uz
Feedback
Vulnerability News

Vulnerability News

Kanalga Telegram’da o‘tish

Every day new posts about vulnerabilities and cybersecurity news. Get the latest news about the cyberspace! Group: @VulnerabilityNewsGroup

Ko'proq ko'rsatish
5 060
Obunachilar
+224 soatlar
+317 kunlar
+12030 kunlar
Obunachilarni jalb qilish
Iyul '26
Iyul '26
+82
0 kanalda
Iyun '26
+156
0 kanalda
Get PRO
May '26
+204
0 kanalda
Get PRO
Aprel '26
+187
0 kanalda
Get PRO
Mart '26
+254
0 kanalda
Get PRO
Fevral '26
+116
0 kanalda
Get PRO
Yanvar '26
+166
0 kanalda
Get PRO
Dekabr '25
+134
0 kanalda
Get PRO
Noyabr '25
+139
0 kanalda
Get PRO
Oktabr '25
+8
0 kanalda
Get PRO
Sentabr '25
+12
0 kanalda
Get PRO
Avgust '25
+13
0 kanalda
Get PRO
Iyul '25
+11
0 kanalda
Get PRO
Iyun '25
+12
0 kanalda
Get PRO
May '25
+18
1 kanalda
Get PRO
Aprel '25
+14
0 kanalda
Get PRO
Mart '25
+21
0 kanalda
Get PRO
Fevral '25
+17
0 kanalda
Get PRO
Yanvar '25
+15
1 kanalda
Get PRO
Dekabr '24
+262
1 kanalda
Get PRO
Noyabr '24
+206
1 kanalda
Get PRO
Oktabr '24
+166
0 kanalda
Get PRO
Sentabr '24
+146
0 kanalda
Get PRO
Avgust '24
+137
0 kanalda
Get PRO
Iyul '24
+96
1 kanalda
Get PRO
Iyun '24
+91
0 kanalda
Get PRO
May '24
+95
0 kanalda
Get PRO
Aprel '24
+104
0 kanalda
Get PRO
Mart '24
+149
0 kanalda
Get PRO
Fevral '24
+279
0 kanalda
Get PRO
Yanvar '24
+395
0 kanalda
Get PRO
Dekabr '23
+327
0 kanalda
Get PRO
Noyabr '23
+38
0 kanalda
Get PRO
Oktabr '23
+32
0 kanalda
Get PRO
Sentabr '23
+47
0 kanalda
Get PRO
Avgust '23
+53
0 kanalda
Get PRO
Iyul '23
+51
0 kanalda
Get PRO
Iyun '23
+42
0 kanalda
Get PRO
May '23
+43
0 kanalda
Get PRO
Aprel '23
+67
0 kanalda
Get PRO
Mart '23
+65
0 kanalda
Get PRO
Fevral '23
+45
0 kanalda
Get PRO
Yanvar '23
+67
0 kanalda
Get PRO
Dekabr '22
+62
0 kanalda
Get PRO
Noyabr '22
+71
0 kanalda
Get PRO
Oktabr '22
+70
0 kanalda
Get PRO
Sentabr '22
+55
0 kanalda
Get PRO
Avgust '22
+44
0 kanalda
Get PRO
Iyul '22
+54
0 kanalda
Get PRO
Iyun '22
+78
0 kanalda
Get PRO
May '22
+46
0 kanalda
Get PRO
Aprel '22
+77
0 kanalda
Get PRO
Mart '22
+105
0 kanalda
Get PRO
Fevral '22
+48
0 kanalda
Get PRO
Yanvar '22
+61
0 kanalda
Get PRO
Dekabr '21
+99
0 kanalda
Get PRO
Noyabr '21
+68
0 kanalda
Get PRO
Oktabr '21
+170
0 kanalda
Get PRO
Sentabr '21
+72
0 kanalda
Get PRO
Avgust '21
+104
0 kanalda
Get PRO
Iyul '21
+72
0 kanalda
Get PRO
Iyun '21
+292
0 kanalda
Get PRO
May '21
+1 344
0 kanalda
Sana
Obunachilarni jalb qilish
Esdaliklar
Kanallar
14 Iyul+6
13 Iyul+5
12 Iyul+1
11 Iyul+6
10 Iyul+6
09 Iyul+5
08 Iyul+7
07 Iyul+9
06 Iyul+4
05 Iyul+7
04 Iyul+9
03 Iyul+10
02 Iyul+3
01 Iyul+4
Kanal postlari
Microsoft Entra ID security updates: Passkeys are the default authentication method in Entra ID Microsoft Entra ID makes passkeys the default sign-in experience and introduces a new model for SMS and voice authentication. Read about how to prepare. The post Microsoft Entra ID security updates: Passkeys are the default authentication method in Entra ID appeared first on Microsoft Security Blog. https://www.microsoft.com/en-us/security/blog/2026/07/13/microsoft-entra-id-security-updates-passkeys-are-the-default-authentication-method-in-entra-id/

