More Evidence That Words Don't Mean What We Thought They Meant (Ivanti Sentry Pre-Auth OS Command Injection CVE-2026-10520) - watchTowr Labs
https://ift.tt/7ZdGFQR
Submitted June 10, 2026 at 06:24AM by dx7r__
via reddit https://ift.tt/aEpHUCq
https://ift.tt/7ZdGFQR
Submitted June 10, 2026 at 06:24AM by dx7r__
via reddit https://ift.tt/aEpHUCq
watchTowr Labs
More Evidence That Words Don't Mean What We Thought They Meant (Ivanti Sentry Pre-Auth OS Command Injection CVE-2026-10520)
Today, Ivanti published an advisory.
“No way?” we hear you say. "Yes way!"
Today’s advisory outlines two vulnerabilities in Ivanti’s Sentry product, appealing directly to our inner desire for sophisticated server-side, pre-authenticated vulnerabilities.…
“No way?” we hear you say. "Yes way!"
Today’s advisory outlines two vulnerabilities in Ivanti’s Sentry product, appealing directly to our inner desire for sophisticated server-side, pre-authenticated vulnerabilities.…
Jupyter Enterprise Gateway - From Notebook to Kubernetes Cluster Admin - elttam
https://ift.tt/x7HaFVo
Submitted June 10, 2026 at 12:00PM by AnimalStrange
via reddit https://ift.tt/IknKxGP
https://ift.tt/x7HaFVo
Submitted June 10, 2026 at 12:00PM by AnimalStrange
via reddit https://ift.tt/IknKxGP
Elttam
Jupyter Enterprise Gateway - From Notebook to Kubernetes Cluster Admin - elttam
Three critical vulnerabilities in Jupyter Enterprise Gateway allow a notebook user to escalate privileges and fully compromise the underlying Kubernetes cluster.
BlackSun - Defender for Endpoint on macOS
https://ift.tt/Na2QyX9
Submitted June 10, 2026 at 01:34PM by More-Protection-821
via reddit https://ift.tt/BKMJhaY
https://ift.tt/Na2QyX9
Submitted June 10, 2026 at 01:34PM by More-Protection-821
via reddit https://ift.tt/BKMJhaY
www.bountyy.fi
BlackSun · CVE-2026-45647
wdavdaemon, the privileged Microsoft Defender daemon on macOS, restores quarantined files without revalidating the recorded path at restore time. Plant a file, let it be quarantined, then swap its parent directory for a symlink to a privileged location. The…
GhostTrace – a Windows forensic scanner that finds what "Uninstall" leaves behind (22 modules, read-only, offline)
https://ift.tt/0YciClw
Submitted June 10, 2026 at 12:44PM by Green-Necessary-2325
via reddit https://ift.tt/rTxzVLF
https://ift.tt/0YciClw
Submitted June 10, 2026 at 12:44PM by Green-Necessary-2325
via reddit https://ift.tt/rTxzVLF
certSIGN: Inconsistent revocation status (CRL "revoked" vs OCSP "good") for intermediate CA "certSIGN Web CA"
https://ift.tt/ZYsOKUF
Submitted June 10, 2026 at 02:14PM by treenaks
via reddit https://ift.tt/wTZG6IA
https://ift.tt/ZYsOKUF
Submitted June 10, 2026 at 02:14PM by treenaks
via reddit https://ift.tt/wTZG6IA
bugzilla.mozilla.org
2046230 - certSIGN: Inconsistent revocation status (CRL "revoked" vs OCSP "good") for intermediate CA "certSIGN Web CA"
ASSIGNED (gabriel.petcu) in CA Program - CA Certificate Compliance. Last updated 2026-06-10.
How Fraudsters Bypass Facial Recognition and Stay Hidden in 2026
https://ift.tt/ELMwHuF
Submitted June 10, 2026 at 05:21PM by Sumsub_Insights
via reddit https://ift.tt/2OJBrF9
https://ift.tt/ELMwHuF
Submitted June 10, 2026 at 05:21PM by Sumsub_Insights
via reddit https://ift.tt/2OJBrF9
Sumsub
How Fraudsters Bypass Facial Recognition and Stay Hidden in 2026
Discover how fraudsters attack facial recognition with deepfakes and spoofing, and how liveness detection helps stop biometric attacks.
FedRAMP Penetration Testing: How to Pass Your ATO Review and Get Cloud Authorized Faster
https://ift.tt/m1PnDxu
Submitted June 10, 2026 at 05:17PM by socketzora
via reddit https://ift.tt/q3ZazO7
https://ift.tt/m1PnDxu
Submitted June 10, 2026 at 05:17PM by socketzora
via reddit https://ift.tt/q3ZazO7
stealthnet.ai
FedRAMP Penetration Testing: How to Pass Your ATO Review and Get Cloud Authorized Faster | StealthNet AI
FedRAMP penetration testing guide for cloud service providers. Learn what 3PAO assessors expect, how to scope the test, and get ATO-ready in 48 hours.
