<?xml version='1.0' encoding='UTF-8'?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>InfoSecRadar — Cloud &amp; Infrastructure</title>
    <link>https://infosecradar.com/feeds/cloud.xml</link>
    <description>Cloud &amp; Infrastructure stories from InfoSecRadar</description>
    <atom:link href="https://infosecradar.com/feeds/cloud.xml" rel="self"/>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>InfoSecRadar</generator>
    <language>en</language>
    <lastBuildDate>Fri, 17 Jul 2026 14:10:19 +0000</lastBuildDate>
    <item>
      <title>Recent DShield SIEM Update, (Tue, Jul 14th)</title>
      <link>https://infosecradar.com/stories/2026/07/15/recent-dshield-siem-update-tue-jul-14th/</link>
      <description>The DShield SIEM has received an update, its first since September 2025. This new version incorporates ELK stack version 8.19.15, introducing additional dashboards and new log capabilities.</description>
      <guid isPermaLink="false">https://isc.sans.edu/diary/rss/33156</guid>
      <pubDate>Wed, 15 Jul 2026 01:38:43 +0000</pubDate>
      <source url="https://isc.sans.edu/diary/rss/33156">SANS Internet Storm Center</source>
    </item>
    <item>
      <title>Patch Tuesday roundup: Microsoft fixes a monthly record 569 holes; SAP patches a critical memory corruption bug</title>
      <link>https://infosecradar.com/stories/2026/07/15/patch-tuesday-roundup-microsoft-fixes-a-monthly-record-569-holes-sap-patches-a-c/</link>
      <description>Microsoft has released a record-breaking 569 patches this month, with 59 rated as critical, and is advising customers to accelerate their patching schedules. This surge is attributed to improved vulnerability discovery tools, including AI models, which are expected to lead to over 3,000 CVEs by year-end. SAP also released 20 patches, including one critical memory corruption vulnerability.</description>
      <guid isPermaLink="false">https://www.csoonline.com/article/4196940/patch-tuesday-roundup-microsoft-fixes-a-monthly-record-569-holes-sap-patches-a-critical-memory-corruption-bug.html</guid>
      <pubDate>Wed, 15 Jul 2026 01:54:00 +0000</pubDate>
      <source url="https://www.csoonline.com/article/4196940/patch-tuesday-roundup-microsoft-fixes-a-monthly-record-569-holes-sap-patches-a-critical-memory-corruption-bug.html">CSO Online</source>
    </item>
    <item>
      <title>SonicWall Issues Urgent SMA Patch Warning for Two Zero-Day Exploits</title>
      <link>https://infosecradar.com/stories/2026/07/15/sonicwall-issues-urgent-sma-patch-warning-for-two-zero-day-exploits/</link>
      <description>SonicWall has issued an urgent warning regarding two zero-day vulnerabilities, CVE-2026-15409 and CVE-2026-15410, affecting its SMA1000 series appliances. These vulnerabilities can be exploited to achieve remote code execution.</description>
      <guid isPermaLink="false">https://www.securityweek.com/sonicwall-issues-urgent-sma-patch-warning-for-two-zero-day-exploits/</guid>
      <pubDate>Wed, 15 Jul 2026 05:19:42 +0000</pubDate>
      <source url="https://www.securityweek.com/sonicwall-issues-urgent-sma-patch-warning-for-two-zero-day-exploits/">SecurityWeek</source>
    </item>
    <item>
      <title>Two SonicWall SMA 1000 Zero-Days Exploited, One Could Enable Admin Commands</title>
      <link>https://infosecradar.com/stories/2026/07/15/two-sonicwall-sma-1000-zero-days-exploited-one-could-enable-admin-commands/</link>
      <description>SonicWall has issued a warning about two zero-day vulnerabilities being actively exploited in their SMA 1000 series appliances. One of these vulnerabilities, CVE-2026-15409, is a critical Server-side request forgery (SSRF) flaw that could allow remote, unauthenticated attackers to execute arbitrary commands.</description>
      <guid isPermaLink="false">https://thehackernews.com/2026/07/two-sonicwall-sma-1000-zero-days.html</guid>
      <pubDate>Wed, 15 Jul 2026 05:30:21 +0000</pubDate>
      <source url="https://thehackernews.com/2026/07/two-sonicwall-sma-1000-zero-days.html">The Hacker News</source>
    </item>
    <item>
      <title>Microsoft: Some Dell PCs shut down after recent Windows updates</title>
      <link>https://infosecradar.com/stories/2026/07/15/microsoft-some-dell-pcs-shut-down-after-recent-windows-updates/</link>
      <description>Microsoft has identified that recent Windows security updates are causing unexpected shutdowns and performance issues on some Dell PCs. To prevent further disruption, Microsoft is temporarily blocking the deployment of these problematic updates to affected Dell devices.</description>
      <guid isPermaLink="false">https://www.bleepingcomputer.com/news/microsoft/microsoft-some-dell-devices-shut-down-after-windows-update/</guid>
      <pubDate>Wed, 15 Jul 2026 08:26:48 +0000</pubDate>
      <source url="https://www.bleepingcomputer.com/news/microsoft/microsoft-some-dell-devices-shut-down-after-windows-update/">Bleeping Computer</source>
    </item>
    <item>
      <title>ICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Schneider, Rockwell</title>
      <link>https://infosecradar.com/stories/2026/07/15/ics-patch-tuesday-vulnerabilities-fixed-by-siemens-schneider-rockwell/</link>
