Secciones
- Vulnerabilidades y CVEs
- Exploits y pruebas de concepto
- Noticias de seguridad / hacking / malware
- Malware y análisis de amenazas
- Fabricantes de hardware
CERTs / Gobiernos
Fabricantes/ Vendors
- Adobe Security Bulletins
- Oracle Critical Patch Updates
- VMware Security Advisories
- Apple Security Updates
- Google Chrome Releases / Security
- Microsoft Security Bulletins (HTML)
Otros fabricantes y plataformas
Fabricantes de hardware
Vulnerabilidades y CVEs
- [webapps] Drupal Core 10.5.5 – Error-Based SQL Injectionen 1 de junio de 2026 a las 00:00
Drupal Core 10.5.5 – Error-Based SQL Injection
- [webapps] WordPress OrderConvo 14 – Path Traversalen 1 de junio de 2026 a las 00:00
WordPress OrderConvo 14 – Path Traversal
- [remote] Notepad++ 8.9.6 – Arbitrary Code Executionen 30 de mayo de 2026 a las 00:00
Notepad++ 8.9.6 – Arbitrary Code Execution
- [webapps] YAMCS yamcs-core 5.12.7 – No Rate Limitingen 30 de mayo de 2026 a las 00:00
YAMCS yamcs-core 5.12.7 – No Rate Limiting
- [webapps] YAMCS yamcs-core 5.12.7 – User Enumerationen 30 de mayo de 2026 a las 00:00
YAMCS yamcs-core 5.12.7 – User Enumeration
- [webapps] YAMCS yamcs-core 5.12.7 – LDAP Injectionen 30 de mayo de 2026 a las 00:00
YAMCS yamcs-core 5.12.7 – LDAP Injection
- [webapps] MixPHP Framework 2.2.17 – Unsafe Deserialization Remote Code Executionen 29 de mayo de 2026 a las 00:00
MixPHP Framework 2.2.17 – Unsafe Deserialization Remote Code Execution
- [remote] Microsoft – NTLMv2 Hash Captureen 29 de mayo de 2026 a las 00:00
Microsoft – NTLMv2 Hash Capture
- [webapps] Prodigy Commerce 3.3.0 – Local File Inclusionen 29 de mayo de 2026 a las 00:00
Prodigy Commerce 3.3.0 – Local File Inclusion
- [webapps] CubeCart < 6.7.0 – Reflected Cross-Site Scripting (XSS) (Unauthenticated)en 29 de mayo de 2026 a las 00:00
CubeCart < 6.7.0 – Reflected Cross-Site Scripting (XSS) (Unauthenticated)
Exploits y pruebas de concepto
- [webapps] Drupal Core 10.5.5 – Error-Based SQL Injectionen 1 de junio de 2026 a las 00:00
Drupal Core 10.5.5 – Error-Based SQL Injection
- [webapps] WordPress OrderConvo 14 – Path Traversalen 1 de junio de 2026 a las 00:00
WordPress OrderConvo 14 – Path Traversal
- [remote] Notepad++ 8.9.6 – Arbitrary Code Executionen 30 de mayo de 2026 a las 00:00
Notepad++ 8.9.6 – Arbitrary Code Execution
- [webapps] YAMCS yamcs-core 5.12.7 – No Rate Limitingen 30 de mayo de 2026 a las 00:00
YAMCS yamcs-core 5.12.7 – No Rate Limiting
- [webapps] YAMCS yamcs-core 5.12.7 – User Enumerationen 30 de mayo de 2026 a las 00:00
YAMCS yamcs-core 5.12.7 – User Enumeration
- [webapps] YAMCS yamcs-core 5.12.7 – LDAP Injectionen 30 de mayo de 2026 a las 00:00
YAMCS yamcs-core 5.12.7 – LDAP Injection
- [webapps] MixPHP Framework 2.2.17 – Unsafe Deserialization Remote Code Executionen 29 de mayo de 2026 a las 00:00
MixPHP Framework 2.2.17 – Unsafe Deserialization Remote Code Execution
- [remote] Microsoft – NTLMv2 Hash Captureen 29 de mayo de 2026 a las 00:00
Microsoft – NTLMv2 Hash Capture
- [webapps] Prodigy Commerce 3.3.0 – Local File Inclusionen 29 de mayo de 2026 a las 00:00
Prodigy Commerce 3.3.0 – Local File Inclusion
- [webapps] CubeCart < 6.7.0 – Reflected Cross-Site Scripting (XSS) (Unauthenticated)en 29 de mayo de 2026 a las 00:00
CubeCart < 6.7.0 – Reflected Cross-Site Scripting (XSS) (Unauthenticated)