We post-trained a model for offensive security instead of teaching it to refuse
https://ift.tt/FzaUjXk
Submitted June 10, 2026 at 09:26PM by greatness_only12
via reddit https://ift.tt/9U0vBmH
https://ift.tt/FzaUjXk
Submitted June 10, 2026 at 09:26PM by greatness_only12
via reddit https://ift.tt/9U0vBmH
ArgusRed
cos — security scan and pen test · ArgusRed
Two security tools in one CLI. Audit your code, or attack it. Same binary, two tabs.
Pre-auth XXE → HTTP SSRF on ArubaOS 8.13.2 closed as "theoretical / no valid PoC" despite TCP pcap, sshd localhost log, and internal port scan — documenting for community review
https://ift.tt/xye58Vn
Submitted June 11, 2026 at 12:24AM by Pale_Surround_3924
via reddit https://ift.tt/KkDQFHd
https://ift.tt/xye58Vn
Submitted June 11, 2026 at 12:24AM by Pale_Surround_3924
via reddit https://ift.tt/KkDQFHd
Netacoding | Cybersecurity, Assembly & Network Research
Pre-Authentication XXE → OOB SSRF in ArubaOS 8.13.2.0 (Port 32000)
A pre-authentication XXE injection on ArubaOS 8.13.2.0 port 32000 enables OOB SSRF. Confirmed via wire-level pcap and the controller's own sshd logs. Submitted to HPE Bugcrowd — closed as theoretical despite four evidence items.
Prompt injection: attacking the analyst's AI
https://ift.tt/1Ow2JGU
Submitted June 11, 2026 at 02:05PM by GrapefruitCool2078
via reddit https://ift.tt/Yj6XHkC
https://ift.tt/1Ow2JGU
Submitted June 11, 2026 at 02:05PM by GrapefruitCool2078
via reddit https://ift.tt/Yj6XHkC
Cleo by FlipFlow
Cleo by FlipFlow | AI Security Platform for Penetration Testers
Map auth flows, scan domains A-F, analyse HAR files, and auto-populate your asset inventory. The AI-native security workspace built for serious security work.
Hacking Google with A.I. for $500,000
https://ift.tt/ftxzuI2
Submitted June 11, 2026 at 04:04PM by rockin-Musicien49
via reddit https://ift.tt/UamBxeP
https://ift.tt/ftxzuI2
Submitted June 11, 2026 at 04:04PM by rockin-Musicien49
via reddit https://ift.tt/UamBxeP
Brutecat
Hacking Google with A.I. for $500,000
What happens when you unleash an AI across all of Google's infrastructure? 1,500 APIs, 3,600 keys, and $500,000 in bounties later, here's what I found.
Fable 5 and the analyst-AI threat model: what a Mythos-class model changes for security work
https://ift.tt/5uHGA4O
Submitted June 11, 2026 at 05:51PM by GrapefruitCool2078
via reddit https://ift.tt/3fNSAP7
https://ift.tt/5uHGA4O
Submitted June 11, 2026 at 05:51PM by GrapefruitCool2078
via reddit https://ift.tt/3fNSAP7
The FlipFlow Blog
Fable 5 is here. What it means for security work | The FlipFlow Blog
Anthropic shipped its first Mythos-class model with a 1M token context and an 80.3% SWE-Bench Pro score. What that unlocks, what it threatens, and how Cleo already runs on it.
Claude Fable 5: mid-tier results on coding tasks
https://ift.tt/idOWpTg
Submitted June 11, 2026 at 09:38PM by bugvader25
via reddit https://ift.tt/xSY0mwO
https://ift.tt/idOWpTg
Submitted June 11, 2026 at 09:38PM by bugvader25
via reddit https://ift.tt/xSY0mwO
Endorlabs
Claude Fable 5: Mythos-grade hype, record cheating, and a few hall-of-fame entries | Blog | Endor Labs
We benchmarked Claude Fable 5 on 200 real-world coding tasks for the Agent Security League.
Detecting AI-specific threats in Claude Enterprise from the Compliance API: a prefilter + LLM-as-judge pipeline with Sigma rules
https://ift.tt/jtXdDw8
Submitted June 12, 2026 at 12:36AM by TheAlphaBravo
via reddit https://ift.tt/Vmntqrj
https://ift.tt/jtXdDw8
Submitted June 12, 2026 at 12:36AM by TheAlphaBravo
via reddit https://ift.tt/Vmntqrj
PaperMtn
Detecting Misuse with the Claude Compliance API: The Threat Is in the Content
Detections for Claude Enterprise built on Compliance API content: a prefilter and LLM judge that catch prompt injection, jailbreaks and data exfiltration.