2
Centers Laboratory Data Breach Affects 540,000 Individuals The WorldLeaks extortion group claimed to have stolen 720 GB of data from the healthcare testing and laboratory services provider. The post Centers Laboratory Data Breach Affects 540,000 Individuals appeared first on SecurityWeek. https://www.securityweek.com/centers-laboratory-data-breach-affects-540000-individuals/
80
3
Progress Prompts ShareFile Storage Zone Controller Shutdown Amid Security Concerns The company notified customers to manually shut down their servers while it is investigating a credible threat. The post Progress Prompts ShareFile Storage Zone Controller Shutdown Amid Security Concerns appeared first on SecurityWeek. https://www.securityweek.com/progress-prompts-sharefile-storage-zone-controller-shutdown-amid-security-concerns/
56
4
Organizations Warned of Exploited Joomla Extension Vulnerabilities Threat actors have been targeting Balbooa Forms and iCagenda Joomla extension flaws for remote code execution. The post Organizations Warned of Exploited Joomla Extension Vulnerabilities appeared first on SecurityWeek. https://www.securityweek.com/organizations-warned-of-exploited-joomla-extension-vulnerabilities/
42
5
EU Targets Russian Intelligence Officers Accused of Running a Yearslong Cyber Spying Campaign The move targeted people and entities accused of links to an online spying network that the EU claims targeted governments and carried out sabotage operations against critical infrastructure. The post EU Targets Russian Intelligence Officers Accused of Running a Yearslong Cyber Spying Campaign appeared first on SecurityWeek. https://www.securityweek.com/eu-targets-russian-intelligence-officers-accused-of-running-a-yearslong-cyber-spying-campaign/
40
6
Zimbra Patches Critical Code Execution Vulnerability The flaw results in malicious code embedded in crafted emails being executed when the emails are opened. The post Zimbra Patches Critical Code Execution Vulnerability appeared first on SecurityWeek. https://www.securityweek.com/zimbra-patches-critical-code-execution-vulnerability/
30
7
RabbitMQ Vulnerability Threatens Enterprise Systems Unauthenticated attackers could obtain the broker's confidential OAuth client secret, allowing them to take control of the broker. The post RabbitMQ Vulnerability Threatens Enterprise Systems appeared first on SecurityWeek. https://www.securityweek.com/rabbitmq-vulnerability-threatens-enterprise-systems/
30
8
Cybersecurity M&A Roundup: 37 Deals Announced in June 2026 Significant cybersecurity M&A deals announced by 1Password, Accenture, Cisco, F5, Rubrik, and SailPoint. The post Cybersecurity M&A Roundup: 37 Deals Announced in June 2026 appeared first on SecurityWeek. https://www.securityweek.com/cybersecurity-ma-roundup-37-deals-announced-in-june-2026/
28
9
Hacker Conversations: Jesse McGraw (GhostExodus), From Blackhat Hacker to Redemption Once a notorious blackhat hacker, McGraw shares his journey from high school hacking and prison to redemption as a cybersecurity advocate. The post Hacker Conversations: Jesse McGraw (GhostExodus), From Blackhat Hacker to Redemption appeared first on SecurityWeek. https://www.securityweek.com/hacker-conversations-jesse-mcgraw-ghostexodus-from-blackhat-hacker-to-redemption/
28
10
Lessons Learned from CISA’s Recent GitHub Leak The Cybersecurity and Infrastructure Security Agency (CISA) has issued a postmortem on a data leak in which a contractor published dozens of internal CISA credentials -- including AWS Govcloud keys -- in a public GitHub repository for almost six months before being notified by KrebsOnSecurity. Experts say the gaps identified in the agency's initial response provide important lessons that all security teams should absorb. https://krebsonsecurity.com/2026/07/lessons-learned-from-cisas-recent-github-leak/
