Compukiks

Vulnerabilidad de Meta AI en Instagram permitiría resetear contraseñas Se ha detectado una falta crítica en la herramienta de recuperación de cuentas de Instagram impulsada por la IA de Meta Permitía secuestrar cuentas de alto valor engañando al chatbot para que enviara códigos de restablecimiento de contraseñas sin requerir ninguna verificación. https://t.co/o4TW3EADgd

⏱️ Nmap for Pentester: Timing Scan 🔥 Telegram: https://t.co/upuP8k8ckB Nmap provides timing templates (-T0 to -T5) that control how fast packets are sent during scanning. Adjusting these templates helps pentesters balance speed, accuracy, and stealth while performing network reconnaissance. ⚡ Timing scans covered: 🐢 Paranoid Scan (-T0) 🕵️ Sneaky Scan (-T1) 🙏 Polite Scan (-T2) ⚙️ Normal Scan (-T3) 🚀 Aggressive Scan (-T4) 🔥 Insane Scan (-T5) 🎯 Understanding timing templates helps security professionals optimize scans and bypass certain firewall rate-limiting rules. 📖 Read the full guide: https://t.co/R0uRHF0795 #CyberSecurity #Pentesting #Nmap #RedTeam #InfoSec #HackingArticles 🚀

Critical OpenVPN for macOS Vulnerability Let Attackers Execute Arbitrary Commands Source: https://t.co/wGOouTnLYH A critical privilege escalation vulnerability has been discovered in OpenVPN Connect for macOS, enabling local attackers to execute arbitrary commands with elevated privileges through the application’s background service component. Tracked as CVE-2026-9560, the flaw affects all versions from 3.5.1 through 3.8.1 The security flaw resides in OpenVPN Connect’s macOS privileged helper component, a background service responsible for managing VPN connections with elevated system privileges. #cybersecuritynews

⚠️ New ChatGPT Vulnerability Lets Attackers Turn Web Pages Into Phishing Payloads Source: https://t.co/mjxOMbnRRX A browser-based prompt injection technique that transforms any web page into a phishing delivery surface by exploiting ChatGPT’s page summarization feature, rendering attacker-controlled links, fake security alerts, and QR codes directly inside the trusted ChatGPT interface. The attack builds on the same trust-transfer logic previously demonstrated against Microsoft Copilot, where attacker-crafted email content could manipulate AI-generated summaries through Cross Prompt Injection Attacks (XPIA). ChatGPhish escalates that premise by swapping the bounded email primitive for the browser where users spend the majority of their working day. #cybersecuritynews #vulnerability

🚨Alert🚨 CVE-2026-48842 (CVSS 8.1) && CVE-2026-48842-CVE-2026-48849 :Critical Roundcube Webmail Security Updates Fix Severe Flaws 📊 2.6M+ Services are found on the https://t.co/g3tSyh13yE yearly. 🔗Hunter Link:https://t.co/OJqWrJRaIN 👇Query HUNTER : https://t.co/yFFcJwdIUc="Roundcube Webmail" 📰Refer:https://t.co/Wm7o1FuVA1 #hunterhow #infosec #infosecurity #OSINT #Vulnerability

⚠️Microsoft SharePoint Server Vulnerability Enables Remote Code Execution Attacks Source: https://t.co/vDoU4H5xkt Microsoft has disclosed a critical security vulnerability in SharePoint Server that could allow authenticated attackers to execute arbitrary code remotely across multiple versions of the platform. Tracked as CVE-2026-45659 and released on May 21, 2026, the flaw poses a significant risk to organizations running on-premises SharePoint deployments. The vulnerability stems from the deserialization of untrusted data within Microsoft Office SharePoint. When exploited, it enables a network-based attacker to remotely execute code on the affected server. #cybersecuritynews #sharepoint

🛡️ Nmap for Pentester: Vulnerability Scan 🔥 Telegram: https://t.co/upuP8k8ckB Nmap can perform basic vulnerability detection using the Nmap Scripting Engine (NSE). These scripts help pentesters identify known vulnerabilities in services running on a target system. ⚡ Vulnerability checks covered: 💥 MS17-010 (EternalBlue) 📁 vsFTPd 2.3.4 Backdoor 🔐 SSL POODLE Vulnerability ☕ Java RMI Classloader Vulnerability 🌐 HTTP Slowloris Vulnerability 🔓 SSL CCS Injection 🧠 Nmap Vulners Script Integration 🎯 NSE scripts allow security testers to automate vulnerability discovery and quickly identify exploitable services during reconnaissance. 📖 Read the full guide: https://t.co/JOprzUBDpB #CyberSecurity #Pentesting #Nmap #VulnerabilityScanning #RedTeam #InfoSec #HackingArticles 🚀

‼️CVE-2026-0300: PAN-OS: Unauthenticated user initiated Buffer Overflow Vulnerability in User-ID Authentication Portal CVSS 9.3 PoC: https://t.co/V4z4ro2NPq FOFA Query: app="Palo-Alto-pan-os" FOFA Link: https://t.co/YHw3yMbYSF Results: 32,070 Blog Post: https://t.co/sTKo6l4jn3

Vulnerabilidad crítica de Cisco Secure Workload permite acceso API no autorizado Cisco ha revelado una vulnerabilidad de seguridad crítica en su plataforma Secure Workload que permitiría a atacantes no autenticados obtener acceso no autorizado a recursos sensibles mediante APIs internas. CVE-2026-20223, posee una puntuación máxima de CVSS 10.0 https://t.co/nZAdGBgTYh