Endi mavjud! Telegram Tadqiqoti 2025 — yilning asosiy insaytlari 
Vulnerability News
Kanalga Telegram’da o‘tish
Every day new posts about vulnerabilities and cybersecurity news. Get the latest news about the cyberspace! Group: @VulnerabilityNewsGroup
Ko'proq ko'rsatish4 970
Obunachilar
+424 soatlar
+237 kunlar
+13830 kunlar
Ma'lumot yuklanmoqda...
O'xshash kanallar
Taglar buluti
Kirish va chiqish esdaliklari
---
---
---
---
---
---
Obunachilarni jalb qilish
Iyun '26
Iyun '26
+120
0 kanalda
May '26
+204
0 kanalda
Get PRO
Aprel '26
+187
0 kanalda
Get PRO
Mart '26
+254
0 kanalda
Get PRO
Fevral '26
+116
0 kanalda
Get PRO
Yanvar '26
+166
0 kanalda
Get PRO
Dekabr '25
+134
0 kanalda
Get PRO
Noyabr '25
+139
0 kanalda
Get PRO
Oktabr '25
+8
0 kanalda
Get PRO
Sentabr '25
+12
0 kanalda
Get PRO
Avgust '25
+13
0 kanalda
Get PRO
Iyul '25
+11
0 kanalda
Get PRO
Iyun '25
+12
0 kanalda
Get PRO
May '25
+18
1 kanalda
Get PRO
Aprel '25
+14
0 kanalda
Get PRO
Mart '25
+21
0 kanalda
Get PRO
Fevral '25
+17
0 kanalda
Get PRO
Yanvar '25
+15
1 kanalda
Get PRO
Dekabr '24
+262
1 kanalda
Get PRO
Noyabr '24
+206
1 kanalda
Get PRO
Oktabr '24
+166
0 kanalda
Get PRO
Sentabr '24
+146
0 kanalda
Get PRO
Avgust '24
+137
0 kanalda
Get PRO
Iyul '24
+96
1 kanalda
Get PRO
Iyun '24
+91
0 kanalda
Get PRO
May '24
+95
0 kanalda
Get PRO
Aprel '24
+104
0 kanalda
Get PRO
Mart '24
+149
0 kanalda
Get PRO
Fevral '24
+279
0 kanalda
Get PRO
Yanvar '24
+395
0 kanalda
Get PRO
Dekabr '23
+327
0 kanalda
Get PRO
Noyabr '23
+38
0 kanalda
Get PRO
Oktabr '23
+32
0 kanalda
Get PRO
Sentabr '23
+47
0 kanalda
Get PRO
Avgust '23
+53
0 kanalda
Get PRO
Iyul '23
+51
0 kanalda
Get PRO
Iyun '23
+42
0 kanalda
Get PRO
May '23
+43
0 kanalda
Get PRO
Aprel '23
+67
0 kanalda
Get PRO
Mart '23
+65
0 kanalda
Get PRO
Fevral '23
+45
0 kanalda
Get PRO
Yanvar '23
+67
0 kanalda
Get PRO
Dekabr '22
+62
0 kanalda
Get PRO
Noyabr '22
+71
0 kanalda
Get PRO
Oktabr '22
+70
0 kanalda
Get PRO
Sentabr '22
+55
0 kanalda
Get PRO
Avgust '22
+44
0 kanalda
Get PRO
Iyul '22
+54
0 kanalda
Get PRO
Iyun '22
+78
0 kanalda
Get PRO
May '22
+46
0 kanalda
Get PRO
Aprel '22
+77
0 kanalda
Get PRO
Mart '22
+105
0 kanalda
Get PRO
Fevral '22
+48
0 kanalda
Get PRO
Yanvar '22
+61
0 kanalda
Get PRO
Dekabr '21
+99
0 kanalda
Get PRO
Noyabr '21
+68
0 kanalda
Get PRO
Oktabr '21
+170
0 kanalda
Get PRO
Sentabr '21
+72
0 kanalda
Get PRO
Avgust '21
+104
0 kanalda
Get PRO
Iyul '21
+72
0 kanalda
Get PRO
Iyun '21
+292
0 kanalda
Get PRO
May '21
+1 344
0 kanalda
| Sana | Obunachilarni jalb qilish | Esdaliklar | Kanallar | |
| 24 Iyun | +2 | |||
| 23 Iyun | +4 | |||
| 22 Iyun | +4 | |||
| 21 Iyun | +5 | |||
| 20 Iyun | +5 | |||
| 19 Iyun | +6 | |||
| 18 Iyun | +5 | |||
| 17 Iyun | +2 | |||
| 16 Iyun | +5 | |||
| 15 Iyun | +6 | |||
| 14 Iyun | +4 | |||
| 13 Iyun | +3 | |||
| 12 Iyun | +6 | |||
| 11 Iyun | +7 | |||
| 10 Iyun | +4 | |||
| 09 Iyun | +2 | |||
| 08 Iyun | +8 | |||
| 07 Iyun | +8 | |||
| 06 Iyun | +8 | |||
| 05 Iyun | +2 | |||
| 04 Iyun | +8 | |||
| 03 Iyun | +6 | |||
| 02 Iyun | +4 | |||
| 01 Iyun | +6 |
Kanal postlari
Trump Signs Executive Order Accelerating Post-Quantum Cryptography Migration
Federal agencies are required to transition high-value assets and high-impact systems to use PQC by the end of 2030 and 2031.