27
11
OpenAI temporarily relaxes GPT-5.6 Sol usage limits OpenAI is temporarily relaxing GPT-5.6 Sol usage after demand for the company's most powerful model surged over the past 48 hours. [...] https://www.bleepingcomputer.com/news/artificial-intelligence/openai-temporarily-relaxes-gpt-56-sol-usage-limits/
27
12
US and allies warn of Russian critical infrastructure attacks Cybersecurity agencies from the United States and eight other countries have issued a joint warning that Russian state hackers are targeting vulnerable and poorly configured routers to infiltrate critical infrastructure networks. [...] https://www.bleepingcomputer.com/news/security/us-and-allies-share-defense-tips-against-russian-hackers-targeting-critical-infrastructure/
30
13
EU sanctions Russian GRU military hackers over cyberattacks The European Union and the United Kingdom jointly sanctioned dozens of Russian individuals and entities and accused Russia of coordinating a network of hacking groups responsible for attacks across Europe. [...] https://www.bleepingcomputer.com/news/security/eu-and-uk-hit-russia-with-first-joint-cyber-sanctions-package/
29
14
UK charges suspects linked to Russian Coms call spoofing platform UK authorities charged five people following a National Crime Agency (NCA) investigation into Russian Coms, a major caller ID spoofing platform used by criminals to make over 1.8 million scam calls. [...] https://www.bleepingcomputer.com/news/security/uk-charges-suspects-linked-to-russian-coms-call-spoofing-platform/
32
15
Breach at the Beach: Play the Ultimate Entra ID CTF Learn how attackers abuse Entra ID through a free hands-on Capture the Flag. Varonis created the Breach at the Beach CTF to teach defenders how to investigate Entra ID attack techniques using realistic scenarios. [...] https://www.bleepingcomputer.com/news/security/breach-at-the-beach-play-the-ultimate-entra-id-ctf/
38
16
Lidl discloses online shop breach after service provider hack German discount supermarket chain Lidl notified customers in Germany, Belgium, and the Netherlands that attackers stole their personal information in a breach at a service provider. [...] https://www.bleepingcomputer.com/news/security/lidl-discloses-online-shop-breach-after-service-provider-hack/
35
17
CISA warns of actively exploited RCE flaws in Joomla extensions The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is warning that attackers are exploiting vulnerabilities in the iCagenda and Balbooa Forms extensions for Joomla to achieve remote code execution through arbitrary file uploads. [...] https://www.bleepingcomputer.com/news/security/cisa-warns-of-actively-exploited-rce-flaws-in-joomla-extensions/
35
18
New CrashStealer malware poses as Apple crash reporting tool A new macOS information-stealing malware called CrashStealer pretends to be Apple's crash-reporting tool to steal credentials, keychain data, and crypto wallets. [...] https://www.bleepingcomputer.com/news/security/new-crashstealer-malware-poses-as-apple-crash-reporting-tool/
36
19
Hackers backdoor Jscrambler npm package with infostealer malware The Jscrambler client-side web security company disclosed that a threat actor published a malicious version of its npm package that has been downloaded almost 1,500 times. [...] https://www.bleepingcomputer.com/news/security/hackers-backdoor-jscrambler-npm-package-with-infostealer-malware/
44
20
Japan's largest taxi operator shuts systems after cyberattack Japan's largest taxi operator, Nihon Kotsu, announced that its systems were compromised in a cyberattack, forcing the company to shut down part of its infrastructure. [...] https://www.bleepingcomputer.com/news/security/japans-largest-taxi-operator-shuts-systems-after-cyberattack/
58