Secciones
- Vulnerabilidades y CVEs
- Exploits y pruebas de concepto
- Noticias de seguridad / hacking / malware
- Malware y análisis de amenazas
- Fabricantes de hardware
CERTs / Gobiernos
Fabricantes/ Vendors
- Adobe Security Bulletins
- Oracle Critical Patch Updates
- VMware Security Advisories
- Apple Security Updates
- Google Chrome Releases / Security
- Microsoft Security Bulletins (HTML)
Otros fabricantes y plataformas
Fabricantes de hardware
Vulnerabilidades y CVEs
- [webapps] Joomla Page Builder CK 3.5.10 – Arbitrary File Uploaden 8 de julio de 2026 a las 00:00
Joomla Page Builder CK 3.5.10 – Arbitrary File Upload
- [webapps] Langflow 1.9.0 – RCEen 8 de julio de 2026 a las 00:00
Langflow 1.9.0 – RCE
- [webapps] Atarim WordPress Plugin 4.2.2 – Sensitive Information Exposureen 8 de julio de 2026 a las 00:00
Atarim WordPress Plugin 4.2.2 – Sensitive Information Exposure
- [webapps] Krayin CRM v2.2.x – Authenticated Remote Code Executionen 8 de julio de 2026 a las 00:00
Krayin CRM v2.2.x – Authenticated Remote Code Execution
- [webapps] MCPJam Inspector – Remote Code Executionen 7 de julio de 2026 a las 00:00
MCPJam Inspector – Remote Code Execution
- [local] ProtonVPN v4.4.1 – Unquoted Service Pathen 7 de julio de 2026 a las 00:00
ProtonVPN v4.4.1 – Unquoted Service Path
- [webapps] WordPress Bricks Builder Theme – RCEen 7 de julio de 2026 a las 00:00
WordPress Bricks Builder Theme – RCE
- [webapps] Tenable Nessus 10.12.1 – SQL Injectionen 7 de julio de 2026 a las 00:00
Tenable Nessus 10.12.1 – SQL Injection
- [webapps] Discuz! X5.0 – Authentication Bypassen 7 de julio de 2026 a las 00:00
Discuz! X5.0 – Authentication Bypass
- [webapps] Flowise 3.1.3 – arbitrary code executionen 7 de julio de 2026 a las 00:00
Flowise 3.1.3 – arbitrary code execution
Exploits y pruebas de concepto
- [webapps] Joomla Page Builder CK 3.5.10 – Arbitrary File Uploaden 8 de julio de 2026 a las 00:00
Joomla Page Builder CK 3.5.10 – Arbitrary File Upload
- [webapps] Langflow 1.9.0 – RCEen 8 de julio de 2026 a las 00:00
Langflow 1.9.0 – RCE
- [webapps] Atarim WordPress Plugin 4.2.2 – Sensitive Information Exposureen 8 de julio de 2026 a las 00:00
Atarim WordPress Plugin 4.2.2 – Sensitive Information Exposure
- [webapps] Krayin CRM v2.2.x – Authenticated Remote Code Executionen 8 de julio de 2026 a las 00:00
Krayin CRM v2.2.x – Authenticated Remote Code Execution
- [webapps] MCPJam Inspector – Remote Code Executionen 7 de julio de 2026 a las 00:00
MCPJam Inspector – Remote Code Execution
- [local] ProtonVPN v4.4.1 – Unquoted Service Pathen 7 de julio de 2026 a las 00:00
ProtonVPN v4.4.1 – Unquoted Service Path
- [webapps] WordPress Bricks Builder Theme – RCEen 7 de julio de 2026 a las 00:00
WordPress Bricks Builder Theme – RCE
- [webapps] Tenable Nessus 10.12.1 – SQL Injectionen 7 de julio de 2026 a las 00:00
Tenable Nessus 10.12.1 – SQL Injection
- [webapps] Discuz! X5.0 – Authentication Bypassen 7 de julio de 2026 a las 00:00
Discuz! X5.0 – Authentication Bypass
- [webapps] Flowise 3.1.3 – arbitrary code executionen 7 de julio de 2026 a las 00:00
Flowise 3.1.3 – arbitrary code execution
- [remote] Hydra – Stack Buffer Overflowen 7 de julio de 2026 a las 00:00
Hydra – Stack Buffer Overflow
- [remote] iOS Bluetooth PAN Exploit – Ethernet Gateway without Adapteren 7 de julio de 2026 a las 00:00
iOS Bluetooth PAN Exploit – Ethernet Gateway without Adapter
- [webapps] Joomla Extension 4.1.4 – PHP Object injectionen 6 de julio de 2026 a las 00:00
Joomla Extension 4.1.4 – PHP Object injection
- [local] MEmu Android Emulator 9.2.7.0 – Local Privilege Escalationen 6 de julio de 2026 a las 00:00
MEmu Android Emulator 9.2.7.0 – Local Privilege Escalation
- [webapps] Pulpy 0.1.1-Beta – Filesystem Sandbox Bypassen 6 de julio de 2026 a las 00:00
Pulpy 0.1.1-Beta – Filesystem Sandbox Bypass
- [webapps] KeepInMind 0.8.4.2 – Stored XSSen 6 de julio de 2026 a las 00:00
KeepInMind 0.8.4.2 – Stored XSS
- [webapps] KNX visualisering – Broken Access Controlen 6 de julio de 2026 a las 00:00
KNX visualisering – Broken Access Control
- [local] Windows Defender (MsMpEng.exe) – Race Conditionen 6 de julio de 2026 a las 00:00
Windows Defender (MsMpEng.exe) – Race Condition
