Explore

Drupal Faces Exploitation Attempts Following Critical Vulnerability Disclosure

Drupal Faces Exploitation Attempts Following Critical Vulnerability Disclosure

Drupal has issued a warning regarding a critical vulnerability, CVE-2026-9082, which has already seen exploitation attempts shortly after its disclosure. This vulnerability affects an API responsible for sanitizing database queries to prevent SQL injection. The flaw allows attackers to send specially crafted requests, leading to arbitrary SQL injection on sites using PostgreSQL databases. This can result in unauthorized information access, privilege escalation, and remote code execution. Although Drupal powers numerous websites, the vulnerability impacts less than 5% of sites, specifically those using PostgreSQL. The risk score for this vulnerability was recently updated from 20 to 23, indicating active exploitation attempts. Security firm Imperva has reported over 15,000 exploitation attempts targeting nearly 6,000 sites across 65 countries, with a significant focus on gaming and financial services websites.

Underminr Vulnerability Exploited to Hide Malicious Connections Behind Trusted Domains

Underminr Vulnerability Exploited to Hide Malicious Connections Behind Trusted Domains

Underminr Vulnerability Exploited to Hide Malicious Connections Behind Trusted Domains

Kash Patel's Clothing Brand Website Taken Offline After Cyberattack

The website of Based Apparel, a clothing brand owned by Kash Patel, a nominee for FBI director, has been taken offline following a cyberattack. The site was reportedly compromised to distribute malware, specifically an infostealer-type designed to steal personal data, logins, and passwords. Cybersecurity researchers confirmed the presence of malicious code. The incident coincides with a data breach involving Trump Mobile, where customers' personal data was exposed. The breach was acknowledged after researchers alerted YouTubers who had purchased Trump Mobile phones. Currently, Based Apparel's site remains down, and no official comment has been made by the company.

TrendAI Patches Apex One Zero-Day Vulnerability Exploited in the Wild

TrendAI Patches Apex One Zero-Day Vulnerability Exploited in the Wild

TrendAI Patches Apex One Zero-Day Vulnerability Exploited in the Wild

Underminr Vulnerability Exploited to Mask Malicious Connections

Underminr Vulnerability Exploited to Mask Malicious Connections

Underminr Vulnerability Exploited to Mask Malicious Connections

Clark County School District Employees Targeted in Cybersecurity Breach

Clark County School District Employees Targeted in Cybersecurity Breach

Three employees of the Clark County School District in Las Vegas were victims of a cybersecurity breach, resulting in unauthorized access to their accounts and fraudulent charges using their direct deposit information. The district's Chief Information Officer, Mugunth Vaithylingam, confirmed the breach and emphasized that it was not due to system issues. Employees were advised to reset their passwords and enable multi-factor authentication to protect their accounts. The breach highlights the importance of cybersecurity measures in protecting personal information within educational institutions.

Hackers Exploit Clark County School Employees, Prompting Security Measures

Hackers Exploit Clark County School Employees, Prompting Security Measures

Three employees of the Clark County School District (CCSD) in Las Vegas fell victim to a cyberattack where hackers accessed their accounts and made fraudulent charges using their direct deposit information. The breach was not due to system issues but rather the lack of multi-factor authentication (MFA) on the affected accounts. In response, CCSD has advised all staff to reset their passwords and enable MFA to protect their personal information. The district is taking steps to ensure the security of its employees' data.

VS Code Extension Breach Compromises GitHub Repositories

VS Code Extension Breach Compromises GitHub Repositories

VS Code Extension Breach Compromises GitHub Repositories

Trump Mobile Data Breach Exposes Customer Information Online

Trump Mobile Data Breach Exposes Customer Information Online

Trump Mobile Data Breach Exposes Customer Information Online

Iranian Hackers Breach US Gas Station Systems, Raising Infrastructure Concerns

Iranian Hackers Breach US Gas Station Systems, Raising Infrastructure Concerns

US officials have identified Iranian hackers as the culprits behind breaches in automatic tank gauge (ATG) systems at gas stations across multiple states. These systems, which monitor fuel levels in underground storage tanks, were compromised due to their lack of password protection. Although the hackers were able to alter display readings, they did not change the actual fuel volumes. The incident has raised alarms about the potential for such access to mask gas leaks or create other risks to critical infrastructure. The cybersecurity community has long warned about the vulnerabilities of exposed ATG systems.

Grafana Reports Data Breach Due to TanStack Supply Chain Attack, Codebase Stolen

Grafana Reports Data Breach Due to TanStack Supply Chain Attack, Codebase Stolen

Grafana Reports Data Breach Due to TanStack Supply Chain Attack, Codebase Stolen

International Law Enforcement Shuts Down VPN Service Used by Cybercriminals

International Law Enforcement Shuts Down VPN Service Used by Cybercriminals

A coalition of international law enforcement agencies has successfully shut down First VPN, a service widely used by cybercriminals to conceal illegal activities. The operation, which began in December 2021, resulted in the arrest of the service's administrator and the seizure of its infrastructure. First VPN was popular among at least 25 ransomware groups and was used for internet scanning, botnet management, and DDoS attacks. The service operated servers in 27 countries and offered anonymous payment systems, making it a key player in the cybercrime ecosystem. The shutdown exposed thousands of users involved in cybercrime.