      <description>Siemens, Schneider, and Rockwell have collectively addressed dozens of vulnerabilities affecting their Industrial Control Systems (ICS) products. These fixes were announced as part of their regular patch updates and were also highlighted by advisories from CISA and VDE CERT.</description>
      <guid isPermaLink="false">https://www.securityweek.com/ics-patch-tuesday-vulnerabilities-fixed-by-siemens-schneider-rockwell/</guid>
      <pubDate>Wed, 15 Jul 2026 09:19:58 +0000</pubDate>
      <source url="https://www.securityweek.com/ics-patch-tuesday-vulnerabilities-fixed-by-siemens-schneider-rockwell/">SecurityWeek</source>
    </item>
    <item>
      <title>CISA warns admins to patch actively exploited SharePoint flaws</title>
      <link>https://infosecradar.com/stories/2026/07/15/cisa-warns-admins-to-patch-actively-exploited-sharepoint-flaws/</link>
      <description>CISA has issued a warning regarding three actively exploited vulnerabilities in on-premises SharePoint Server instances. Administrators are urged to patch these flaws immediately to prevent further exploitation by attackers.</description>
      <guid isPermaLink="false">https://www.bleepingcomputer.com/news/security/cisa-warns-admins-to-patch-actively-exploited-sharepoint-flaws/</guid>
      <pubDate>Wed, 15 Jul 2026 09:44:52 +0000</pubDate>
      <source url="https://www.bleepingcomputer.com/news/security/cisa-warns-admins-to-patch-actively-exploited-sharepoint-flaws/">Bleeping Computer</source>
    </item>
    <item>
      <title>Progress Confirms Zero-Day Vulnerability Behind ShareFile Disruption</title>
      <link>https://infosecradar.com/stories/2026/07/15/progress-confirms-zero-day-vulnerability-behind-sharefile-disruption/</link>
      <description>Progress has confirmed a zero-day vulnerability is the cause of recent disruptions affecting its ShareFile service. The company has released a patch and is working to restore access for affected Storage Zones Controller customers who apply the fix.</description>
      <guid isPermaLink="false">https://www.securityweek.com/progress-confirms-zero-day-vulnerability-behind-sharefile-disruption/</guid>
      <pubDate>Wed, 15 Jul 2026 09:48:29 +0000</pubDate>
      <source url="https://www.securityweek.com/progress-confirms-zero-day-vulnerability-behind-sharefile-disruption/">SecurityWeek</source>
    </item>
    <item>
      <title>When 80,000 fans log on at once: The 2026 World Cup’s unique cybersecurity issues</title>
      <link>https://infosecradar.com/stories/2026/07/15/when-80000-fans-log-on-at-once-the-2026-world-cups-unique-cybersecurity-issues/</link>
      <description>Large soccer stadiums hosting events like the World Cup present unique cybersecurity challenges due to the massive influx of tens of thousands of unmanaged devices connecting to their networks. The article highlights the need for real-time network visibility and segmentation to protect critical systems like payment platforms and operational infrastructure from potential disruptions.</description>
      <guid isPermaLink="false">https://www.csoonline.com/article/4196827/when-80000-fans-log-on-at-once-the-2026-world-cups-unique-cybersecurity-issues.html</guid>
      <pubDate>Wed, 15 Jul 2026 10:00:00 +0000</pubDate>
      <source url="https://www.csoonline.com/article/4196827/when-80000-fans-log-on-at-once-the-2026-world-cups-unique-cybersecurity-issues.html">CSO Online</source>
    </item>
    <item>
      <title>SASE Has An AI Blind Spot. Inspecting Packets Is No Longer Enough.</title>
      <link>https://infosecradar.com/stories/2026/07/15/sase-has-an-ai-blind-spot-inspecting-packets-is-no-longer-enough/</link>
      <description>Traditional Secure Access Service Edge (SASE) models are becoming insufficient due to the increasing use of AI and SaaS applications in enterprise workflows. These modern work environments, which include generative AI tools and autonomous agents, have created blind spots in SASE solutions, rendering traditional packet inspection inadequate for security.</description>
      <guid isPermaLink="false">https://thehackernews.com/2026/07/sase-has-ai-blind-spot-inspecting.html</guid>
      <pubDate>Wed, 15 Jul 2026 11:50:01 +0000</pubDate>
      <source url="https://thehackernews.com/2026/07/sase-has-ai-blind-spot-inspecting.html">The Hacker News</source>
    </item>
    <item>
      <title>Virtual Event Today: Cloud &amp; Data Security Summit</title>
      <link>https://infosecradar.com/stories/2026/07/15/virtual-event-today-cloud-data-security-summit/</link>
      <description>A virtual Cloud &amp; Data Security Summit is taking place today, offering attendees the chance to interact with solution providers and peers. The event focuses on the challenges of securing various cloud deployments.</description>
      <guid isPermaLink="false">https://www.securityweek.com/virtual-event-today-cloud-data-security-summit/</guid>
      <pubDate>Wed, 15 Jul 2026 12:52:10 +0000</pubDate>
      <source url="https://www.securityweek.com/virtual-event-today-cloud-data-security-summit/">SecurityWeek</source>
    </item>
    <item>
