Indicators of Compromise

GBHackers 📡 RSS Jun 3

Critical Apache ActiveMQ Vulnerability Exposes Systems to Security Header Injection Attacks

CVEs: CVE-2026-42253

GBHackers →

CISA Advisories 📡 RSS Jun 3

CISA Adds One Known Exploited Vulnerability to Catalog

CVEs: CVE-2026-45247

CISA Advisories →

GBHackers 📡 RSS Jun 3

Ivanti ITSM Flaw Could Allow Attackers to Escalate to Admin Access

CVEs: CVE-2026-9614

GBHackers →

The Hacker News 📡 RSS Jun 3

Unpatched Windows Search URI Vulnerability Lets Attackers Steal NTLMv2 Hashes

CVEs: CVE-2026-33829

The Hacker News →

Security Affairs 📡 RSS Jun 3

Google Patches Actively Exploited Android Flaw Affecting Millions of Devices

CVEs: CVE-2025-48595

Security Affairs →

GBHackers 📡 RSS Jun 3

Windows Search URI Handler Vulnerability Exposes NTLMv2 Hashes to Remote Attackers

CVEs: CVE-2026-33829

GBHackers →

GBHackers 📡 RSS Jun 3

Laravel CRLF Injection Flaw Could Disrupt Outbound Email Handling

CVEs: CVE-2026-48019

GBHackers →

GBHackers 📡 RSS Jun 3

Microsoft MSRC Allegedly Declines Action on Dependency Confusion Vulnerability

Domains: portal.azure.com

GBHackers →

Security Affairs 📡 RSS Jun 3

Why an HP Poly VoIP Phones Bug Could Become an Enterprise Foothold

CVEs: CVE-2026-0826

Security Affairs →

Zero Day Initiative 📡 RSS Jun 3

ZDI-26-327: Docker Desktop grpcfuse Kernel Module Uncontrolled Recursion Denial-of-Service Vulnerability

CVEs: CVE-2026-8936

Zero Day Initiative →

SANS ISC 📡 RSS Jun 3

ISC Stormcast For Wednesday, June 3rd, 2026 https://isc.sans.edu/podcastdetail/9956, (Wed, Jun 3rd)

SANS ISC →

CSO Online 📡 RSS Jun 2

Two-year old Oracle WebLogic Server vulnerability is being exploited

CVEs: CVE-2024-21182

IPs: 12.2.1.4

CSO Online →

BleepingComputer 📡 RSS Jun 2

Critical Kirki flaw exploited to hijack WordPress admin accounts

CVEs: CVE-2026-8206

BleepingComputer →

SC Media 📡 RSS Jun 2

Google releases June Android security patches addressing 124 vulnerabilities, including 1 zero-day

CVEs: CVE-2025-48595

SC Media →

SC Media 📡 RSS Jun 2

CISA orders agencies to patch critical Oracle WebLogic Server vulnerability

CVEs: CVE-2024-21182

IPs: 12.2.1.4 14.1.1.0

SC Media →

CSO Online 📡 RSS Jun 2

HP Poly VoIP vulnerability sets the stage for executive voice deepfakes

CVEs: CVE-2026-0826

CSO Online →

The Hacker News 📡 RSS Jun 2

Google June 2026 Android Update Patches 124 Flaws, One Actively Exploited

CVEs: CVE-2025-48595

The Hacker News →

The Hacker News 📡 RSS Jun 2

Gamaredon Exploits WinRAR to Deliver GammaWorm and GammaSteel Against Ukraine

CVEs: CVE-2025-8088

The Hacker News →

The Hacker News 📡 RSS Jun 2

Oracle WebLogic CVE-2024-21182 Added to KEV Catalog After Active Exploitation

CVEs: CVE-2024-21182

The Hacker News →

Security Affairs 📡 RSS Jun 2

U.S. CISA adds Oracle WebLogic flaw to its Known Exploited Vulnerabilities catalog

CVEs: CVE-2024-21182

Security Affairs →