- [webapps] WordPress Plugin WPZOOM Portfolio 1.4.21 – Reflected Cross-Site Scripting (XSS)en 6 de julio de 2026 a las 00:00
WordPress Plugin WPZOOM Portfolio 1.4.21 – Reflected Cross-Site Scripting (XSS)
- [webapps] OpenEMR 7.0.2 – Arbitrary File Readen 8 de junio de 2026 a las 00:00
OpenEMR 7.0.2 – Arbitrary File Read
Noticias de seguridad / hacking / malware
- Friday Squid Blogging: Squid Washing Up on Cape Cod Beachpor Bruce Schneier en 17 de julio de 2026 a las 21:01
Lots of articles about this. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Blog moderation policy.
- Abbott Laboratories probes two cyber incidents amid extortion claimspor Lawrence Abrams en 17 de julio de 2026 a las 20:45
Abbott Laboratories is investigating two separate cybersecurity incidents after confirming unauthorized access to internal legacy Exact Sciences systems in its Cancer Diagnostics business, while also investigating a separate claim that attackers breached its LabCentral portal and stole company data. […]
- OpenSSL HollowByte Flaw Could Freeze Server Memory with 11-Byte TLS Requestspor info@thehackernews.com (The Hacker News) en 17 de julio de 2026 a las 20:20
Eleven bytes will make an unpatched OpenSSL server set aside up to 131 KB of memory for a message that never arrives. On the glibc systems Okta tested, that memory is gone until the process restarts. OpenSSL shipped the HollowByte fix in June with no CVE, no advisory, and no changelog entry pointing at it. Okta’s Red Team, which reported the denial-of-service bug and named it, published the
- Seven Malicious Vite npm Packages Use Blockchain C2 to Deliver a RATpor info@thehackernews.com (The Hacker News) en 17 de julio de 2026 a las 18:54
Cybersecurity researchers have discovered a cluster of seven malicious npm packages targeting the Vite frontend tooling ecosystem as part of a software supply chain attack. The malicious package campaign, codenamed ViteVenom by Checkmarx, marks an expansion of ChainVeil, which was observed using an «unprecedented» four-tier blockchain-based command-and-control (C2) infrastructure spanning Tron,
- HollowByte DDoS flaw bloats OpenSSL server memory with 11-byte payloadpor Bill Toulas en 17 de julio de 2026 a las 17:56
A vulnerability dubbed HollowByte allows unauthenticated attackers to trigger a denial-of-service (DoS) condition on OpenSSL servers with a malicious payload of just 11 bytes. […]
- New NadMesh Botnet Hunts Exposed AI Services for Cloud Keys and Kubernetes Tokenspor info@thehackernews.com (The Hacker News) en 17 de julio de 2026 a las 17:12
A Go botnet called NadMesh turned up in early July hunting exposed AI services, and the operator’s own dashboard claims 3,811 unique AWS keys. A Shodan harvester keeps the scan queue stocked with ComfyUI, Ollama, n8n, Open WebUI, Langflow, and Gradio: the image generators, local model runners, and workflow builders that teams stand up fast and firewall late. The intel feed behind that counter
- GoldenEyeDog Subgroup Linked to DigiCert Breach and Code-Signing Certificate Theftpor info@thehackernews.com (The Hacker News) en 17 de julio de 2026 a las 16:39
Cybersecurity researchers have attributed the April 2026 DigiCert security incident to a threat activity cluster dubbed CylindricalCanine. Expel, which shared technical details of the event, described the threat actor as a sub-group of GoldenEyeDog (aka APT-Q-27, Dragon Breath, and Miuuti Group), a Chinese cybercrime group known for its targeting of the gambling and gaming sectors using
- Ernst & Young discloses data breach after support system hackpor Bill Toulas en 17 de julio de 2026 a las 14:55
Ernst & Young is notifying customers of a data breach caused by the compromise of a third-party support ticket system used by its IT personnel. […]
- In Other News: Iran Tracks US Military Phones, CrashStealer macOS Malware, CVD Blueprintpor SecurityWeek News en 17 de julio de 2026 a las 14:27
Noteworthy stories that might have slipped under the radar: OpenClaw AI agents exploited via WhatsApp, ransomware hits naval defense firm TKMS, Lidl discloses data breach. The post In Other News: Iran Tracks US Military Phones, CrashStealer macOS Malware, CVD Blueprint appeared first on SecurityWeek.