Marking Your Own Homework (Check Point Remote Access VPN IKEv1 Authentication Bypass CVE-2026-50751) - watchTowr Labs
https://ift.tt/NoVwDML
Submitted June 12, 2026 at 10:53AM by dx7r__
via reddit https://ift.tt/F31qWZf
https://ift.tt/NoVwDML
Submitted June 12, 2026 at 10:53AM by dx7r__
via reddit https://ift.tt/F31qWZf
watchTowr Labs
Marking Your Own Homework (Check Point Remote Access VPN IKEv1 Authentication Bypass CVE-2026-50751)
It is yet another day in this parallel universe of security, where the devices we bolt onto the edge of our networks to keep the bad people out are, with remarkable consistency, the exact thing that let the bad people in.
While we’ve seemingly had a breather…
While we’ve seemingly had a breather…
Old Passwords Die Hard: Abusing CREDHIST for offline credential recovery
https://ift.tt/c4QSaWL
Submitted June 12, 2026 at 07:46PM by lefterispanos
via reddit https://ift.tt/R4AoVKE
https://ift.tt/c4QSaWL
Submitted June 12, 2026 at 07:46PM by lefterispanos
via reddit https://ift.tt/R4AoVKE
LRQA
Cracking CREDHIST: Offline hash extraction from DPAPI password history | LRQA
DPAPI's CREDHIST file stores a chain of encrypted historical password material that is rarely targeted during offensive engagements. This post explores the structure of CREDHIST entries, how we extended DPAPISnoop to extract offline-crackable hashes, and…
Free Compromise Detection for GitHub Repos - Tracebit Community Edition
https://ift.tt/YXS4j80
Submitted June 12, 2026 at 08:42PM by tracebit
via reddit https://ift.tt/tIxCPcg
https://ift.tt/YXS4j80
Submitted June 12, 2026 at 08:42PM by tracebit
via reddit https://ift.tt/tIxCPcg
Tracebit
Tracebit Community Edition - Supply Chain Attack Detection
Worried about supply chain attacks hitting your repos? Detect compromised credentials the moment anyone uses them. Free, forever.
Major AI Clients Shipping With Broken OAuth Implementations (JUNE 2026 UPDATE)
https://ift.tt/dhXvAR1
Submitted June 12, 2026 at 08:26PM by mhat
via reddit https://ift.tt/S9wztAs
https://ift.tt/dhXvAR1
Submitted June 12, 2026 at 08:26PM by mhat
via reddit https://ift.tt/S9wztAs
Redcaller
MCP Client OAuth Refresh-Token Support Matrix (June 2026) | RedCaller Docs
A compatibility matrix tracking OAuth refresh-token support across 14 MCP clients. Covers status, root causes, SDK layers, and server-side workarounds.
Why Use App-Level Auth When Every Database Has Auth? (Splunk Enterprise CVE-2026-20253 Pre-Auth RCE) - watchTowr Labs
https://ift.tt/lJIA9g5
Submitted June 13, 2026 at 02:07AM by dx7r__
via reddit https://ift.tt/GVxT2gw
https://ift.tt/lJIA9g5
Submitted June 13, 2026 at 02:07AM by dx7r__
via reddit https://ift.tt/GVxT2gw
watchTowr Labs
Why Use App-Level Auth When Every Database Has Auth? (Splunk Enterprise CVE-2026-20253 Pre-Auth RCE)
Three posts? In three days? Are we insane?
We're home alone, there's no one to stop us, and we're up past bedtime. So, we need to talk about Splunk.
On June 10th, Splunk published this CVE-2026-20253 advisory:
It has everything that we love:
* No authentication
We're home alone, there's no one to stop us, and we're up past bedtime. So, we need to talk about Splunk.
On June 10th, Splunk published this CVE-2026-20253 advisory:
It has everything that we love:
* No authentication
The Axios npm compromise was visible in registry metadata before anyone ran npm install
https://ift.tt/Vagvsl3
Submitted June 13, 2026 at 12:05PM by GapLimp8396
via reddit https://ift.tt/ODaTfi5
https://ift.tt/Vagvsl3
Submitted June 13, 2026 at 12:05PM by GapLimp8396
via reddit https://ift.tt/ODaTfi5
AutoDoc Security Notes
How 30 Seconds of Metadata Would Have Caught the Axios Attack.
March 31, 2026, two malicious axios versions live for ~3 hours, a RAT on every machine that ran a fresh install. Then the turn — the signal that something wa...
Getting the PID from random numbers in PHP
https://ift.tt/e5xpOLj
Submitted June 13, 2026 at 02:14PM by DrAdalbbert
via reddit https://ift.tt/xEP0wHM
https://ift.tt/e5xpOLj
Submitted June 13, 2026 at 02:14PM by DrAdalbbert
via reddit https://ift.tt/xEP0wHM