The post Trump Signs Executive Order Accelerating Post-Quantum Cryptography Migration appeared first on SecurityWeek.
https://www.securityweek.com/trump-signs-executive-order-accelerating-post-quantum-cryptography-migration/
| 2 | Canadian Electricity Provider London Hydro Discloses Data Breach
Hackers stole customers’ names, addresses, email addresses, phone numbers, and account information.
The post Canadian Electricity Provider London Hydro Discloses Data Breach appeared first on SecurityWeek.
https://www.securityweek.com/canadian-electricity-provider-london-hydro-discloses-data-breach/ | 25 |
| 3 | Russian Initial Access Broker Behind FortiBleed Campaign
Using a custom sniffer, the threat actor has captured over 110 million credentials since at least February 2026.
The post Russian Initial Access Broker Behind FortiBleed Campaign appeared first on SecurityWeek.
https://www.securityweek.com/russian-initial-access-broker-behind-fortibleed-campaign/ | 20 |
| 4 | OpenAI Refocuses Cybersecurity Efforts on Patching Over Discovery
OpenAI has expanded its Daybreak cybersecurity initiative with a new suite of tools and partnerships.
The post OpenAI Refocuses Cybersecurity Efforts on Patching Over Discovery appeared first on SecurityWeek.
https://www.securityweek.com/openai-refocuses-cybersecurity-efforts-on-patching-over-discovery/ | 16 |
| 5 | FFmpeg PixelSmash Flaw Allows RCE on Video Players, Media Servers, NAS Appliances
Attackers can send crafted media files to execute code in any application that uses FFmpeg’s libavcodec library.
The post FFmpeg PixelSmash Flaw Allows RCE on Video Players, Media Servers, NAS Appliances appeared first on SecurityWeek.
https://www.securityweek.com/ffmpeg-pixelsmash-flaw-allows-rce-on-video-players-media-servers-nas-appliances/ | 13 |
| 6 | Algerian Man Extradited to US for Running Cybercrime Marketplaces
26-year-old Abdellah Belmili faces up to 30 years in prison for allegedly operating the marketplaces Market0Day and Spoxy.
The post Algerian Man Extradited to US for Running Cybercrime Marketplaces appeared first on SecurityWeek.
https://www.securityweek.com/algerian-man-extradited-to-us-for-running-cybercrime-marketplaces/ | 12 |
| 7 | CISO Conversations: Carl Froggett – Combining CISO and CIO at Deep Instinct
Carl Froggett combines CISO and CIO. He currently occupies both positions at Deep Instinct. Before then, he was CISO at Citi for almost 17 years.
The post CISO Conversations: Carl Froggett – Combining CISO and CIO at Deep Instinct appeared first on SecurityWeek.
https://www.securityweek.com/ciso-conversations-carl-froggett-combining-ciso-and-cio-at-deep-instinct/ | 11 |
| 8 | Eight-Year-Old Samsung KNOX Flaw Exposed Millions of Galaxy Devices to Kernel Attacks
The high-severity use-after-free vulnerability in Samsung's KNOX security framework affected Android-powered Galaxy devices from the S9 through S25.
The post Eight-Year-Old Samsung KNOX Flaw Exposed Millions of Galaxy Devices to Kernel Attacks appeared first on SecurityWeek.
https://www.securityweek.com/eight-year-old-samsung-knox-flaw-exposed-millions-of-galaxy-devices-to-kernel-attacks/ | 12 |
| 9 | Data Exposure Flaws Threaten Dify AI Platform Used by 1 Million Apps
Attackers could abuse Dify's multi-tenant cloud service to read private chats, preview other tenants' documents, and reach internal APIs.
