@phongxuan

New Progress ShareFile flaws can be chained in pre-auth RCE attacks

14h ago · 2 min read · Two vulnerabilities in Progress ShareFile, an enterprise-grade secure file transfer solution, can be chained to enable unauthenticated file exfiltration from affected environments. Progress ShareFile is a document sharing and collaboration product ty...

Adversaries Exploit Vacant Homes to Intercept Mail in Hybrid Cybercrime

14h ago · 6 min read · * Fraud operations have expanded beyond traditional hacking techniques to include methods that exploit legitimate services and real-world infrastructure. By combining publicly available data, weak identity verification processes, and operational gaps...

Google fixes fourth Chrome zero-day exploited in attacks in 2026

1d ago · 2 min read · Google released emergency updates to fix another Chrome zero-day vulnerability exploited in attacks, marking the fourth such security flaw patched since the start of the year. "Google is aware that an exploit for CVE-2026-5281 exists in the wild," Go...

FBI warns against using Chinese mobile apps due to privacy risks

1d ago · 2 min read · The U.S. Federal Bureau of Investigation (FBI) warned Americans against using foreign-developed mobile applications, particularly those created by Chinese developers. In a public service announcement (PSA) issued via its Internet Crime Complaint Cent...

Microsoft fixes Outlook Classic crashes caused by Teams Meeting add-in

2d ago · 2 min read · Microsoft has resolved a known issue that rendered the classic Outlook email client unusable for users who enabled the Microsoft Teams Meeting Add-in. The bug was first reported on March 12, when affected Microsoft 365 customers began experiencing O...