Ionut Arghire – Page 12 – WindowsTechs.com

‘Claw Chain’ OpenClaw Flaws Allow Sandbox Escape, Backdoor Delivery

Posted on May 18, 2026 by Ionut Arghire

Four vulnerabilities in OpenClaw can be chained together to steal credentials, escape the sandbox, and plant persistent backdoors.
The post ‘Claw Chain’ OpenClaw Flaws Allow Sandbox Escape, Backdoor Delivery appeared first on SecurityWeek.
Continue reading ‘Claw Chain’ OpenClaw Flaws Allow Sandbox Escape, Backdoor Delivery→

Researcher Drops MiniPlasma Windows Exploit for Unpatched 2020 CVE

Posted on May 18, 2026 by Ionut Arghire

The researcher dropped the MiniPlasma exploit that uses the original proof-of-concept (PoC) code targeting the bug.
The post Researcher Drops MiniPlasma Windows Exploit for Unpatched 2020 CVE appeared first on SecurityWeek.
Continue reading Researcher Drops MiniPlasma Windows Exploit for Unpatched 2020 CVE→

First Shai-Hulud Worm Clones Emerge

Posted on May 18, 2026 by Ionut Arghire

At least one threat actor has adopted the recently released malware source code in attacks against NPM developers.
The post First Shai-Hulud Worm Clones Emerge appeared first on SecurityWeek.
Continue reading First Shai-Hulud Worm Clones Emerge→

Exploitation of Critical NGINX Vulnerability Begins

Posted on May 18, 2026 by Ionut Arghire

The flaw leads to denial-of-service on default configurations and to remote code execution if ASLR is disabled.
The post Exploitation of Critical NGINX Vulnerability Begins appeared first on SecurityWeek.
Continue reading Exploitation of Critical NGINX Vulnerability Begins→

PoC Code Published for Critical NGINX Vulnerability

Posted on May 16, 2026 by Ionut Arghire

Introduced in 2008, the critical-severity security defect was patched this week in NGINX Plus and NGINX open source.
The post PoC Code Published for Critical NGINX Vulnerability appeared first on SecurityWeek.
Continue reading PoC Code Published for Critical NGINX Vulnerability→

OpenAI Hit by TanStack Supply Chain Attack

Posted on May 15, 2026 by Ionut Arghire

Two employee devices were compromised in the attack, and credential material was stolen from OpenAI code repositories.
The post OpenAI Hit by TanStack Supply Chain Attack appeared first on SecurityWeek.
Continue reading OpenAI Hit by TanStack Supply Chain Attack→

TeamPCP Ups the Game, Releases Shai-Hulud Worm’s Source Code

Posted on May 15, 2026 by Ionut Arghire

The hacking group is encouraging miscreants to use the code in supply chain attacks, promising monetary rewards.
The post TeamPCP Ups the Game, Releases Shai-Hulud Worm’s Source Code appeared first on SecurityWeek.
Continue reading TeamPCP Ups the Game, Releases Shai-Hulud Worm’s Source Code→

Chrome 148 Update Patches Critical Vulnerabilities

Posted on May 15, 2026 by Ionut Arghire

The refresh resolves critical-severity use-after-free and other types of bugs in various browser components.
The post Chrome 148 Update Patches Critical Vulnerabilities appeared first on SecurityWeek.
Continue reading Chrome 148 Update Patches Critical Vulnerabilities→

Chinese APTs Expand Targets, Update Backdoors in Recent Campaigns

Posted on May 14, 2026 by Ionut Arghire

Salt Typhoon has hit an energy entity in Azerbaijan. Twill Typhoon has targeted Asian entities with an updated RAT.
The post Chinese APTs Expand Targets, Update Backdoors in Recent Campaigns appeared first on SecurityWeek.
Continue reading Chinese APTs Expand Targets, Update Backdoors in Recent Campaigns→

F5 Patches Over 50 Vulnerabilities

Posted on May 14, 2026 by Ionut Arghire

The company’s latest quarterly advisory describes high and medium-severity issues in BIG-IP, BIG-IQ, and NGINX.
The post F5 Patches Over 50 Vulnerabilities appeared first on SecurityWeek.
Continue reading F5 Patches Over 50 Vulnerabilities→