Dark Reading
AI Won't Wipe-Out Entry-Level Cybersecurity Jobs
Instead of eliminating jobs for early-career cyber pros, AI is creating new opportunities for candidates with strong human decision-making skills.
Security Radar
Page 1 of 10 · 670 stories from the last 30 days across 19 trusted sources.
Actively exploited 19 actively exploited CVEs in current coverage
View all CVEs →- CVE-2026-10520
An OS Command Injection vulnerability in Ivanti Sentry before the R10.5.2, R10.6.2 and R10.7.1 versions allows a remote unauthenticated user to achieve root-level remote code execution
1storyEPSS 99% - CVE-2026-20253
In Splunk Enterprise 10.2 versions below 10.2.4 and 10 versions below 10.0.7, an unauthenticated user could create or truncate arbitrary files through a PostgreSQL sidecar service endpoint. The vulnerability exists because the PostgreSQL sidecar service endpoint lacks authentication controls, allowing any network-reachable user to invoke file operations without credentials. Splunk Enterprise versions 9.4 and earlier are not affected. If you cannot immediately upgrade to a fixed version, you can mitigate this vulnerability by disabling the PostgreSQL sidecar service.
6storiesEPSS 92% - CVE-2026-35273
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Updates Environment Management). Supported versions that are affected are 8.61 and 8.62. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise PeopleTools. Successful attacks of this vulnerability can result in takeover of PeopleSoft Enterprise PeopleTools. CVSS 3.1 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).
2storiesEPSS 90% - CVE-2026-48907
A vulnerability in the JCE editor extension for Joomla allows the creation of new editor profiles for unauthenticated users, ultimately resulting in PHP code upload and execution.
1storyEPSS 80% - CVE-2026-50751
A logic flow weakness in Remote Access and Mobile Access certificate validation in deprecated IKEv1 key exchange allows an unauthenticated remote attacker to bypass user authentication and establish a remote access VPN connection without a valid user password.
1storyEPSS 71% - CVE-2024-40766
An improper access control vulnerability has been identified in the SonicWall SonicOS management access, potentially leading to unauthorized resource access and in specific conditions, causing the firewall to crash. This issue affects SonicWall Firewall Gen 5 and Gen 6 devices, as well as Gen 7 devices running SonicOS 7.0.1-5035 and older versions.
1storyEPSS 16%
SecurityWeek
Amazon Q Flaw Enabled Cloud Credential Theft via Malicious Repositories
AWS has patched the vulnerability and published its own advisory to inform customers about the potential impact. The post Amazon Q Flaw Enabled Cloud Credential Theft via Malicious Repositories appeared first on SecurityWeek.
vulnerabilitycloud
SecurityWeek
More Klue Breach Victims Identified as Hackers Get Hacked
Roughly two dozen companies have notified their customers of the Klue-Salesforce incident impact. The post More Klue Breach Victims Identified as Hackers Get Hacked appeared first on SecurityWeek.
data breach
SecurityWeek
In Other News: Chinese Mythos-Like AI, Tata Electronics Breach, Snyk Layoffs
Other noteworthy stories that might have slipped under the radar: Russia used Cellebrite to hack activist’s phone, Five Eyes issue urgent AI threat warning, macOS Gaslight backdoor, Scattered Spider guilty pleas. The post In Other News: Chinese Mythos-Like AI, Tata Electronics...
data breach
BleepingComputer
Your First GRC Agent: A Red Teamer's Walkthrough
AI won't replace GRC analysts, but it can eliminate much of the repetitive work they do. Anecdotes walks through building an agent that continuously monitors controls, identifies evidence gaps, and opens remediation tasks. [...]
The Hacker News
Amazon Q Developer Flaw Could Let Malicious Repos Run Code via MCP Configs
A high-severity flaw in Amazon Q Developer let a malicious repository run commands and steal a developer's cloud credentials. The path was short: a developer opens the repo, trusts the workspace, and Amazon Q does the rest. Amazon has patched it. Tracked as CVE-2026-12957 (CVS...
vulnerabilitycloud
The Record
Russia accuses Apple of ‘political censorship’ after VK apps removed from App Store
Apple removed VK's flagship social network VKontakte, often described as Russia's equivalent of Facebook, along with VK Music, VK Messenger, VK Video, Odnoklassniki and Mail.ru services, including its email application.
Dark Reading
Meeting Trump's 2030 Quantum Deadline Will be Expensive, Complex
Getting accurate visibility into IT and OT systems will be compounded by multivendor environments, misaligned update life cycles, and interoperability gaps.
