CIRCLE WITH A DOT

#Ghost #CMS #SQL #injection flaw exploited in large-scale ClickFix campaign sites like #Harvard University, affected..#cybersecurity #cybersec #cyberops #exploits #patches https://forums.3corns.com/viewtopic.php?t=37

CVE-2026-34474: Pre-auth #credential disclosure in #ZTE #H298A / #H108N via #ETHCheat...The short version: an ETHCheat branch returns credential-bearing #HTML before #authentication. The captured fields include the admin password, WLAN PSK, and ESSID, and a companion wizard #endpoint #exposes serial data. #cybersecurity #cybersec #security #exploited

2026-05-21 RDP #Honeypot IOCs - 468 scansThread with top 3 features in each category and links to the full dataset#DFIR #InfoSecTop IPs:46.63.101.233 - 276193.169.194.14 - 57111.170.152.113 - 15Top ASNs:AS51784 - 276AS214576 - 57AS396982 - 45Top Accounts:hello - 309(empty) - 57Test - 30Top ISPs:X-city Customers and Private - 276Berdiev Ruslan Mukhabatovich - 57Google LLC - 45Top Clients:Unknown - 468Top Software:Unknown - 468Top Keyboards:Unknown - 468Top IP Classification:Unknown - 408hosting - 48hosting & proxy - 12Pastebin links with full 24-hr RDP Honeypot IOC Lists:Bad API request, invalid api_dev_key#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-21 RDP #Honeypot IOCs - 312 scansThread with top 3 features in each category and links to the full dataset#DFIR #InfoSecTop IPs:46.63.101.233 - 184193.169.194.14 - 38111.170.152.113 - 10Top ASNs:AS51784 - 184AS214576 - 38AS396982 - 30Top Accounts:hello - 206(empty) - 38Test - 20Top ISPs:X-city Customers and Private - 184Berdiev Ruslan Mukhabatovich - 38Google LLC - 30Top Clients:Unknown - 312Top Software:Unknown - 312Top Keyboards:Unknown - 312Top IP Classification:Unknown - 272hosting - 32hosting & proxy - 8Pastebin links with full 24-hr RDP Honeypot IOC Lists:Bad API request, invalid api_dev_key#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-21 RDP #Honeypot IOCs - 156 scansThread with top 3 features in each category and links to the full dataset#DFIR #InfoSecTop IPs:46.63.101.233 - 92193.169.194.14 - 19111.170.152.113 - 5Top ASNs:AS51784 - 92AS214576 - 19AS396982 - 15Top Accounts:hello - 103(empty) - 19Test - 10Top ISPs:X-city Customers and Private - 92Berdiev Ruslan Mukhabatovich - 19Google LLC - 15Top Clients:Unknown - 156Top Software:Unknown - 156Top Keyboards:Unknown - 156Top IP Classification:Unknown - 136hosting - 16hosting & proxy - 4Pastebin links with full 24-hr RDP Honeypot IOC Lists:Bad API request, invalid api_dev_key#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-19 RDP #Honeypot IOCs - 420 scansThread with top 3 features in each category and links to the full dataset#DFIR #InfoSecTop IPs:46.63.101.233 - 99193.169.194.14 - 63124.222.173.104 - 57Top ASNs:AS51784 - 99AS214576 - 63AS45090 - 57Top Accounts:hello - 204(empty) - 66Test - 36Top ISPs:X-city Customers and Private - 99Berdiev Ruslan Mukhabatovich - 63China Internet Network Information Center - 57Top Clients:Unknown - 420Top Software:Unknown - 420Top Keyboards:Unknown - 420Top IP Classification:Unknown - 303hosting - 90proxy - 24Pastebin links with full 24-hr RDP Honeypot IOC Lists:Bad API request, invalid api_dev_key#CyberSec #SOC #Blueteam #SecOps #Security

🟠 New security advisory:CVE-2021-47930 affects multiple systems.• Impact: Significant security breach potential• Risk: Unauthorized access or data exposure• Mitigation: Apply patches within 24-48 hoursFull breakdown:https://www.yazoul.net/advisory/cve/cve-2021-47930-joomla-forms-builder-sqli-leaks-data#InfoSec #VulnerabilityManagement #CyberSec