      <title>Microsoft cancels Patch Tuesday for some Dell users over surprise shutdowns, overheating devices</title>
      <link>https://infosecradar.com/stories/2026/07/15/microsoft-cancels-patch-tuesday-for-some-dell-users-over-surprise-shutdowns-over/</link>
      <description>Microsoft has canceled its March Patch Tuesday for some Dell customers due to reports of surprise shutdowns and device overheating caused by the updates. The issue appears to be widespread, impacting a significant number of Dell devices.</description>
      <guid isPermaLink="false">https://www.theregister.com/os-platforms/2026/07/15/microsoft-cancels-patch-tuesday-for-some-dell-users-over-surprise-shutdowns-overheating-devices/5271691</guid>
      <pubDate>Wed, 15 Jul 2026 13:44:57 +0000</pubDate>
      <source url="https://www.theregister.com/os-platforms/2026/07/15/microsoft-cancels-patch-tuesday-for-some-dell-users-over-surprise-shutdowns-overheating-devices/5271691">The Register (Security)</source>
    </item>
    <item>
      <title>CISA Urges Immediate Patching of Exploited SharePoint Vulnerabilities</title>
      <link>https://infosecradar.com/stories/2026/07/15/cisa-urges-immediate-patching-of-exploited-sharepoint-vulnerabilities/</link>
      <description>CISA has issued a warning urging immediate patching of exploited SharePoint vulnerabilities. Three specific vulnerabilities are confirmed to be under active attack, with two of them being zero-day exploits.</description>
      <guid isPermaLink="false">https://www.securityweek.com/cisa-urges-immediate-patching-of-exploited-sharepoint-vulnerabilities/</guid>
      <pubDate>Wed, 15 Jul 2026 14:07:44 +0000</pubDate>
      <source url="https://www.securityweek.com/cisa-urges-immediate-patching-of-exploited-sharepoint-vulnerabilities/">SecurityWeek</source>
    </item>
    <item>
      <title>CISA sounds alarm over trio of exploited SharePoint flaws</title>
      <link>https://infosecradar.com/stories/2026/07/15/cisa-sounds-alarm-over-trio-of-exploited-sharepoint-flaws/</link>
      <description>CISA has issued a warning about three actively exploited vulnerabilities in Microsoft SharePoint. Two of these flaws are rated as critical and could lead to further exploitation. Organizations are urged to apply patches immediately to mitigate the risks.</description>
      <guid isPermaLink="false">https://www.theregister.com/security/2026/07/15/cisa-sounds-alarm-over-trio-of-exploited-sharepoint-flaws/5271814</guid>
      <pubDate>Wed, 15 Jul 2026 15:21:58 +0000</pubDate>
      <source url="https://www.theregister.com/security/2026/07/15/cisa-sounds-alarm-over-trio-of-exploited-sharepoint-flaws/5271814">The Register (Security)</source>
    </item>
    <item>
      <title>Most Smart Watches, Rings, and Bands Lack Basic Transparency Reports and Key Privacy Features</title>
      <link>https://infosecradar.com/stories/2026/07/15/most-smart-watches-rings-and-bands-lack-basic-transparency-reports-and-key-priva/</link>
      <description>Many popular wearable health devices, such as smartwatches and fitness bands, lack basic transparency reports and robust privacy features. Companies creating these devices collect extensive user data, which can be shared with third parties for marketing, insurance purposes, or AI model training. This collected health data is increasingly being accessed by law enforcement through subpoenas and warrants for investigations.</description>
      <guid isPermaLink="false">https://www.eff.org/deeplinks/2026/07/most-smart-watches-rings-and-bands-lack-basic-transparency-reports-and-key-privacy</guid>
      <pubDate>Wed, 15 Jul 2026 19:56:18 +0000</pubDate>
      <source url="https://www.eff.org/deeplinks/2026/07/most-smart-watches-rings-and-bands-lack-basic-transparency-reports-and-key-privacy">EFF Deeplinks</source>
    </item>
    <item>
      <title>Zoom warns of critical account takeover vulnerability</title>
      <link>https://infosecradar.com/stories/2026/07/15/zoom-warns-of-critical-account-takeover-vulnerability/</link>
      <description>Zoom has issued a warning about a critical vulnerability affecting its desktop client and SDK for Windows. Attackers can exploit this flaw to take over user accounts without authentication. This vulnerability requires users to have Zoom installed and be logged into an account on the affected platform.</description>
      <guid isPermaLink="false">https://www.bleepingcomputer.com/news/security/zoom-warns-of-critical-account-takeover-vulnerability/</guid>
      <pubDate>Wed, 15 Jul 2026 20:16:02 +0000</pubDate>
      <source url="https://www.bleepingcomputer.com/news/security/zoom-warns-of-critical-account-takeover-vulnerability/">Bleeping Computer</source>
    </item>
    <item>
      <title>Forgotten Bootloaders Expose Secure Boot Blind Spot</title>
      <link>https://infosecradar.com/stories/2026/07/15/forgotten-bootloaders-expose-secure-boot-blind-spot/</link>
      <description>Attackers have exploited a vulnerability in UEFI shim bootloaders, allowing them to bypass Secure Boot protections for years. Nearly a dozen of these vulnerable bootloaders were revoked, but their prior trust created a security blind spot.</description>
