4Articles
3Categories
2026-01-12Date
🚨 CISA KEV 1[−]
12 Jan KEVCISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its  Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation.  CVE-2025-8110  Gogs Path Traversal Vulnerability  This type of vulnerability is a frequen…CISA.GOV
⚠️ VULNERABILITY DISCLOSURE 2[−]
12 JanAnalyzing a Multi-Stage AsyncRAT Campaign via Managed Detection and ResponseThreat actors exploited Cloudflare's free-tier infrastructure and legitimate Python environments to deploy the AsyncRAT remote access trojan, demonstrating advanced evasion techniques that abuse trusted cloud services for malicious operations.TRENDMICRO.COM
12 JanAuraInspector: Auditing Salesforce Aura for Data ExposureWritten by: Amine Ismail, Anirudha Kanodia Introduction Mandiant is releasing AuraInspector, a new open-source tool designed to help defenders identify and audit access control misconfigurations within the Salesforce Aura framework . Salesforce Experience Cloud is a foundational …CLOUD.GOOGLE.COM
📢 SECURITY ADVISORIES 1[−]
12 JanFBI Warns of QR Code Phishing & Europol's Major Cybercrime Crackdown CST Monday Jan 12 2026In this episode of Cybersecurity Today, host David Shipley covers the FBI's warning about North Korean state-sponsored QR code phishing campaigns targeting U.S. organizations. Additionally, he discusses Europol's arrest of 34 individuals in Spain tied to the infamous Black Acts c…CYBERSECURITYTODAY.LIBSYN.COM