New security advisory:CVE-2026-41497 affects Praison Praisonai.• Impact: Remote code execution or complete system compromise possible• Risk: Attackers can gain full control of affected systems• Mitigation: Patch immediately or isolate affected systemsFull breakdown:https://www.yazoul.net/advisory/cve/cve-2026-41497-praisonai-rce-no-auth-needed#InfoSec #VulnerabilityManagement #CyberSec

2026-05-08 RDP #Honeypot IOCs - 300 scansThread with top 3 features in each category and links to the full dataset#DFIR #InfoSecTop IPs:46.63.101.233 - 45104.248.62.230 - 45160.187.146.221 - 30Top ASNs:AS14061 - 48AS51784 - 45AS63949 - 42Top Accounts:hello - 156Test - 39eltons - 15Top ISPs:DigitalOcean, LLC - 48X-city Customers and Private - 45Akamai Technologies, Inc. - 42Top Clients:Unknown - 300Top Software:Unknown - 300Top Keyboards:Unknown - 300Top IP Classification:Unknown - 153hosting - 135proxy - 12Pastebin links with full 24-hr RDP Honeypot IOC Lists:Bad API request, invalid api_dev_key#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-08 RDP #Honeypot IOCs - 200 scansThread with top 3 features in each category and links to the full dataset#DFIR #InfoSecTop IPs:46.63.101.233 - 30104.248.62.230 - 30160.187.146.221 - 20Top ASNs:AS14061 - 32AS51784 - 30AS63949 - 28Top Accounts:hello - 104Test - 26eltons - 10Top ISPs:DigitalOcean, LLC - 32X-city Customers and Private - 30Akamai Technologies, Inc. - 28Top Clients:Unknown - 200Top Software:Unknown - 200Top Keyboards:Unknown - 200Top IP Classification:Unknown - 102hosting - 90proxy - 8Pastebin links with full 24-hr RDP Honeypot IOC Lists:Bad API request, invalid api_dev_key#CyberSec #SOC #Blueteam #SecOps #Security

New security advisory:CVE-2026-43581 affects multiple systems.• Impact: Remote code execution or complete system compromise possible• Risk: Attackers can gain full control of affected systems• Mitigation: Patch immediately or isolate affected systemsFull breakdown:https://www.yazoul.net/advisory/cve/cve-2026-43581-openclaw-exposes-cdp-relay-traffic#Cybersecurity #VulnerabilityManagement #CyberSec

New security advisory:CVE-2026-42779 affects Apache Mina.• Impact: Remote code execution or complete system compromise possible• Risk: Attackers can gain full control of affected systems• Mitigation: Patch immediately or isolate affected systemsFull breakdown:https://www.yazoul.net/advisory/cve/cve-2026-42779-mina-unauthenticated-rce-via-bad-fix#CVE #VulnerabilityManagement #CyberSec

It's crazy that the researchers who discovered Copy Fail only worked with the Linux Kernel Organization to patch it in the mainline kernel but didn't work with any of the major distros to make sure a patch was available before disclosing the exploit. Unless you're running a rolling distro, a dev version or a distro with short release windows, it's effectively an unpatched zeroday.The ones most vulnerable to this are the type of systems that run on long term release kernels, not rolling releases or short release distros like Fedora.This whole saga is a big clusterfuck for the Linux community to scramble to patch this major flaw.#Linux #CopyFail #CVE_2026_31431 #infosec #cybersecRE: https://infosec.exchange/@BleepingComputer/116493995434262191

New security advisory:CVE-2026-33454 affects multiple systems.• Impact: Remote code execution or complete system compromise possible• Risk: Attackers can gain full control of affected systems• Mitigation: Patch immediately or isolate affected systemsFull breakdown:https://www.yazoul.net/advisory/cve/cve-2026-33454-apache-camel-header-injection-via-email#InfoSec #VulnerabilityManagement #CyberSec

New security advisory:CVE-2026-24303 affects multiple systems.• Impact: Remote code execution or complete system compromise possible• Risk: Attackers can gain full control of affected systems• Mitigation: Patch immediately or isolate affected systemsFull breakdown:https://www.yazoul.net/advisory/cve/cve-2026-24303-partner-center-privilege-escalation#Cybersecurity #VulnerabilityManagement #CyberSec