      <guid isPermaLink="false">https://www.darkreading.com/cyber-risk/forgotten-bootloaders-expose-secure-boot-blind-spot</guid>
      <pubDate>Wed, 15 Jul 2026 21:19:19 +0000</pubDate>
      <source url="https://www.darkreading.com/cyber-risk/forgotten-bootloaders-expose-secure-boot-blind-spot">Dark Reading</source>
    </item>
    <item>
      <title>CVE-2026-58644: Microsoft SharePoint Deserialization of Untrusted Data Vulnerability</title>
      <link>https://infosecradar.com/stories/2026/07/16/cve-2026-58644-microsoft-sharepoint-deserialization-of-untrusted-data-vulnerabil/</link>
      <description>Microsoft SharePoint has a deserialization of untrusted data vulnerability that allows remote code execution by unauthorized attackers. Users are instructed to apply mitigations provided by the vendor, following CISA's guidance on prioritizing security updates and forensic triage requirements.</description>
      <guid isPermaLink="false">https://nvd.nist.gov/vuln/detail/CVE-2026-58644</guid>
      <pubDate>Thu, 16 Jul 2026 00:00:00 +0000</pubDate>
      <source url="https://nvd.nist.gov/vuln/detail/CVE-2026-58644">CISA KEV</source>
    </item>
    <item>
      <title>Cyberattack threatens utterly critical infrastructure in Japan: KFC</title>
      <link>https://infosecradar.com/stories/2026/07/16/cyberattack-threatens-utterly-critical-infrastructure-in-japan-kfc/</link>
      <description>A cyberattack has significantly disrupted operations at KFC Japan, impacting its online ordering system and potentially leading to store closures. The attack targeted a logistics partner, causing its systems to go offline and halting the delivery of crucial supplies.</description>
      <guid isPermaLink="false">https://www.theregister.com/security/2026/07/16/cyberattack-threatens-utterly-critical-infrastructure-in-japan-kfc/5272220</guid>
      <pubDate>Thu, 16 Jul 2026 02:01:01 +0000</pubDate>
      <source url="https://www.theregister.com/security/2026/07/16/cyberattack-threatens-utterly-critical-infrastructure-in-japan-kfc/5272220">The Register (Security)</source>
    </item>
    <item>
      <title>Old UEFI Shims Expose Systems to Secure Boot Bypass</title>
      <link>https://infosecradar.com/stories/2026/07/16/old-uefi-shims-expose-systems-to-secure-boot-bypass/</link>
      <description>Vulnerable UEFI shim bootloaders, signed by Microsoft, can be exploited to bypass Secure Boot on any operating system. This vulnerability allows attackers to potentially load malicious code during the boot process, undermining system integrity.</description>
      <guid isPermaLink="false">https://www.securityweek.com/old-uefi-shims-expose-systems-to-secure-boot-bypass/</guid>
      <pubDate>Thu, 16 Jul 2026 07:59:22 +0000</pubDate>
      <source url="https://www.securityweek.com/old-uefi-shims-expose-systems-to-secure-boot-bypass/">SecurityWeek</source>
    </item>
    <item>
      <title>F5 Patches Multiple NGINX, BIG-IP Vulnerabilities</title>
      <link>https://infosecradar.com/stories/2026/07/16/f5-patches-multiple-nginx-big-ip-vulnerabilities/</link>
      <description>F5 has released patches for multiple vulnerabilities affecting its NGINX and BIG-IP products. Attackers could exploit these flaws to modify configurations, terminate or restart processes, bypass security controls, leak memory, and execute arbitrary code.</description>
      <guid isPermaLink="false">https://www.securityweek.com/f5-patches-multiple-nginx-big-ip-vulnerabilities/</guid>
      <pubDate>Thu, 16 Jul 2026 09:20:10 +0000</pubDate>
      <source url="https://www.securityweek.com/f5-patches-multiple-nginx-big-ip-vulnerabilities/">SecurityWeek</source>
    </item>
    <item>
      <title>Unpatched Shark Vacuum Flaw Could Let Attackers Control Other Vacuums Region-Wide</title>
      <link>https://infosecradar.com/stories/2026/07/16/unpatched-shark-vacuum-flaw-could-let-attackers-control-other-vacuums-region-wid/</link>
      <description>A critical vulnerability in Shark robot vacuums allows attackers to remotely control other vacuums in the same AWS region by extracting the device's certificate. Exploiting this flaw enables attackers to access the vacuum's camera, control its movement, read house maps, and steal Wi-Fi credentials.</description>
      <guid isPermaLink="false">https://thehackernews.com/2026/07/unpatched-shark-vacuum-flaw-could-let.html</guid>
      <pubDate>Thu, 16 Jul 2026 09:23:19 +0000</pubDate>
      <source url="https://thehackernews.com/2026/07/unpatched-shark-vacuum-flaw-could-let.html">The Hacker News</source>
    </item>
    <item>
      <title>When AI gets a body, it inherits an attack surface</title>
      <link>https://infosecradar.com/stories/2026/07/16/when-ai-gets-a-body-it-inherits-an-attack-surface/</link>
      <description>As artificial intelligence is increasingly integrated into physical systems like robots, it introduces a new attack surface that security teams are ill-equipped to evaluate. Vendors are pushing embodied AI systems with limited transparency, making it difficult for security professionals to assess risks associated with hardware, firmware, and supply chains. Evaluating these systems requires a focus on provenance, access, integrity, evidence, and accountability to ensure security.</description>
