MATLOCK.CA
74Articles
8Categories
2026-02-26Date
πŸ›
Cisco SD-WAN Zero-Day CVE-2026-20127 Exploited Since 2023 for Admin Access
THEHACKERNEWS.COM — 26 Feb 2026
πŸ›
Chromium: CVE-2026-3063 Inappropriate implementation in DevTools
MSRC.MICROSOFT.COM — 26 Feb 2026
πŸ›
Chromium: CVE-2026-3062 Out of bounds read and write in Tint
MSRC.MICROSOFT.COM — 26 Feb 2026
πŸ›
Chromium: CVE-2026-3061 Out of bounds read in Media
MSRC.MICROSOFT.COM — 26 Feb 2026
πŸ›
CVE-2026-23229 crypto: virtio - Add spinlock protection with virtqueue notification
MSRC.MICROSOFT.COM — 26 Feb 2026
πŸ›
CVE-2025-71230 hfs: ensure sb->s_fs_info is always cleaned up
MSRC.MICROSOFT.COM — 26 Feb 2026
πŸ›
CVE-2026-23224 erofs: fix UAF issue for file-backed mounts w/ directio option
MSRC.MICROSOFT.COM — 26 Feb 2026
πŸ›
CVE-2025-67733 Valkey Affected by RESP Protocol Injection via Lua error_reply
MSRC.MICROSOFT.COM — 26 Feb 2026
πŸ›
CVE-2026-21863 Malformed Valkey Cluster bus message can lead to Remote DoS
MSRC.MICROSOFT.COM — 26 Feb 2026
πŸ›
CVE-2025-62878 Local Path Provisioner vulnerable to Path Traversal via parameters.pathPattern
MSRC.MICROSOFT.COM — 26 Feb 2026
πŸ›
CVE-2026-23223 xfs: fix UAF in xchk_btree_check_block_owner
MSRC.MICROSOFT.COM — 26 Feb 2026
πŸ›
CVE-2026-23225 sched/mmcid: Don't assume CID is CPU owned on mode switch
MSRC.MICROSOFT.COM — 26 Feb 2026
πŸ›
CVE-2025-61143 libtiff up to v4.7.1 was discovered to contain a NULL pointer dereference via the component libtiff/tif_open.c.
MSRC.MICROSOFT.COM — 26 Feb 2026
πŸ›
CVE-2025-61144 libtiff up to v4.7.1 was discovered to contain a stack overflow via the readSeparateStripsIntoBuffer function.
MSRC.MICROSOFT.COM — 26 Feb 2026
πŸ›
CVE-2025-61145 libtiff up to v4.7.1 was discovered to contain a double free via the component tools/tiffcrop.c.
MSRC.MICROSOFT.COM — 26 Feb 2026
πŸ›
CVE-2025-11563 wcurl path traversal with percent-encoded slashes
MSRC.MICROSOFT.COM — 26 Feb 2026
πŸ›
CVE-2021-20225 A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
MSRC.MICROSOFT.COM — 26 Feb 2026
πŸ›
CVE-2021-20233 A flaw was found in grub2 in versions prior to 2.06. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
MSRC.MICROSOFT.COM — 26 Feb 2026
πŸ›
CISA Confirms Active Exploitation of FileZen CVE-2026-25108 Vulnerability
SH.ITJUST.WORKS — 26 Feb 2026
⚠️
Multiple Vulnerabilities in Cisco Catalyst SD-WAN Products Could Allow for Authentication Bypass
CISECURITY.ORG — 26 Feb 2026
⚠️
Trend Micro warns of critical Apex One code execution flaws
BLEEPINGCOMPUTER.COM — 26 Feb 2026
⚠️
Critical Juniper Networks PTX flaw allows full router takeover
BLEEPINGCOMPUTER.COM — 26 Feb 2026
⚠️
Aeternum C2 Botnet Stores Encrypted Commands on Polygon Blockchain to Evade Takedown
THEHACKERNEWS.COM — 26 Feb 2026
⚠️
Malicious StripeApi NuGet Package Mimicked Official Library and Stole API Tokens
THEHACKERNEWS.COM — 26 Feb 2026
⚠️
Cisco says hackers have been exploiting a critical bug to break into big customer networks since 2023
TECHCRUNCH.COM — 26 Feb 2026
⚠️
China-linked hackers used Google Sheets to spy on telecoms and governments across 42 countries
CSOONLINE.COM — 26 Feb 2026
⚠️
The farmers and the mercenaries: Rethinking the β€˜human layer’ in security
CSOONLINE.COM — 26 Feb 2026
⚠️
5 trends that should top CISO’s RSA 2026 agendas
CSOONLINE.COM — 26 Feb 2026
⚠️
Steaelite RAT combines data theft and ransomware management capability in one tool
CSOONLINE.COM — 26 Feb 2026
⚠️
Nuke Docker From Orbit?
