CVE-2026-5033: SQL Injection in code-projects Accounting System A vulnerability was detected in code-projects Accounting System 1.0. Affected by this vulnerability is an unknown functionality of the file /view_costumer.php of the component Parameter Handler. The manipulation of the argument cos_id resul

MEDIUM severity: code-projects Accounting System 1.0 faces public SQL injection exploit in /view_costumer.php (cos_id). Monitor for threats & prepare to patch. Details: radar.offseq.com/threat/cve-2026-5033-sql... #OffSeq #SQLInjection #CyberAlert

CVE-2026-4851: CWE-502 Deserialization of Untrusted Data in CASIANO GRID::Machin CVE-2026-4851 is a critical deserialization vulnerability affecting CASIANO's GRID::Machine Perl module versions up to 0.127. GRID::Machine facilitates Remote Procedure Calls (RPC) over SSH, allowing a client to execute Perl code on remote

CRITICAL: CASIANO GRID::Machine ≤0.127 lets a compromised remote host run code on the client via unsafe Perl deserialization. Only connect to trusted hosts & review RPC usage. radar.offseq.com/threat/cve-2026-4851-cwe... #OffSeq #CyberAlert #Perl

Critical Alert: Malicious code found in 'xz' compression tool (CVE-2024-3094) allows unauthorized remote access to Linux systems. Immediate action required! #LinuxSecurity #CVE20243094 #CyberAlert Link: thedailytechfeed.com/malicious-co...

Iran-linked hackers have breached FBI Director Kash Patel’s personal emails | CNN Politics Hackers connected to the Iranian government accessed FBI Director Kash Patel’s personal email and posted materials — including photos and documents — taken from his account, a person familiar with…

Iran-linked hackers have breached FBI Director Kash Patel’s personal emails | CNN Politics buff.ly/iqkzSNT

#cybernews #CyberSecurityNews #CyberAlert #CyberSecurityAlert

CVE-2026-24060: CWE-319 in Automated Logic WebCTRL Premium Server CVE-2026-24060 is a vulnerability classified under CWE-319 (Cleartext Transmission of Sensitive Information) affecting Automated Logic's WebCTRL Premium Server. The issue arises because service information transmitted over the network as BA

CRITICAL: WebCTRL Premium Server leaks BACnet data in cleartext (CVE-2026-24060). Attackers can intercept or tamper remotely. Segment networks & encrypt traffic until patched. radar.offseq.com/threat/cve-2026-24060-cw... #OffSeq #ICS #CyberAlert

WEDNESDAY | 18 MARCH 2026 | Cybersecurity Report

#CyberFM #CyberSecurity #InfoSec #DataBreach #HackingNews #TechUpdates #ChromeZeroDay #Ransomware #AriasThomas #RSSHDelivery #NYC #TechSafety #CyberAlert #2026

CVE-2026-28430: CWE-89: Improper Neutralization of Special Elements used in an S Chamilo LMS, a widely used open-source learning management system, suffers from a critical SQL injection vulnerability identified as CVE-2026-28430. This vulnerability exists in versions prior to 1.11.34 and is triggered via the custom_date

Chamilo LMS < 1.11.34 faces CRITICAL SQL injection (CVSS 9.3). Attackers can seize admin access & PII. Patch to 1.11.34 now! radar.offseq.com/threat/cve-2026-28430-cw... #OffSeq #SQLInjection #CyberAlert

Top 5 Cyber Security stories from last week (week of March 9–15, 2026) » Commonwealth Sentinel 1. 🔴 Google Chrome Zero-Days Patched Under Active Exploitation Google released emergency security updates to fix two high-severity Chrome vulnerabilities — CVE-2026-3909 (an out-of-bounds write in…

Top 5 Cyber Security stories from last week (week of March 9–15, 2026) » Commonwealth Sentinel buff.ly/dI5OaK9