      <guid isPermaLink="false">https://www.csoonline.com/article/4197463/when-ai-gets-a-body-it-inherits-an-attack-surface.html</guid>
      <pubDate>Thu, 16 Jul 2026 10:00:00 +0000</pubDate>
      <source url="https://www.csoonline.com/article/4197463/when-ai-gets-a-body-it-inherits-an-attack-surface.html">CSO Online</source>
    </item>
    <item>
      <title>Telegram shortlinks knocked offline over sanctioned VPN connection</title>
      <link>https://infosecradar.com/stories/2026/07/16/telegram-shortlinks-knocked-offline-over-sanctioned-vpn-connection/</link>
      <description>Telegram's shortlink service, t.me, experienced an outage for approximately 24 hours. The disruption was reportedly caused by the platform's connection to a VPN service that had been sanctioned. Following an investigation, Telegram demonstrated it had no ties to the sanctioned entity, and the service was restored.</description>
      <guid isPermaLink="false">https://www.theregister.com/security/2026/07/16/telegram-shortlinks-knocked-offline-over-sanctioned-vpn-connection/5271964</guid>
      <pubDate>Thu, 16 Jul 2026 10:07:00 +0000</pubDate>
      <source url="https://www.theregister.com/security/2026/07/16/telegram-shortlinks-knocked-offline-over-sanctioned-vpn-connection/5271964">The Register (Security)</source>
    </item>
    <item>
      <title>CISA orders feds to patch actively exploited Oracle flaw by Saturday</title>
      <link>https://infosecradar.com/stories/2026/07/16/cisa-orders-feds-to-patch-actively-exploited-oracle-flaw-by-saturday/</link>
      <description>CISA has issued a directive ordering federal agencies to patch a critical vulnerability in Oracle E-Business Suite by Saturday due to active exploitation. This vulnerability affects the financial application and poses a significant risk to sensitive government data and operations.</description>
      <guid isPermaLink="false">https://www.bleepingcomputer.com/news/security/cisa-orders-feds-to-patch-actively-exploited-oracle-flaw-by-saturday/</guid>
      <pubDate>Thu, 16 Jul 2026 10:56:03 +0000</pubDate>
      <source url="https://www.bleepingcomputer.com/news/security/cisa-orders-feds-to-patch-actively-exploited-oracle-flaw-by-saturday/">Bleeping Computer</source>
    </item>
    <item>
      <title>Windows 10 refuses to die, and the security bill is coming due</title>
      <link>https://infosecradar.com/stories/2026/07/16/windows-10-refuses-to-die-and-the-security-bill-is-coming-due/</link>
      <description>Despite reaching its end of support in October 2025, a significant portion of Windows 10 machines remain unmigrated. This continued reliance on an unsupported operating system poses a substantial security risk, as these systems will no longer receive critical security patches.</description>
      <guid isPermaLink="false">https://www.theregister.com/os-platforms/2026/07/16/windows-10-refuses-to-die-and-the-security-bill-is-coming-due/5271987</guid>
      <pubDate>Thu, 16 Jul 2026 11:25:20 +0000</pubDate>
      <source url="https://www.theregister.com/os-platforms/2026/07/16/windows-10-refuses-to-die-and-the-security-bill-is-coming-due/5271987">The Register (Security)</source>
    </item>
    <item>
      <title>Windows 11 24H2 Home and Pro reach end of support in 90 days</title>
      <link>https://infosecradar.com/stories/2026/07/16/windows-11-24h2-home-and-pro-reach-end-of-support-in-90-days/</link>
      <description>Microsoft has announced that Windows 11 24H2 Home and Pro editions, as well as Windows 10 Enterprise LTSB 2016, will reach their end of support in 90 days. This means these versions will no longer receive security updates or technical support after that period.</description>
      <guid isPermaLink="false">https://www.bleepingcomputer.com/news/microsoft/windows-11-24h2-home-and-pro-reach-end-of-support-in-90-days/</guid>
      <pubDate>Thu, 16 Jul 2026 11:59:24 +0000</pubDate>
      <source url="https://www.bleepingcomputer.com/news/microsoft/windows-11-24h2-home-and-pro-reach-end-of-support-in-90-days/">Bleeping Computer</source>
    </item>
    <item>
      <title>AutomationDirect Productivity Suite</title>
      <link>https://infosecradar.com/stories/2026/07/16/automationdirect-productivity-suite/</link>
      <description>AutomationDirect Productivity Suite versions prior to v4.6.2.2 are vulnerable to multiple security flaws including out-of-bounds writes, out-of-bounds reads, and divide-by-zero errors. Successful exploitation could allow a local attacker with physical access to cause memory corruption, information disclosure, application instability, or denial-of-service conditions.</description>
      <guid isPermaLink="false">https://www.cisa.gov/news-events/ics-advisories/icsa-26-197-04</guid>
      <pubDate>Thu, 16 Jul 2026 12:00:00 +0000</pubDate>
      <source url="https://www.cisa.gov/news-events/ics-advisories/icsa-26-197-04">CISA Alerts</source>
    </item>
    <item>
      <title>Rockwell Automation CompactLogix, ControlLogix, Compact GuardLogix and GuardLogix</title>