- Inside the Search for «Clean» Residential Proxies for Cardingpor Sponsored by Flare en 17 de julio de 2026 a las 14:00
Residential proxies are no longer the silver bullet they once were for carding. Flare explains why cybercriminals increasingly seek «clean» residential proxies and combine them with browser fingerprints, device profiles, and other identity signals to evade modern fraud detection. […]
Malware y análisis de amenazas
- ISC Stormcast For Friday, July 17th, 2026 https://isc.sans.edu/podcastdetail/10012, (Fri, Jul 17th)en 17 de julio de 2026 a las 02:00
- ISC Stormcast For Thursday, July 16th, 2026 https://isc.sans.edu/podcastdetail/10010, (Thu, Jul 16th)en 16 de julio de 2026 a las 02:40
- ISC Stormcast For Wednesday, July 15th, 2026 https://isc.sans.edu/podcastdetail/10008, (Wed, Jul 15th)en 15 de julio de 2026 a las 02:00
- Recent DShield SIEM Update, (Tue, Jul 14th)en 15 de julio de 2026 a las 01:38
The last update to the DShield SIEM [4] was in Sep 2025 which contained some minor tweaks. This update currently is using ELK stack version 8.19.15, contains some additional dashboards and new logs.
- Microsoft Patch Tuesday July 2026 – The AI Acopolypse is Here , (Tue, Jul 14th)en 14 de julio de 2026 a las 19:14
This patch Tuesday includes a staggering&#;x26;#;xc2;&#;x26;#;xa0;622 vulnerabilities, not including another 427 vulnerabilities in Chromium, affecting Microsoft&#;x26;#;39;s Edge browser. 62 of the vulnerabilities are rated critical. One was disclosed before today, and two have already been exploited.
- ISC Stormcast For Tuesday, July 14th, 2026 https://isc.sans.edu/podcastdetail/10006, (Tue, Jul 14th)en 14 de julio de 2026 a las 02:15
- Someone Is Scanning for Your MCP Servers and AI Assistant Credentials, (Mon, Jul 13th)en 13 de julio de 2026 a las 04:22
The setup
- ISC Stormcast For Monday, July 13th, 2026 https://isc.sans.edu/podcastdetail/10004, (Mon, Jul 13th)en 13 de julio de 2026 a las 02:00
- Wireshark 4.6.7 Released, (Sat, Jul 11th)en 11 de julio de 2026 a las 09:07
Wireshark release 4.6.7 fixes 12 vulnerabilities and 16 bugs.
- My Stack Simulator, (Wed, Jul 8th)en 10 de julio de 2026 a las 15:52
The stack is a memory region where a program stores temporary data -&#;x26;#;xc2;&#;x26;#;xa0;like local variables and return addresses. Think of the stack as a pile of plates in your kitchen: you can only add a new plate to the top, and you can only take one away from the top too. Programs use this same «last in, first out» principle to keep track of what they&#;x26;#;39;re doing. Every time a function is called, the program pushes a new plate onto the stack containing things like local variables and the address to return to once the function finishes. When the function is done, that plate is popped off the top, and execution resumes exactly where it left off. This simple mechanism is what allows programs to call functions&#;x26;#;xc2;&#;x26;#;xa0;within functions, and always find their way back -&#;x26;#;xc2;&#;x26;#;xa0;but it&#;x26;#;39;s also precisely why a stack that grows too large, or gets overwritten with unexpected data, becomes a favorite target for attackers looking to hijack a program&#;x26;#;39;s execution flow.