#cybernews #CyberSecurityNews #CyberAlert #CyberSecurityAlert

Google Fixes Two Chrome Zero-Day Flaws
Read More: buff.ly/x4lz1W4

#ChromeZeroDay #GoogleSecurity #V8Engine #SkiaLibrary #ZeroDayExploit #BrowserSecurity #SecurityUpdate #CyberAlert

Apple Patches Coruna WebKit Exploit
Read More: buff.ly/zri5v26

#AppleSecurity #WebKitVulnerability #CorunaExploit #iOSSecurity #macOSSecurity #MemoryCorruption #SecurityPatch #CyberAlert

Microsoft Fixes 84 Flaws In March Update
Read More: buff.ly/SOKgkR7

#PatchTuesday #MicrosoftSecurity #ZeroDay #PrivilegeEscalation #WindowsSecurity #VulnerabilityManagement #SecurityUpdate #CyberAlert

CVE-2026-30861: CWE-78: Improper Neutralization of Special Elements used in an O Tencent WeKnora is an LLM-powered framework designed for deep document understanding and semantic retrieval. Versions from 0.2.5 to before 0.2.10 contain a critical OS command injection vulnerability (CVE-2026-30861) due to improper neutral

CRITICAL: Tencent WeKnora (0.2.5 – 0.2.9) hit by unauth RCE via OS command injection. Upgrade to 0.2.10 ASAP or restrict access! radar.offseq.com/threat/cve-2026-30861-cw... #OffSeq #RCE #CyberAlert

CVE-2026-29789: CWE-862: Missing Authorization in vitodeploy vito The vulnerability identified as CVE-2026-29789 affects vitodeploy's vito application, a self-hosted web platform used for managing servers and deploying PHP applications. Prior to version 3.20.3, vito's workflow site-creation actions lack p

CRITICAL: vitodeploy vito <3.20.3 allows cross-project server control due to missing auth. Upgrade to 3.20.3+ and audit permissions ASAP! radar.offseq.com/threat/cve-2026-29789-cw... #OffSeq #CyberAlert

Coruna iOS Exploit Kit Targets iOS 13–17
Read More: buff.ly/tF3R9ts

#CorunaExploit #iOSSecurity #ExploitKit #MobileSecurity #ZeroDay #SpywareThreat #ThreatResearch #CyberAlert

The result? Your Slack history, API keys, and private files are laid bare—all without you ever clicking "Allow."
Read the full Alert : www.synergyit.com/openclaw-vul...

#AI #OpenClaw #InfoSec #AppSec #SynergyITUSA #DeveloperSecurity #CyberAlert #OpenSource #SecurityUpdate #2026Tech

Wormable XMRig Campaign Leverages BYOVD Exploit And Time Based Logic Bomb - SCtoCS A wormable XMRig campaign is using a BYOVD exploit and a time based logic bomb to spread cryptomining malware and evade security defenses.

Wormable XMRig malware campaign uses BYOVD exploit and time-based logic bomb to spread and mine crypto — secure your systems and patch now 👇
👉 sctocs.com/wormable-xmr...

#Security #CyberAlert #Cryptomining

Grandstream VoIP Flaw Enables Eavesdropping
Read More: buff.ly/TSDAjK1

#Grandstream #VoIPSecurity #CVE20262329 #RootAccess #TelecomSecurity #CriticalVulnerability #PatchNow #CyberAlert

WhatsApp Hack Scam in Barabanki: How a Fake ‘Accident Photo’ Cost a Man INR 4.44 Cybercrime in India is evolving at an alarming pace. In a recent case from Barabanki, Uttar Pradesh, a young man lost INR 4.44 lakh within…

I just published WhatsApp Hack Scam in Barabanki: How a Fake ‘Accident Photo’ Cost a Man INR 4.44 medium.com/p/whatsapp-h...
.........
#WhatsAppScam #CyberCrime #OnlineFraud #APKScam #DigitalSafety #CyberSecurity #StaySafeOnline #TechAwareness #CyberAlert #ScamPrevention #IndiaNews #OnlineSafety

