Ionut Arghire – WindowsTechs.com

NPM 12 Will Change Script Execution Behavior to Prevent Supply Chain Attacks

Posted on June 13, 2026 by Ionut Arghire

By default, npm install will no longer execute scripts from dependencies, unless explicitly allowed.
The post NPM 12 Will Change Script Execution Behavior to Prevent Supply Chain Attacks appeared first on SecurityWeek.
Continue reading NPM 12 Will Change Script Execution Behavior to Prevent Supply Chain Attacks→

Iranian Cyber Group Handala Claims Cal Water Hack

Posted on June 12, 2026 by Ionut Arghire

The hackers published 5GB of data, including customer personal information and credentials for the RTKBase platform.
The post Iranian Cyber Group Handala Claims Cal Water Hack appeared first on SecurityWeek.
Continue reading Iranian Cyber Group Handala Claims Cal Water Hack→

Ivanti Sentry Exploitation Attempts Hitting Honeypots

Posted on June 12, 2026 by Ionut Arghire

The critical-severity OS command injection vulnerability allows attackers to execute arbitrary code with root privileges.
The post Ivanti Sentry Exploitation Attempts Hitting Honeypots appeared first on SecurityWeek.
Continue reading Ivanti Sentry Exploitation Attempts Hitting Honeypots→

Chrome 149 Update Patches 28 Vulnerabilities

Posted on June 12, 2026 by Ionut Arghire

The browser refresh resolved critical and high-severity security defects, including a dozen use-after-free bugs.
The post Chrome 149 Update Patches 28 Vulnerabilities appeared first on SecurityWeek.
Continue reading Chrome 149 Update Patches 28 Vulnerabilities→

CISA Directs Federal Agencies to Prioritize Security Patches Based on Risk

Posted on June 11, 2026 by Ionut Arghire

The new BOD 26-04 requires agencies to review and update vulnerability management policies with a focus on KEV catalog entries.
The post CISA Directs Federal Agencies to Prioritize Security Patches Based on Risk appeared first on SecurityWeek.
Continue reading CISA Directs Federal Agencies to Prioritize Security Patches Based on Risk→

Hackers Exploit Langflow Vulnerability for Remote Code Execution

Posted on June 11, 2026 by Ionut Arghire

Disclosed in March, the security defect enables unauthenticated attackers to write files to arbitrary locations on the system.
The post Hackers Exploit Langflow Vulnerability for Remote Code Execution appeared first on SecurityWeek.
Continue reading Hackers Exploit Langflow Vulnerability for Remote Code Execution→

Splunk, Palo Alto Networks Patch Severe Vulnerabilities

Posted on June 11, 2026 by Ionut Arghire

The security defects could allow attackers to create or modify arbitrary files and access and modify protected resources.
The post Splunk, Palo Alto Networks Patch Severe Vulnerabilities appeared first on SecurityWeek.
Continue reading Splunk, Palo Alto Networks Patch Severe Vulnerabilities→

‘GreatXML’ Zero-Day Exploit Bypasses BitLocker

Posted on June 11, 2026 by Ionut Arghire

The PoC exploits Microsoft Defender’s offline scan to spawn a SYSTEM shell when rebooting in Recovery Mode.
The post ‘GreatXML’ Zero-Day Exploit Bypasses BitLocker appeared first on SecurityWeek.
Continue reading ‘GreatXML’ Zero-Day Exploit Bypasses BitLocker→

Cyera Raises $600 Million at $12 Billion Valuation

Posted on June 10, 2026 by Ionut Arghire

Cyera is positioned as one of the most valuable privately held cybersecurity firms in the world with total funding topping $2 billion.
The post Cyera Raises $600 Million at $12 Billion Valuation appeared first on SecurityWeek.
Continue reading Cyera Raises $600 Million at $12 Billion Valuation→

Aryon Security Raises $29 Million in Series A Funding

Posted on June 10, 2026 by Ionut Arghire

In the post-Mythos era, the company’s platform helps organizations enforce security controls across environments.
The post Aryon Security Raises $29 Million in Series A Funding appeared first on SecurityWeek.
Continue reading Aryon Security Raises $29 Million in Series A Funding→