate applications for object activation, inter-process communication, automation and language-independent component reuse. Those same qualities make it useful to threat actors. * Malware frequen...

TALOSBLOG:DF79C7F3B829B007D2B66F9ECF438A07

Jun 25, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	SECURELIST:C43B...	Inside the 2026 SMB threat landscape: From phishing and scams to fake AI tools_SECURELIST:C43B16717B07685250500714E1B5AA7C ![](https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2026/06/25073838/SL-SMB-report-featured-990x400.jpg) Small and medium-sized ...	N/A	N/A	Jun 25, 2026	SECURELIST
NONE	MALWAREBYTES:10...	Fake domain renewal emails trick website owners into paying scammers_MALWAREBYTES:10DD07CE0E31B268C63A704A2A2EE1D3 You receive an email warning that your website's domain name is about to expire. Renew now, it says, or your website and email could stop working. ...	N/A	N/A	Jun 25, 2026	MALWAREBYTES
CRITICAL 9.6	MALWAREBYTES:FE...	Update Chrome to patch critical browser security flaws_MALWAREBYTES:FE1D282863E6BA1A4D5E36C709BE006D Google released a security update for Chrome that fixes 18 vulnerabilities, including four rated Critical. There is no indication that any of these...	N/A	N/A	Jun 25, 2026	MALWAREBYTES
NONE	SCHNEIER:1F1BE9...	Interesting Paper Exploring Prompt Injection_SCHNEIER:1F1BE9719845C1CDD988983813F0567D This is a fascinating explotation of how LLMs fall for prompt injection attacks. It turns out that they learn to recognize the style of text in dif...	N/A	N/A	Jun 25, 2026	SCHNEIER
CRITICAL 9.2	E06F62BF-FA49-	Exploit for Command Injection in Tenda Ac8_Firmware_E06F62BF-FA49-5F5D-A835-777DE385E17D CVE-2026-42530 — Safe-Check Scanner Non-destructive mass scanner for the NGINX HTTP/3 QUIC use-after-free Inventory which of your hosts are exposed...	N/A	N/A	Jun 25, 2026	GITHUBEXPLOIT
MEDIUM 4.3	CVE-2026-42005	Insufficient input validation of internal web server_CVE-2026-42005 An attacker can send a web request that causes unlimited memory allocation in the internal web server, leading to a denial of service. The intern...	PowerDNS	Authoritative 4.9.0	Jun 25, 2026	CVE
HIGH 7.8	42AB7263-83ED-	Exploit for Use After Free in Linux Linux_Kernel_42AB7263-83ED-599E-9DD2-2E97F2B90A99 CVE-2026-23111 PoC Linux Kernel nftables Use-After-Free Local Privilege Escalation Vulnerability Summary - CVE: CVE-2026-23111 - Type: Use-After-Fr...	N/A	N/A	Jun 25, 2026	GITHUBEXPLOIT
NONE	THN:18D345EFB30...	Surviving the Mythos Era: Richard Bejtlich on the Case for NDR_THN:18D345EFB30E0C4B48C8E47EDFAA777B ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjGC4Kd3HcSGw5TQ1GQNwgQST4imnVTlHZ4yW1dDr_kwUksDH1MHmlPUMzW8LhePZZTM1HszkIQwL8Ggm-cxl...	N/A	N/A	Jun 25, 2026	THN
HIGH 8.6	CCA10CC3-6319-	Exploit for CVE-2026-20230_CCA10CC3-6319-542C-ADD9-3605DA4D116A CVE-2026-20230 Cisco Unified Communications Manager SSRF: Arbitrary File Write to RCE—PoC Derivation Process and Analysis Scope: For use only in lo...	N/A	N/A	Jun 25, 2026	GITHUBEXPLOIT

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

Introduction to COM usage by Windows threats_TALOSBLOG:DF79C7F3B829B007D2B66F9ECF438A07

Recent Advisories

Inside the 2026 SMB threat landscape: From phishing and scams to fake AI tools_SECURELIST:C43B16717B07685250500714E1B5AA7C

Fake domain renewal emails trick website owners into paying scammers_MALWAREBYTES:10DD07CE0E31B268C63A704A2A2EE1D3

Update Chrome to patch critical browser security flaws_MALWAREBYTES:FE1D282863E6BA1A4D5E36C709BE006D

Interesting Paper Exploring Prompt Injection_SCHNEIER:1F1BE9719845C1CDD988983813F0567D

Exploit for Command Injection in Tenda Ac8_Firmware_E06F62BF-FA49-5F5D-A835-777DE385E17D

Insufficient input validation of internal web server_CVE-2026-42005

Exploit for Use After Free in Linux Linux_Kernel_42AB7263-83ED-599E-9DD2-2E97F2B90A99

Surviving the Mythos Era: Richard Bejtlich on the Case for NDR_THN:18D345EFB30E0C4B48C8E47EDFAA777B

Exploit for CVE-2026-20230_CCA10CC3-6319-542C-ADD9-3605DA4D116A

Protect Your Attack Surface with RedGem

Security Intelligence
Feed