YOUTUBE.COM — 2026-02-26
⚠️
How Russia is intercepting communications from European satellites
INFOSEC.PUB — 26 Feb 2026
⚠️
Critical Cisco SD-WAN bug exploited in zero-day attacks since 2023
SH.ITJUST.WORKS — 26 Feb 2026
⚠️
Zyxel warns of critical RCE flaw affecting over a dozen routers
SH.ITJUST.WORKS — 26 Feb 2026
⚠️
Intego X9: Why your macOS antivirus should not trust PIDs
QUARKSLAB.COM — 2026-02-26
⚠️
A Deep Dive into the GetProcessHandleFromHwnd API
PROJECTZERO.GOOGLE — 2026-02-26
πŸ“‹
ThreatsDay Bulletin: Kali Linux + Claude, Chrome Crash Traps, WinRAR Flaws, LockBit & 15+ Stories
THEHACKERNEWS.COM — 26 Feb 2026
πŸ“’
CISA Issues Updated RESURGE Malware Analysis Highlighting a Stealthy but Active Threat
CISA.GOV — Thu, 26 Feb 26 1
πŸ“’
AI Is Taking Over Cybersecurity - PSW #915
YOUTUBE.COM — 2026-02-26
πŸ“’
Google disrupts Chinese-linked group UNC2814, which breached 53+ organizations across 42 countries and utilized Google Sheets to manage targeting and data theft
INFOSEC.PUB — 26 Feb 2026
πŸ“’
Google disrupts Chinese-linked group UNC2814, which breached 53+ organizations across 42 countries and utilized Google Sheets to manage targeting and data theft
PROGRAMMING.DEV — 26 Feb 2026
πŸ“’
Google disrupts Chinese-linked group UNC2814, which breached 53+ organizations across 42 countries and utilized Google Sheets to manage targeting and data theft
SH.ITJUST.WORKS — 26 Feb 2026
πŸ”₯
European DYI chain ManoMano data breach impacts 38 million customers
BLEEPINGCOMPUTER.COM — 26 Feb 2026
πŸ”₯
Olympique Marseille confirms 'attempted' cyberattack after data leak
BLEEPINGCOMPUTER.COM — 26 Feb 2026
πŸ”₯
Ransomware payment rate drops to record low as attacks surge
BLEEPINGCOMPUTER.COM — 26 Feb 2026
πŸ”₯
Expert Recommends: Prepare for PQC Right Now
THEHACKERNEWS.COM — 26 Feb 2026
πŸ”₯
Microsoft Warns Developers of Fake Next.js Job Repos Delivering In-Memory Malware
THEHACKERNEWS.COM — 26 Feb 2026
πŸ”₯
Your staff are your biggest security risk: AI is making it worse
FORTRA.COM — 26 Feb 2026
πŸ”₯
Notorious ransomware gang allegedly blackmailed by fake FSB officer
BITDEFENDER.COM — 26 Feb 2026
πŸ”₯
Smashing Security podcast #456: How to lose friends and DDoS people
GRAHAMCLULEY.COM — 26 Feb 2026
πŸ”₯
Odido - 688,102 breached accounts
HAVEIBEENPWNED.COM — 26 Feb 2026
πŸ”₯
Cost of Insider Incidents Surges 20% to Nearly $20m - Infosecurity Magazine
SH.ITJUST.WORKS — 26 Feb 2026
πŸ•΅οΈ
LLMs Generate Predictable Passwords
SCHNEIER.COM — 2026-02-26
πŸ•΅οΈ
Apple iPhone and iPad Cleared for Classified NATO Use