      <link>https://infosecradar.com/stories/2026/07/16/rockwell-automation-compactlogix-controllogix-compact-guardlogix-and-guardlogix/</link>
      <description>CISA has issued an alert regarding multiple vulnerabilities in Rockwell Automation's CompactLogix, ControlLogix, Compact GuardLogix, and GuardLogix systems. Successful exploitation could lead to a denial-of-service condition.</description>
      <guid isPermaLink="false">https://www.cisa.gov/news-events/ics-advisories/icsa-26-197-06</guid>
      <pubDate>Thu, 16 Jul 2026 12:00:00 +0000</pubDate>
      <source url="https://www.cisa.gov/news-events/ics-advisories/icsa-26-197-06">CISA Alerts</source>
    </item>
    <item>
      <title>Siemens SICAM 8</title>
      <link>https://infosecradar.com/stories/2026/07/16/siemens-sicam-8/</link>
      <description>Siemens SICAM 8 products are affected by multiple vulnerabilities, including an active debug code, initialization of a resource with an insecure default, and unverified password change. These flaws could allow an authenticated attacker to cause denial of service conditions by crashing the web process. Siemens has released updated versions to address these vulnerabilities.</description>
      <guid isPermaLink="false">https://www.cisa.gov/news-events/ics-advisories/icsa-26-197-05</guid>
      <pubDate>Thu, 16 Jul 2026 12:00:00 +0000</pubDate>
      <source url="https://www.cisa.gov/news-events/ics-advisories/icsa-26-197-05">CISA Alerts</source>
    </item>
    <item>
      <title>Rockwell Automation Arena</title>
      <link>https://infosecradar.com/stories/2026/07/16/rockwell-automation-arena/</link>
      <description>Rockwell Automation Arena has several vulnerabilities, including out-of-bounds writes in the model.exe component, that could allow an attacker to execute arbitrary code. These vulnerabilities affect versions less than or equal to V17.00.00. Rockwell Automation recommends updating to V17.00.01 to mitigate these risks.</description>
      <guid isPermaLink="false">https://www.cisa.gov/news-events/ics-advisories/icsa-26-197-01</guid>
      <pubDate>Thu, 16 Jul 2026 12:00:00 +0000</pubDate>
      <source url="https://www.cisa.gov/news-events/ics-advisories/icsa-26-197-01">CISA Alerts</source>
    </item>
    <item>
      <title>Rockwell Automation FactoryTalk DataMosaix</title>
      <link>https://infosecradar.com/stories/2026/07/16/rockwell-automation-factorytalk-datamosaix/</link>
      <description>A Stored Cross-Site Scripting (XSS) vulnerability has been identified in Rockwell Automation FactoryTalk DataMosaix Private Cloud versions less than or equal to 8.02. Successful exploitation by an authenticated attacker could allow for the injection and permanent storage of malicious scripts on the server, leading to potential account takeover or credential theft when other users access affected pages.</description>
      <guid isPermaLink="false">https://www.cisa.gov/news-events/ics-advisories/icsa-26-197-09</guid>
      <pubDate>Thu, 16 Jul 2026 12:00:00 +0000</pubDate>
      <source url="https://www.cisa.gov/news-events/ics-advisories/icsa-26-197-09">CISA Alerts</source>
    </item>
    <item>
      <title>Rockwell Automation Flex 5000 Adapter</title>
      <link>https://infosecradar.com/stories/2026/07/16/rockwell-automation-flex-5000-adapter/</link>
      <description>Rockwell Automation Flex 5000 Adapter version 6.011 is affected by a denial-of-service vulnerability (CVE-2026-12659) due to improper handling of crafted CIP packets. Successful exploitation could lead to a denial-of-service condition requiring a power cycle to recover the module.</description>
      <guid isPermaLink="false">https://www.cisa.gov/news-events/ics-advisories/icsa-26-197-08</guid>
      <pubDate>Thu, 16 Jul 2026 12:00:00 +0000</pubDate>
      <source url="https://www.cisa.gov/news-events/ics-advisories/icsa-26-197-08">CISA Alerts</source>
    </item>
    <item>
      <title>Rockwell Automation 1756-EN2, 1756-EN3, and 1756-ENBT</title>
      <link>https://infosecradar.com/stories/2026/07/16/rockwell-automation-1756-en2-1756-en3-and-1756-enbt/</link>
      <description>Rockwell Automation's 1756-EN2, 1756-EN3, and 1756-ENBT communication modules are affected by a denial-of-service vulnerability due to improper validation of CIP Implicit Connection packets. An attacker could exploit this by sending crafted packets to disrupt device connections.</description>
      <guid isPermaLink="false">https://www.cisa.gov/news-events/ics-advisories/icsa-26-197-02</guid>
      <pubDate>Thu, 16 Jul 2026 12:00:00 +0000</pubDate>
      <source url="https://www.cisa.gov/news-events/ics-advisories/icsa-26-197-02">CISA Alerts</source>
    </item>
    <item>
      <title>SALTO ProAccess Space</title>
      <link>https://infosecradar.com/stories/2026/07/16/salto-proaccess-space/</link>
      <description>SALTO ProAccess Space software versions prior to 6.13 are vulnerable to a privilege escalation attack (CVE-2026-11889) if the partition feature is enabled. Successful exploitation by an authenticated attacker could allow access to spaces outside their assigned partition. A CVSS score of 6.5 has been assigned to this vulnerability.</description>
