MATLOCK.CA
35Articles
5Categories
2026-04-11Date
πŸ›
Jeff Williams CTO Cofounder of Contrast Security and OWASP co-founder on Mythos and AI Security
CYBERSECURITYTODAY.LIBSYN.COM — 11 Apr 2026
πŸ›
CVE-2026-28810 Predictable DNS Transaction IDs Enable Cache Poisoning in Built-in Resolver
MSRC.MICROSOFT.COM — 11 Apr 2026
πŸ›
CVE-2026-29181 OpenTelemetry-Go multi-value `baggage` header extraction causes excessive allocations (remote dos amplification)
MSRC.MICROSOFT.COM — 11 Apr 2026
πŸ›
CVE-2026-27144 Miscompilation allows memory corruption via CONVNOP-wrapped array copy in cmd/compile
MSRC.MICROSOFT.COM — 11 Apr 2026
πŸ›
CVE-2026-32282 TOCTOU permits root escape on Linux via Root.Chmod in os in internal/syscall/unix
MSRC.MICROSOFT.COM — 11 Apr 2026
πŸ›
CVE-2026-33810 Case-sensitive excludedSubtrees name constraints cause Auth Bypass in crypto/x509
MSRC.MICROSOFT.COM — 11 Apr 2026
πŸ›
CVE-2026-4878 Libcap: libcap: privilege escalation via toctou race condition in cap_set_file()
MSRC.MICROSOFT.COM — 11 Apr 2026
πŸ›
CVE-2026-35611 Addressable has a Regular Expression Denial of Service in Addressable templates
MSRC.MICROSOFT.COM — 11 Apr 2026
πŸ›
CVE-2026-28389 Possible NULL Dereference When Processing CMS KeyAgreeRecipientInfo
MSRC.MICROSOFT.COM — 11 Apr 2026
πŸ›
CVE-2026-28390 Possible NULL Dereference When Processing CMS KeyTransportRecipientInfo
MSRC.MICROSOFT.COM — 11 Apr 2026
πŸ›
CVE-2026-39882 OpenTelemetry-Go OTLP HTTP exporters read unbounded HTTP response bodies
MSRC.MICROSOFT.COM — 11 Apr 2026
πŸ›
CVE-2026-32288 Unbounded allocation for old GNU sparse in archive/tar
MSRC.MICROSOFT.COM — 11 Apr 2026
πŸ›
CVE-2026-32281 Inefficient policy validation in crypto/x509
MSRC.MICROSOFT.COM — 11 Apr 2026
πŸ›
CVE-2026-32289 JsBraceDepth Context Tracking Bugs (XSS) in html/template
MSRC.MICROSOFT.COM — 11 Apr 2026
πŸ›
CVE-2026-32283 Unauthenticated TLS 1.3 KeyUpdate record can cause persistent connection retention and DoS in crypto/tls
MSRC.MICROSOFT.COM — 11 Apr 2026
πŸ›
CVE-2026-32280 Unexpected work during chain building in crypto/x509
MSRC.MICROSOFT.COM — 11 Apr 2026
πŸ›
CVE-2026-27143 Missing bound checks can lead to memory corruption in safe Go in cmd/compile
MSRC.MICROSOFT.COM — 11 Apr 2026
πŸ›
CVE-2026-27140 Code execution vulnerability in SWIG code generation in cmd/go
MSRC.MICROSOFT.COM — 11 Apr 2026
⚠️
Claude and ChatGPT Exploited in Sweeping Cyber Campaign Against Government Agencies
GBHACKERS.COM — 11 Apr 2026
⚠️
Citizen Lab: Law Enforcement Used Webloc to Track 500 Million Devices via Ad Data
THEHACKERNEWS.COM — 11 Apr 2026
⚠️
Over 20,000 crypto fraud victims identified in international crackdown
BLEEPINGCOMPUTER.COM — 11 Apr 2026
⚠️
Two different attackers poisoned popular open source tools - and showed us the future of supply chain compromise
INFOSEC.PUB — 11 Apr 2026
πŸ”₯
HWMonitor & CPU-Z users were exposed to malware through fake downloads after CPUID breach
INFOSEC.PUB — 11 Apr 2026
πŸ”₯
Security PSA: Popular Tools CPU-Z and HWMonitor Were Briefly Compromised
SH.ITJUST.WORKS — 11 Apr 2026
πŸ•΅οΈ
CPUID site hijacked to serve malware instead of HWMonitor downloads
INFOSEC.PUB — 11 Apr 2026
πŸ•΅οΈ
Google rolls out end-to-end encryption for Gmail on Android and iOS devices for enterprise users, letting them read and compose emails without additional tools
INFOSEC.PUB — 11 Apr 2026
πŸ•΅οΈ
Google rolls out end-to-end encryption for Gmail on Android and iOS devices for enterprise users, letting them read and compose emails without additional tools
PROGRAMMING.DEV — 11 Apr 2026
πŸ•΅οΈ
Google rolls out end-to-end encryption for Gmail on Android and iOS devices for enterprise users, letting them read and compose emails without additional tools
SH.ITJUST.WORKS — 11 Apr 2026
πŸ•΅οΈ
Google rolls out end-to-end encryption for Gmail on Android and iOS devices for enterprise users, letting them read and compose emails without additional tools
INFOSEC.PUB — 11 Apr 2026
πŸ•΅οΈ
Google Locks Chrome Sessions to Devices to Stop Cookie Theft
GBHACKERS.COM — 11 Apr 2026
πŸ•΅οΈ
Supply chain nightmare: How Rust will be attacked and what we can do to mitigate the inevitable
INFOSEC.PUB — 11 Apr 2026
πŸ•΅οΈ
AI Cybersecurity After Mythos: The Jagged Frontier
INFOSEC.PUB — 11 Apr 2026
πŸ“‘
Jetzt patchen! Adobe verΓΆffentlicht Notfall-Sicherheitsupdate fΓΌr Acrobat Reader
HEISE.DE — 2026-04-11
πŸ“‘
EinzelhΓ€ndler frustriert ΓΌber strenge Regeln bei KI-Kameras
HEISE.DE — 2026-04-11
πŸ“‘
US-Regierung traf sich vor Mythos-Preview-Rollout mit KI-Herstellern
HEISE.DE — 2026-04-11