VulnCheck

462 posts

VulnCheck banner
VulnCheck

VulnCheck

@VulnCheckAI

Outpace Adversaries

Boston, MA Katılım Kasım 2021
28 Takip Edilen778 Takipçiler
VulnCheck
VulnCheck@VulnCheckAI·
Today, VulnCheck disclosed CVE-2026-60105, a high-severity unauthenticated flaw in Monsta FTP that could expose cloud metadata and internal services. Monsta FTP silently patched the issue in 2.14.5 under “Minor bugs and fixes.” Read the full report: vulncheck.com/blog/monsta-ft…
English
0
6
5
651
VulnCheck
VulnCheck@VulnCheckAI·
The THREATCON1 CFP has been extended to July 31. This is your chance to share novel research, technical deep dives, hands-on content, or field-informed perspectives with cybersecurity leaders, mission-driven teams, and global threat researchers. Submit: threatcon1.org/submissions
English
0
0
2
166
VulnCheck
VulnCheck@VulnCheckAI·
Last call: THREATCON1 CFP closes today, July 10. This is an opportunity to share novel research, technical deep dives, or field-informed perspectives with cybersecurity leaders, mission-driven teams, and global threat researchers. Submit today: threatcon1.org/submissions
VulnCheck tweet media
English
0
1
4
629
VulnCheck
VulnCheck@VulnCheckAI·
What damage could a missing keyword do? In FOSSBilling, everything. A missing throw statement plus an unsandboxed Twig renderer can be chained into unauthenticated RCE against default FOSSBilling installs. Read more: vulncheck.com/blog/fossbilli…
English
0
1
1
271
VulnCheck
VulnCheck@VulnCheckAI·
CISA is giving federal agencies until Friday to patch an actively exploited Langflow vulnerability. Sergiu Gatlan at @BleepinComputer has the details, including VulnCheck’s Caitlin Condon reporting exploitation in the wild on June 10. bleepingcomputer.com/news/security/…
English
1
2
13
1.1K
VulnCheck
VulnCheck@VulnCheckAI·
Recorded at RSA, Patrick Garrity & Kimber Duke sat down with Piotr Kijewski of @Shadowserver to discuss cyber threats, exploitation, botnet takedowns, and global threat intel. Watch: youtu.be/2E1Tn1zhgIQ
YouTube video
YouTube
English
0
1
1
356
VulnCheck
VulnCheck@VulnCheckAI·
Have research, a deep dive, or insight the cybersecurity community needs to hear? Submit it to THREATCON1! The CFP closes on July 10, 2026. Submit your proposal: threatcon1.org/submissions
VulnCheck tweet media
English
0
1
0
464
VulnCheck
VulnCheck@VulnCheckAI·
VulnCheck recently disclosed CVE-2026-53805, an NVIDIA GEN3C inference API flaw that could let unauthenticated attackers run code on vulnerable servers. Interested in learning how? Read the full report: vulncheck.com/blog/nvidia-ge…
English
0
1
7
1.2K
VulnCheck
VulnCheck@VulnCheckAI·
What damage could a missing keyword do? In FOSSBilling, everything. Our latest research shows how a missing throw statement and an unsandboxed Twig renderer can be chained into unauthenticated RCE against default FOSSBilling installations. Read more: vulncheck.com/blog/fossbilli…
English
0
2
5
956
VulnCheck
VulnCheck@VulnCheckAI·
Observed exploitation is only the starting point. New research from Adam Powis shows how VulnCheck Canary Intelligence and Target Intelligence can help defenders pivot from Canary activity to attacker infrastructure. Read the report: vulncheck.com/blog/meowproje…
English
0
1
2
563
VulnCheck
VulnCheck@VulnCheckAI·
Join VulnCheck June 24 for our next In the Wild webinar where we break down CISA BOD 26-04, SSVC-based prioritization, Vulnrichment gaps and what private-sector teams should take away. 12 PM CT Register: linkedin.com/events/7469779…
VulnCheck tweet media
English
0
0
1
129
VulnCheck
VulnCheck@VulnCheckAI·
One of the nation’s most consequential cyber leaders is taking the THREATCON1 stage. Gen. Paul M. Nakasone, former Commander of U.S. Cyber Command and former NSA Director, will keynote THREATCON1 2026. Register, submit a CFP or learn more: vulncheck.com/press/2026-thr…
VulnCheck tweet media
English
0
0
0
74
VulnCheck
VulnCheck@VulnCheckAI·
AI-assisted Linux LPE research is creating signal and noise. Landon Rice breaks down Copy Fail, Dirty Frag, and related page-cache overwrite bugs, with a focus on exploitability over headlines. Read: vulncheck.com/blog/copy-fail…
English
0
0
0
127
VulnCheck
VulnCheck@VulnCheckAI·
CISA’s BOD 26-04 puts risk-based remediation in focus for federal agencies. Patrick Garrity breaks down what it means, why SSVC matters, and how broader coverage plus earlier exploit intel can help teams prioritize. Read more: vulncheck.com/blog/cisa-bod-…
English
0
0
0
104
VulnCheck
VulnCheck@VulnCheckAI·
New research from Adam Powis shows how VulnCheck connects observed exploitation activity to the broader attacker infrastructure behind it. Canary Intelligence sees the activity. Target Intelligence helps map the operation. Read the full research: vulncheck.com/blog/meowproje…
English
0
1
2
167
VulnCheck
VulnCheck@VulnCheckAI·
Live June 24 at 12 PM CST: our next In the Wild webinar covers CISA BOD 26-04, SSVC-based prioritization, Vulnrichment gaps, and why it matters for federal agencies and private-sector teams. Register: wwv.vulncheck.com/in-the-wild-wi…
VulnCheck tweet media
English
0
0
1
80
VulnCheck
VulnCheck@VulnCheckAI·
How much can a handful of suspicious indicators reveal? Join VulnCheck’s Adam Powis at LCHS 2026 for a look at mapping attacker infrastructure from initial signal to C2. 📅 June 25 | 🕕 6:15 p.m. | More here: More here: vulncheck.com/events/lchs-20…
VulnCheck tweet media
English
0
0
0
74