CVE-2026-26333: CWE-306 Missing Authentication for Critical Function in Calero V Calero VeraSMART versions prior to 2022 R1 contain a critical vulnerability (CVE-2026-26333) due to missing authentication on a .NET Remoting HTTP service exposed on TCP port 8001. This service publishes default ObjectURIs such as EndeavorS

Calero VeraSMART pre-2022 R1 hit by CRITICAL RCE flaw: unauthenticated attackers can exploit port 8001 for full server compromise. Restrict access & upgrade now. radar.offseq.com/threat/cve-2026-26333-cw... #OffSeq #CVE202626333 #CyberAlert

Windows 11 Notepad Lets Files Run Silently
Read More: buff.ly/auoMYC1

#Windows11 #NotepadVulnerability #RemoteCodeExecution #MicrosoftPatch #MarkdownExploit #ZeroDayRisk #AppSec #CyberAlert

Windows 10 KB5075912 Extended Update
Read More: buff.ly/d4hD58r

#Windows10 #KB5075912 #ZeroDay #PatchTuesday #MicrosoftSecurity #SecureBoot #VulnerabilityManagement #CyberAlert

KKN Lombok Timur 13 Minutes 17 Seconds Viral Video KKN Lombok Timur 13 Minutes 17 Seconds Viral Video trends in Indonesia as police investigate leak claims, Ketua KKN controversy, and phishing link warnings.

KKN Lombok Timur 13 Minutes 17 Seconds Viral Video
#KKNLombokTimur #ViralVideo #IndonesiaNews #LombokTimur #CyberAlert #FactCheck #OnlineSafety #ITELaw #TrendingIndonesia #PoliceInvestigation
dailytrendmirror.com/viral/2026/0...

Angel Nujhat 12 Minute Viral Video Link Angel Nujhat 12-Minute Viral Video trends online, but fact check confirms it is a cyber scam. Know how the fake leak spreads malware, phishing links, and betting app traps.

Angel Nujhat ‘12-Minute’ Viral Video Link Is a Cyber Scam, Not a Real Leak
#AngelNujhat #ViralVideoScam #CyberAlert #OnlineSafety #PhishingWarning #FakeLeak #ScamAlert #DigitalSecurity #FactCheck #TrendingNow
dailytrendmirror.com/viral/2026/0...

Germany Warns of Signal Phishing Attacks
Read More: buff.ly/ttVlquY

#SignalPhishing #AccountTakeover #SocialEngineering #SecureMessaging #GermanyCyber #TargetedAttacks #ThreatIntel #CyberAlert

🚨 #CyberAlert: Microsoft Copilot users are being targeted via prompt injection attacks. Phishing links can steal emails, files & tokens without extra clicks.
🔗 Check IoCs & secure your AI: www.sequretek.com/resources/th...

#CyberSecurity #AIsecurity

Fortinet Confirms Active FortiGate SSO Bypass
Read More: buff.ly/gCnRIhO

#Fortinet #SSO #ZeroTrust #IdentitySecurity #NetworkSecurity #ActiveExploitation #Vulnerability #PatchManagement #CyberAlert #Infosec #EnterpriseSecurity

Critical Modular DS Plugin Flaw Enables Admin Takeover
Read More: buff.ly/tMGGJ8O

#WordPress #CVE202623550 #PluginVulnerability #WebsiteSecurity #AdminTakeover #CVSS10 #PatchNow #CyberAlert #Infosec

Microsoft issues emergency patch for latest Windows bugs - grab it ASAP The out-of-band patch fixes a couple of annoying bugs added to Windows 11 and 10 by Microsoft's January update.

Microsoft issues emergency patch for latest Windows bugs - grab it ASAP buff.ly/yvyyJda

#cybernews #CyberSecurityNews #CyberAlert #CyberSecurityAlert

#SpamAlert #PhishingAlert #CyberAlert
Να προσέχετε και να διαβάζετε.