      <guid isPermaLink="false">https://www.cisa.gov/news-events/ics-advisories/icsa-26-197-07</guid>
      <pubDate>Thu, 16 Jul 2026 12:00:00 +0000</pubDate>
      <source url="https://www.cisa.gov/news-events/ics-advisories/icsa-26-197-07">CISA Alerts</source>
    </item>
    <item>
      <title>NASA Core Flight System (cFS) Health &amp; Safety (HS) Application</title>
      <link>https://infosecradar.com/stories/2026/07/16/nasa-core-flight-system-cfs-health-safety-hs-application/</link>
      <description>A NULL Pointer Dereference vulnerability has been identified in NASA's Core Flight System (cFS) Health &amp; Safety (HS) Application. Successful exploitation could allow an unauthenticated attacker to cause a denial-of-service condition by crashing the application.</description>
      <guid isPermaLink="false">https://www.cisa.gov/news-events/ics-advisories/icsa-26-197-03</guid>
      <pubDate>Thu, 16 Jul 2026 12:00:00 +0000</pubDate>
      <source url="https://www.cisa.gov/news-events/ics-advisories/icsa-26-197-03">CISA Alerts</source>
    </item>
    <item>
      <title>CISA urges immediate SharePoint hardening as exploits mount</title>
      <link>https://infosecradar.com/stories/2026/07/16/cisa-urges-immediate-sharepoint-hardening-as-exploits-mount/</link>
      <description>CISA has issued an urgent warning and urged organizations to harden their Microsoft SharePoint deployments due to active exploitation of three vulnerabilities. These vulnerabilities, now listed on CISA's Known Exploited Vulnerabilities (KEV) catalog, pose a significant risk, especially for internet-facing instances, potentially allowing attackers initial access to enterprise environments.</description>
      <guid isPermaLink="false">https://www.csoonline.com/article/4197775/cisa-urges-immediate-sharepoint-hardening-as-exploits-mount.html</guid>
      <pubDate>Thu, 16 Jul 2026 12:06:13 +0000</pubDate>
      <source url="https://www.csoonline.com/article/4197775/cisa-urges-immediate-sharepoint-hardening-as-exploits-mount.html">CSO Online</source>
    </item>
    <item>
      <title>AI Data Centers Are Being Built Faster Than They Can Be Secured</title>
      <link>https://infosecradar.com/stories/2026/07/16/ai-data-centers-are-being-built-faster-than-they-can-be-secured/</link>
      <description>AI infrastructure presents novel security risks that are outpacing the development of traditional data center security measures.  The rapid expansion of AI data centers is creating a challenging environment for robust security implementation.</description>
      <guid isPermaLink="false">https://www.securityweek.com/ai-data-centers-are-being-built-faster-than-they-can-be-secured/</guid>
      <pubDate>Thu, 16 Jul 2026 13:00:00 +0000</pubDate>
      <source url="https://www.securityweek.com/ai-data-centers-are-being-built-faster-than-they-can-be-secured/">SecurityWeek</source>
    </item>
    <item>
      <title>n8n Token Exchange Flaw Could Let Attackers Log In as Users From Another Issuer</title>
      <link>https://infosecradar.com/stories/2026/07/16/n8n-token-exchange-flaw-could-let-attackers-log-in-as-users-from-another-issuer/</link>
      <description>The workflow automation platform n8n has a flaw in its token exchange mechanism. On enterprise instances configured with multiple token issuers, the platform incorrectly matches incoming JWTs to local users based solely on the 'sub' claim, ignoring the 'iss' claim. This allows a valid token from one issuer to log a user in as someone else if their 'sub' claim matches a user under a different issuer.</description>
      <guid isPermaLink="false">https://thehackernews.com/2026/07/n8n-token-exchange-flaw-could-let.html</guid>
      <pubDate>Thu, 16 Jul 2026 13:33:25 +0000</pubDate>
      <source url="https://thehackernews.com/2026/07/n8n-token-exchange-flaw-could-let.html">The Hacker News</source>
    </item>
    <item>
      <title>Legacy Systems, Real-World Impacts: The Reality of OT Security</title>
      <link>https://infosecradar.com/stories/2026/07/16/legacy-systems-real-world-impacts-the-reality-of-ot-security/</link>
      <description>The article discusses the significant challenges in disclosing vulnerabilities within Operational Technology (OT) environments due to the interconnected nature of legacy systems and the critical infrastructure they support. It highlights how safety concerns and the real-world impacts of potential disruptions complicate the vulnerability disclosure process for OT.</description>
      <guid isPermaLink="false">https://www.securityweek.com/legacy-systems-real-world-impacts-the-reality-of-ot-security/</guid>
      <pubDate>Thu, 16 Jul 2026 15:15:00 +0000</pubDate>
      <source url="https://www.securityweek.com/legacy-systems-real-world-impacts-the-reality-of-ot-security/">SecurityWeek</source>
    </item>
    <item>
      <title>Zoom patches account takeover hole</title>
      <link>https://infosecradar.com/stories/2026/07/16/zoom-patches-account-takeover-hole/</link>