The Record · SecurityWeek · The Hacker News3 stories
Google Details Turla's New STOCKSTAY Backdoor Used in Ukraine Espionage Attacks
AIGoogle reports Russian APT Turla used the STOCKSTAY backdoor to target Ukrainian government and military organizations for espionage.
Open narrative →aptmalware
Show all coverage
The Record
Russia used social engineering to breach prominent messaging accounts, Ukraine says
Ukraine's SBU described a long-running Russian operation that used fake tech-support workers to persuade people to hand over credentials to their messaging apps.
phishingdata breach
The Hacker News
New Linux pedit COW Exploit Enables Root Access by Poisoning Cached Binaries
A flaw in the Linux kernel's traffic-control subsystem can let a local unprivileged user gain root on affected systems. CVE-2026-46331, nicknamed "pedit COW," is an out-of-bounds write in the packet-editing action (act_pedit) that corrupts shared page-cache memory. A public, w...
vulnerability
Dark Reading
Thanks for Crushing the Submissions Inbox. We're Trying to Keep Up
It might be taking a bit longer than usual to respond to your submissions — here's why.
SecurityWeek
Nebulock Raises $25 Million for AI-Native Contextual Security
The cybersecurity startup provides threat hunting, proactive detection, and behavioral security analytics. The post Nebulock Raises $25 Million for AI-Native Contextual Security appeared first on SecurityWeek.
The Hacker News · Security Affairs · SecurityWeek · Dark Reading · CISA Alerts · Help Net Security · BleepingComputer10 stories
CISA Adds Exploited PTC Windchill RCE Flaw to KEV as Web Shell Attacks Continue
AICISA added exploited PTC Windchill RCE and Cisco Unified CM SSRF flaws to its KEV catalog amid ongoing web shell attacks.
Open narrative →vulnerabilityzero day
Actively exploited · EPSS 51%
Show all coverage
- The Hacker NewsCISA Adds Exploited PTC Windchill RCE Flaw to KEV as Web Shell Attacks Continue
- Security AffairsU.S. CISA adds Cisco and PTC Windchill and FlexPLM flaws to its Known Exploited Vulnerabilities catalog
- SecurityWeekFirst-Ever Exploitation of PTC Windchill Vulnerability Discovered in the Wild
- Dark ReadingIn Less Than 24 Hours, Attackers Weaponize Cisco CUCM Flaw
- CISA AlertsCISA Adds Two Known Exploited Vulnerabilities to Catalog
- Security AffairsCisco Unified CM Flaw CVE-2026-20230 Actively Exploited in the Wild
- Help Net SecurityCisco Unified CM flaw actively exploited to drop webshells (CVE-2026-20230)
- The Hacker NewsCisco Unified CM Flaw Exploited After PoC Reveals File-Write Path to Root
- SecurityWeekHackers Exploiting Cisco Unified CM Vulnerability
- BleepingComputerCisco Unified CM flaw CVE-2026-20230 now exploited in attacks
The Record
FCC votes to toughen rules in bid to better protect undersea cables
In an unprecedented move, the FCC also said it plans to mandate that owners and operators of submarine line terminal equipment (SLTE) be licensed.
Help Net Security
Proof’s x401 establishes an open protocol for AI agent identity and authorization
Proof has launched x401, an open, issuer-neutral protocol that lets any website or API ask for and verify the identity behind agents. With x401, a service can ask for the proof it requires: verified identity, age, membership, organizational affiliation, signing authority, proo...
The Hacker News
New DirtyClone Linux Kernel Flaw Lets Local Users Gain Root via Cloned Packets
DirtyClone is a new Linux kernel privilege escalation in the DirtyFrag family. JFrog Security Research published a working exploit walkthrough for the flaw on June 25, the first public demonstration for this variant. Tracked as CVE-2026-43503 (CVSS 8.8), it lets a local user c...
vulnerability
Help Net Security
Critical open-source projects get a new security framework
Open source software projects are getting a new framework for handling security vulnerabilities as AI shortens the time between flaw discovery and exploitation. The Linux Foundation has launched Akrites, an industry initiative that brings together technology companies, financi...
vulnerability
The Hacker News
Guardian Agents: The Next Layer of Identity Governance
AI agents are moving through enterprise environments, inheriting permissions, traversing systems, and executing decisions at machine speed with minimal oversight. The identity infrastructure built to govern human access wasn't designed for autonomous actors, and the gap betwee...
SecurityWeek
Linux Foundation Unveils New Open Source Security Project Akrites
It will provide the tools and channels to report, patch, and disclose open source software vulnerabilities. The post Linux Foundation Unveils New Open Source Security Project Akrites appeared first on SecurityWeek.
vulnerability