- [local] ZTE ZXHN H188A V6 – Authentication Bypassen 29 de mayo de 2026 a las 00:00
ZTE ZXHN H188A V6 – Authentication Bypass
- [remote] strongSwan 5.9.13 – libsimaka EAP-SIM/AKA heap buffer overflowen 29 de mayo de 2026 a las 00:00
strongSwan 5.9.13 – libsimaka EAP-SIM/AKA heap buffer overflow
- [local] ZTE Routers – Unauthenticated Denial of Serviceen 29 de mayo de 2026 a las 00:00
ZTE Routers – Unauthenticated Denial of Service
- [local] ZTE H298A / H108N – Unauthenticated Credential Exposureen 29 de mayo de 2026 a las 00:00
ZTE H298A / H108N – Unauthenticated Credential Exposure
- [local] Linux Kernel – Local Privilege Escalationen 29 de mayo de 2026 a las 00:00
Linux Kernel – Local Privilege Escalation
- [remote] Wing FTP Server 8.1.3 – Authenticated Remote Code Executionen 29 de mayo de 2026 a las 00:00
Wing FTP Server 8.1.3 – Authenticated Remote Code Execution
- [webapps] Langflow 1.3.0 – Remote Code Executionen 29 de mayo de 2026 a las 00:00
Langflow 1.3.0 – Remote Code Execution
- [local] ImageMagick – Infinite Loop in the MIFF decoder can lead to CPU exhaustionen 29 de mayo de 2026 a las 00:00
ImageMagick – Infinite Loop in the MIFF decoder can lead to CPU exhaustion
- [webapps] Quick Playground for WordPress 1.3.1 – Unauthenticated Remote Code Executionen 29 de mayo de 2026 a las 00:00
Quick Playground for WordPress 1.3.1 – Unauthenticated Remote Code Execution
- [dos] strongSwan 5.9.13 – DoSen 29 de mayo de 2026 a las 00:00
strongSwan 5.9.13 – DoS
Noticias de seguridad / hacking / malware
- Microsoft Exchange Online outage causes email delays, failurespor Sergiu Gatlan en 2 de junio de 2026 a las 17:02
Microsoft is working to address a widespread service issue affecting the mail flow pipeline for Exchange Online customers across North America and Germany. […]
- Two New Reports Offer Competing Explanations for Cybersecurity’s Growing Crisispor Kevin Townsend en 2 de junio de 2026 a las 16:35
As AI shortens the path from vulnerability disclosure to exploitation, researchers disagree on whether the problem is inadequate security tools or inadequate operational control. The post Two New Reports Offer Competing Explanations for Cybersecurity’s Growing Crisis appeared first on SecurityWeek.
- Instagram users locked out after Meta AI abused to steal accountspor Bill Toulas en 2 de junio de 2026 a las 15:47
Multiple Instagram users had their accounts hijacked after attackers convinced Meta’s AI-powered support tools that they were the legitimate owners. […]
- Exclusive: How One Line of Code Put Billions of Microsoft Android App Downloads at Riskpor Kevin Townsend en 2 de junio de 2026 a las 15:00
A simple development setting bypassed protections designed to prevent unauthorized Android apps from accessing Microsoft account tokens, exposing billions of installations. The post Exclusive: How One Line of Code Put Billions of Microsoft Android App Downloads at Risk appeared first on SecurityWeek.
- Android Update Patches Exploited Zero-Day, 123 Other Vulnerabilitiespor Eduard Kovacs en 2 de junio de 2026 a las 14:36
Google says the Android vulnerability CVE-2025-48595 has been exploited in limited, targeted attacks. The post Android Update Patches Exploited Zero-Day, 123 Other Vulnerabilities appeared first on SecurityWeek.