The post Data Exposure Flaws Threaten Dify AI Platform Used by 1 Million Apps appeared first on SecurityWeek.
https://www.securityweek.com/data-exposure-flaws-threaten-dify-ai-platform-powering-over-1-million-apps/ | 7 |
| 10 | Dragos Unveils AI for OT SecurityÂ
Named EmberAI, the new capability is built on Dragos’ massive operational technology cybersecurity dataset.
The post Dragos Unveils AI for OT Security appeared first on SecurityWeek.
https://www.securityweek.com/dragos-unveils-ai-for-ot-security/ | 7 |
| 11 | Scattered Spider Hackers Plead Guilty on Day 1 of Trial
Two men pleaded guilty in the United Kingdom this week to criminal charges stemming from an August 2024 cyberattack that crippled Transport for London, the entity responsible for the public transport network in the Greater London area. The duo were key members of a prolific cybercrime group known as Scattered Spider, and their guilty pleas came on the first day of what was expected to be a six-week trial.
https://krebsonsecurity.com/2026/06/scattered-spider-hackers-plead-guilty-on-day-1-of-trial/ | 8 |
| 12 | Webinar: Why email security teams are drowning in alerts
Phishing, BEC, and account takeover attacks continue to overwhelm security teams with alerts and investigations. This webinar explores how behavioral AI can help automate detection and response workflows, reducing alert fatigue and improving operational efficiency. [...]
https://www.bleepingcomputer.com/news/security/webinar-why-email-security-teams-are-drowning-in-alerts/ | 8 |
| 13 | LastPass confirms data breach in Klue supply chain attack
LastPass announced that hackers accessed customer data from its Salesforce environment after stealing the company's OAuth tokens in the Klue supply chain attack earlier this month. [...]
https://www.bleepingcomputer.com/news/security/lastpass-confirms-data-breach-in-klue-supply-chain-attack/ | 8 |
| 14 | The Exploit Doesn't Exist. You Can Still Prove It Works Against You
Attackers can now weaponize newly disclosed vulnerabilities far faster than most organizations can patch them. Picus Security explains how security teams can validate exploitability before a public exploit even exists. [...]
https://www.bleepingcomputer.com/news/security/the-exploit-doesnt-exist-you-can-still-prove-it-works-against-you/ | 8 |
| 15 | Scattered Spider members plead guilty to hacking Transport for London
Two members of the 'Scattered Spider' cybercrime group pleaded guilty to hacking the Transport for London (TfL) systems in 2024. [...]
https://www.bleepingcomputer.com/news/security/scattered-spider-members-plead-guilty-to-hacking-transport-for-london/ | 7 |
| 16 | New macOS ClickFix attack silently mounts DMGs to push infostealer
A new macOS ClickFix campaign is using Terminal commands to silently download, mount, and launch info-stealing malware from malicious disk image (DMG) files. [...]
https://www.bleepingcomputer.com/news/security/new-macos-clickfix-attack-silently-mounts-dmgs-to-push-infostealer/ | 7 |
| 17 | Healthtech firm Xolis suffers data breach impacting 1.4 million people
Healthcare technology company Xsolis says that sensitive data belonging to nearly 1.4 million individuals was compromised in a phishing attack that gave attackers access to its network. [...]
https://www.bleepingcomputer.com/news/security/healthtech-firm-xolis-suffers-data-breach-impacting-14-million-people/ | 8 |
| 18 | Windows 11 KB5095093 update rolls out new Point-in-Time restore feature
​​Microsoft has released the KB5095093 preview cumulative update for Windows 11 24H2 and 25H2, which fixes numerous bugs and begins rolling out new features, including the new Point-in-Time restore feature. [...]
https://www.bleepingcomputer.com/news/microsoft/windows-11-kb5095093-update-rolls-out-new-point-in-time-restore-feature/ | 8 |
| 19 | Tata Electronics confirms cyberattack as hackers leak data
Tata Electronics has confirmed in a statement to BleepingComputer that it was the target of a cyberattack that impacted parts of its IT infrastructure. [...]
https://www.bleepingcomputer.com/news/security/tata-electronics-confirms-cyberattack-as-hackers-leak-data/ | 11 |
| 20 | Cisco Unified CM flaw CVE-2026-20230 now exploited in attacks
A high-severity SSRF vulnerability, tracked as CVE-2026-20230, in Cisco Unified Communications Manager Server is now being exploited in attacks. [...]
https://www.bleepingcomputer.com/news/security/cisco-unified-cm-sme-flaw-cve-2026-20230-now-exploited-in-attacks/ | 18 |