SECURITYWEEK.COM — 26 Feb 2026
πŸ•΅οΈ
Four Risks Boards Cannot Treat as Background Noise
SECURITYWEEK.COM — 26 Feb 2026
πŸ•΅οΈ
Claude Code Flaws Exposed Developer Devices to Silent Hacking
SECURITYWEEK.COM — 26 Feb 2026
πŸ•΅οΈ
UAT-10027 Targets U.S. Education and Healthcare with Dohdoor Backdoor
THEHACKERNEWS.COM — 26 Feb 2026
πŸ•΅οΈ
Finding Signal in the Noise: Lessons Learned Running a Honeypot with AI Assistance [Guest Diary], (Tue, Feb 24th)
ISC.SANS.EDU — 26 Feb 2026
πŸ•΅οΈ
ISC Stormcast For Thursday, February 26th, 2026 https://isc.sans.edu/podcastdetail/9826, (Thu, Feb 26th)
ISC.SANS.EDU — 26 Feb 2026
πŸ•΅οΈ
Threat modeling AI applications
MICROSOFT.COM — 26 Feb 2026
πŸ•΅οΈ
Nation-State Threat Actors Incorporate AI to Streamline Attacks
KNOWBE4.COM — 26 Feb 2026
πŸ•΅οΈ
FedRAMP's Role in Risk Management
YOUTUBE.COM — 2026-02-26
πŸ•΅οΈ
Fake Job Interviews Are Installing Backdoors on Developer Machines
INFOSEC.PUB — 26 Feb 2026
πŸ•΅οΈ
Unknown hacker used Claude to steal 150GB of Mexican government data, including 195M taxpayer records, in December 2025 and January 2026
INFOSEC.PUB — 26 Feb 2026
πŸ•΅οΈ
Unknown hacker used Claude to steal 150GB of Mexican government data, including 195M taxpayer records, in December 2025 and January 2026
PROGRAMMING.DEV — 26 Feb 2026
πŸ•΅οΈ
Conduent Says Hack Now Affects at Least 25 Million Patients
SH.ITJUST.WORKS — 26 Feb 2026
πŸ•΅οΈ
Unknown hacker used Claude to steal 150GB of Mexican government data, including 195M taxpayer records, in December 2025 and January 2026
SH.ITJUST.WORKS — 26 Feb 2026
🌐
The CLAIR Model: A Synthesized Conceptual Framework for Mapping Critical Infrastructure Interdependencies [Guest Diary], (Wed, Feb 25th)
ISC.SANS.EDU — 26 Feb 2026
🌐
Spyware makers sentenced to prison in Greece for wiretapping politicians and journalists
TECHCRUNCH.COM — 26 Feb 2026
πŸ“‘
AI Capabilities Are Advancing Faster Than AI Security
F5.COM — 26 Feb 2026
πŸ“‘
Previously harmless Google API keys now expose Gemini AI data
BLEEPINGCOMPUTER.COM — 26 Feb 2026
πŸ“‘
Microsoft expands Windows restore to more enterprise devices
BLEEPINGCOMPUTER.COM — 26 Feb 2026
πŸ“‘
New York sues Valve for promoting illegal gambling via game loot boxes
BLEEPINGCOMPUTER.COM — 26 Feb 2026
πŸ“‘
New AirSnitch attack bypasses Wi-Fi encryption in homes, offices, and enterprises
ARSTECHNICA.COM — 26 Feb 2026
πŸ“‘
Recorded Future Expands Coverage of Scams and Financial Fraud with Money Mule Intelligence from CYBERA
RECORDEDFUTURE.COM — 26 Feb 2026