- Why the browser is now the front line for AI securitypor Sponsored by Push Security en 2 de junio de 2026 a las 14:30
AI-powered attacks and shadow AI adoption are creating new security risks inside the browser. Push Security explains why browser visibility is becoming critical for both threat detection and AI governance. […]
- Anthropic Expanding Mythos Access to 150 New Organizationspor Eduard Kovacs en 2 de junio de 2026 a las 13:58
Only approximately 50 companies have had access to Mythos until now and they have found thousands of vulnerabilities in their products. The post Anthropic Expanding Mythos Access to 150 New Organizations appeared first on SecurityWeek.
- CISA flags two-year-old Oracle flaw as actively exploited in attackspor Sergiu Gatlan en 2 de junio de 2026 a las 12:40
CISA has ordered government agencies to secure their systems against a high-severity Oracle WebLogic Server vulnerability that was patched two years ago and is now actively exploited in attacks. […]
- The Zero-Knowledge Threat Actor and the End of Responsible Disclosurepor Etay Maor en 2 de junio de 2026 a las 12:30
AI can help attackers generate malware, create malicious payloads, bypass simple security checks, and convert vague malicious intent into functional code. The post The Zero-Knowledge Threat Actor and the End of Responsible Disclosure appeared first on SecurityWeek.
- Critical Vulnerability in HP VoIP Phones Enables Enterprise Network Breachespor Ionut Arghire en 2 de junio de 2026 a las 12:25
A stack-based buffer overflow bug can be exploited for remote code execution on a vulnerable device. The post Critical Vulnerability in HP VoIP Phones Enables Enterprise Network Breaches appeared first on SecurityWeek.
Malware y análisis de amenazas
- New Wave Of Phishing Emails with SVG Files, (Tue, Jun 2nd)en 2 de junio de 2026 a las 07:29
For a few days, my SANS ISC mailbox is flooded with emails that delivers SVG files. An SVG («Scalable Vector Graphic») is a web-friendly vector file format used for graphics and icons. No URL in the body, just âan imageâ, that’s the perfect way to deliver some malicious content. This isn’t the first time that we see this technique used by threat actors[1].
- ISC Stormcast For Tuesday, June 2nd, 2026 https://isc.sans.edu/podcastdetail/9954, (Tue, Jun 2nd)en 2 de junio de 2026 a las 02:00
- ISC Stormcast For Monday, June 1st, 2026 https://isc.sans.edu/podcastdetail/9952, (Mon, Jun 1st)en 1 de junio de 2026 a las 02:00
- Unidentified RAT pushes NetSupport RAT, (Mon, Jun 1st)en 1 de junio de 2026 a las 00:02
Introduction
- YARA-X 1.17.0 Release, (Sun, May 31st)en 31 de mayo de 2026 a las 16:01
YARA-X&#;x26;#;39;s 1.17.0 release brings 5 improvements (several performance improvements) and 1 bugfix.
- ISC Stormcast For Friday, May 29th, 2026 https://isc.sans.edu/podcastdetail/9950, (Fri, May 29th)en 29 de mayo de 2026 a las 02:00
- Analysis of a Year of Files Uploaded to DShield Sensors, (Wed, May 27th)en 28 de mayo de 2026 a las 19:41
Using the data collected over the past year and using Kibana these two ES|QL query to summarize the data, this shows the list of the most uploaded threat to two DShield sensors (local and cloud) over the past year. I have sorted the activity by months that shows the evolution of files uploaded to the sensors each month. The activity peaked during the winter months (Dec 2025 – Feb 2026) and started decreasing in March 2026 for each sensor.
- ISC Stormcast For Thursday, May 28th, 2026 https://isc.sans.edu/podcastdetail/9948, (Thu, May 28th)en 28 de mayo de 2026 a las 02:00
- Reconstructing an Akira Ransomware Kill Chain from Perimeter and Endpoint Logs, (Wed, May 27th)en 27 de mayo de 2026 a las 21:14
Most Akira write-ups focus on the ransom note or the encryption routine. By the time those show up the interesting forensic work is over. The questions that matter to defenders sit earlier. How did they get in. When did they get domain admin. What did they touch before the binary fired. Those answers live in the days before impact. They sit in two log sources that almost never get joined. The perimeter firewall and the Windows event channel.
- ISC Stormcast For Wednesday, May 27th, 2026 https://isc.sans.edu/podcastdetail/9946, (Wed, May 27th)en 27 de mayo de 2026 a las 02:00