Security Affairs

Security Affairs Read, think, share … Security is everyone’s responsibility

  • Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed
    by Pierluigi Paganini on July 1, 2026 at 7:49 pm

    Oracle E-Business Suite flaw CVE-2026-46817 is under active attack, with about 950 vulnerable internet-facing instances still exposed. This week, Defused Cyber researchers warned that a critical vulnerability in Oracle E-Business Suite, tracked as CVE-2026-46817, is being actively exploited. The flaw affects Oracle Payments versions 12.2.3 through 12.2.15 and allows unauthenticated attackers to take over vulnerable

  • Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs
    by Pierluigi Paganini on July 1, 2026 at 1:55 pm

    81 Million Login Attempts, 78 Compromised Accounts: The LSHIY Password Spray Hitting Azure CLI Huntress researchers have been tracking a massive automated password spray campaign against Microsoft Azure CLI environments since June 12, 2026. A password spray attack is when attackers try a small number of common passwords across many accounts instead of many passwords

  • CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks
    by Pierluigi Paganini on July 1, 2026 at 11:26 am

    CISA confirms BlueHammer (CVE-2026-33825) is now used in ransomware attacks to gain SYSTEM privileges through Microsoft Defender. BlueHammer, tracked as CVE-2026-33825, has moved from proof-of-concept noise to real ransomware attacks in the wild, the US CISA confirms. BlueHammer allows attackers to escalate privileges locally in Microsoft Defender. The vulnerability, along with two other zero-days dubbed

  • RustDuck: The Botnet That’s Still Small but Engineering Like It Plans to Grow
    by Pierluigi Paganini on July 1, 2026 at 10:25 am

    RustDuck is a small, evolving DDoS botnet migrating to Rust. It uses advanced encryption, anti-analysis evasion, and exploits known IoT flaws. Since February 2026, researchers at QiAnXin’s XLab have been tracking a new malware family, called RustDuck, that hijacks routers, cameras, Android set-top boxes, and exposed servers, then uses them to flood targets with junk

  • GuardFall Flaw Hits 10 of 11 Popular Open-Source AI Agents
    by Pierluigi Paganini on July 1, 2026 at 8:28 am

    Researchers found a shell injection flaw in 10 of 11 popular open-source AI agents, allowing attackers to bypass command filters. Adversa AI just published a survey, titled “GuardFall: a universal shell injection vulnerability in open-source AI agents,” of eleven open-source AI coding and computer-use agents, and the headline finding is uncomfortable: ten of them leave

  • XSS.is, The Forum That Ran the Ransomware Supply Chain Is Down. The Market Isn’t
    by Pierluigi Paganini on June 30, 2026 at 11:09 pm

    Police arrested the alleged admin of XSS.is, a major cybercrime forum whose trusted escrow service helped power the underground economy. On 22 July 2025, French and Ukrainian police arrested a 38-year-old man in Kyiv and shut down XSS.is, the most influential Russian-language cybercrime forum of the past decade. Europol, which coordinated the operation under the

  • U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog
    by Pierluigi Paganini on June 30, 2026 at 7:47 pm

    U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a SimpleHelp flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a SimpleHelp flaw, tracked as CVE-2026-48558 (CVSS score v3.1 of 10.0), to its Known Exploited Vulnerabilities (KEV) catalog. CVE-2026-48558 is a critical authentication bypass vulnerability in SimpleHelp versions 5.5.15 and earlier and

  • Hackers Steal Data of 4.38 Million Aflac Japan Customers
    by Pierluigi Paganini on June 30, 2026 at 3:54 pm

    Hackers stole data from 4.38 million Aflac Japan customers after accessing its systems for 10 days before the breach was detected. Aflac Japan disclosed that hackers stole the personal information of 4.38 million customers and agents after gaining access to its systems between June 15 and June 25. Attackers stole data from the company policyholder

  • Apple Fixes WebKit Flaws in iOS and macOS, With Help From AI Tools
    by Pierluigi Paganini on June 30, 2026 at 11:32 am

    Apple released updates for iOS, iPadOS, macOS, and Safari, fixing WebKit flaws, four of which were found using AI tools like Claude and Codex Apple pushed out security updates for iOS, iPadOS, macOS, and Safari on Monday, and this round comes with a twist worth noticing. Four of the WebKit vulnerabilities patched were found using

  • Attackers actively exploit the Oracle E-Business Suite flaw CVE-2026-46817
    by Pierluigi Paganini on June 30, 2026 at 9:01 am

    Attackers are exploiting a critical flaw in Oracle E-Business Suite, CVE-2026-46817, that allows remote, unauthenticated attackers to take over Oracle Payments. A critical vulnerability in Oracle E-Business Suite, tracked as CVE-2026-46817, is being actively exploited in the wild, according to cybersecurity firm Defused Cyber. “CVE-2026-46817 (CVSS 9.8 unauth HTTP takeover in Oracle E-Business) is being

Share Websitecyber
We are an ethical website cyber security team and we perform security assessments to protect our clients.