digicat

Illuminating VoidLink: Technical analysis of the VoidLink rootkit framework (www.elastic.co)

Critical Vulnerability in TP-Link Archer Products (www.csa.gov.sg)

Local Privilege Escalation in Vienna Assistant (MacOS) - Vienna Symphonic Library - apparently no patch, vendor didn't response (sec-consult.com)

strongSwan Vulnerability (CVE-2026-25075) (www.strongswan.org)

Honey for Hackers: A Study of Attacks Targeting the Recent CVE-2026-21962 and Other Critical WebLogic Vulnerabilities on a High Interactive Oracle Honeypot (www.cloudsek.com)

SQUID-2026:3 Out of Bounds Read in ICP message handling (github.com)

CVE-2026-33696 - n8n: Prototype Pollution in XML and GSuiteAdmin node parameters lead to RCE (github.com)

Grafana security release: Critical and high severity security fixes for CVE-2026-27876 and CVE-2026-27880 | Grafana Labs (grafana.com)

A cunning predator: How Silver Fox preys on Japanese firms this tax season (www.welivesecurity.com)

xtride: Source code for XTRIDE: "Practical Type Inference: High-Throughput Recovery of Real-World Structures and Function Signatures" (github.com)

Under CTRL: Dissecting a Previously Undocumented Russian .Net Access Framework (censys.com)

StealthMole Intelligence Hub: IndoHaxSec: Inside the Expanding Network of a Pro-Palestinian Hacktivist Collective (stealthmole-intelligence-hub.blogspot.com)