      <description>Zoom has patched a critical security vulnerability that could allow an unauthenticated user to take over accounts remotely. The company also addressed three other less severe privilege escalation flaws across various Zoom products for Windows. These patches are crucial given Zoom's widespread use in both personal and business environments.</description>
      <guid isPermaLink="false">https://www.csoonline.com/article/4197962/zoom-patches-account-takeover-hole-2.html</guid>
      <pubDate>Thu, 16 Jul 2026 17:30:44 +0000</pubDate>
      <source url="https://www.csoonline.com/article/4197962/zoom-patches-account-takeover-hole-2.html">CSO Online</source>
    </item>
    <item>
      <title>Coca-Cola Suspends US Fairlife Production Due to Ransomware Attack</title>
      <link>https://infosecradar.com/stories/2026/07/17/coca-cola-suspends-us-fairlife-production-due-to-ransomware-attack/</link>
      <description>Coca-Cola has suspended production at its US Fairlife facilities due to a ransomware attack. The company stated that the incident has not compromised product quality or safety, nor has it impacted Fairlife's operations in Canada.</description>
      <guid isPermaLink="false">https://www.securityweek.com/coca-cola-suspends-us-fairlife-production-due-to-ransomware-attack/</guid>
      <pubDate>Fri, 17 Jul 2026 06:23:08 +0000</pubDate>
      <source url="https://www.securityweek.com/coca-cola-suspends-us-fairlife-production-due-to-ransomware-attack/">SecurityWeek</source>
    </item>
    <item>
      <title>CISA Adds Exploited SharePoint RCE Zero-Day CVE-2026-58644 to KEV</title>
      <link>https://infosecradar.com/stories/2026/07/17/cisa-adds-exploited-sharepoint-rce-zero-day-cve-2026-58644-to-kev/</link>
      <description>CISA has added a critical SharePoint Server remote code execution (RCE) vulnerability, CVE-2026-58644, to its Known Exploited Vulnerabilities (KEV) catalog. Federal agencies are mandated to apply the necessary patches by July 19, 2026.</description>
      <guid isPermaLink="false">https://thehackernews.com/2026/07/cisa-adds-exploited-sharepoint-rce-zero.html</guid>
      <pubDate>Fri, 17 Jul 2026 06:42:23 +0000</pubDate>
      <source url="https://thehackernews.com/2026/07/cisa-adds-exploited-sharepoint-rce-zero.html">The Hacker News</source>
    </item>
    <item>
      <title>CISA urges immediate action on actively exploited Fortinet flaws</title>
      <link>https://infosecradar.com/stories/2026/07/17/cisa-urges-immediate-action-on-actively-exploited-fortinet-flaws/</link>
      <description>CISA has issued a directive to government agencies, mandating the immediate patching of two critical vulnerabilities found in Fortinet's FortiSandbox threat detection platform. These vulnerabilities are reportedly being actively exploited, underscoring the urgency of the advisory.</description>
      <guid isPermaLink="false">https://www.bleepingcomputer.com/news/security/cisa-warns-feds-to-patch-exploited-fortinet-fortisandbox-flaws-by-sunday/</guid>
      <pubDate>Fri, 17 Jul 2026 07:03:33 +0000</pubDate>
      <source url="https://www.bleepingcomputer.com/news/security/cisa-warns-feds-to-patch-exploited-fortinet-fortisandbox-flaws-by-sunday/">Bleeping Computer</source>
    </item>
    <item>
      <title>Fresh SharePoint Vulnerability Exploited Soon After Disclosure</title>
      <link>https://infosecradar.com/stories/2026/07/17/fresh-sharepoint-vulnerability-exploited-soon-after-disclosure/</link>
      <description>A critical-severity security vulnerability in SharePoint has been disclosed and is already being exploited by attackers. The flaw allows authenticated remote attackers to execute arbitrary code on the server.</description>
      <guid isPermaLink="false">https://www.securityweek.com/fresh-sharepoint-vulnerability-exploited-soon-after-disclosure/</guid>
      <pubDate>Fri, 17 Jul 2026 07:15:59 +0000</pubDate>
      <source url="https://www.securityweek.com/fresh-sharepoint-vulnerability-exploited-soon-after-disclosure/">SecurityWeek</source>
    </item>
    <item>
      <title>ACR Stealer Uses ClickFix Lures to Steal Browser Tokens and Microsoft 365 Files</title>
      <link>https://infosecradar.com/stories/2026/07/17/acr-stealer-uses-clickfix-lures-to-steal-browser-tokens-and-microsoft-365-files/</link>
      <description>The ACR Stealer malware, active since 2024, is capable of exfiltrating sensitive data including browser passwords, active session tokens, PDFs, and Microsoft 365 files from synced cloud storage. It achieves initial access through user execution of malicious commands, as detailed by Microsoft's Defender Experts team.</description>
      <guid isPermaLink="false">https://thehackernews.com/2026/07/acr-stealer-uses-clickfix-lures-to.html</guid>
      <pubDate>Fri, 17 Jul 2026 08:56:39 +0000</pubDate>
      <source url="https://thehackernews.com/2026/07/acr-stealer-uses-clickfix-lures-to.html">The Hacker News</source>
    </item>
    <item>
      <title>The SaaS blind spot: Why security teams can’t get inside their own apps</title>
      <link>https://infosecradar.com/stories/2026/07/17/the-saas-blind-spot-why-security-teams-cant-get-inside-their-own-apps/</link>
      <description>Organizations are investing heavily in cloud security but face a "SaaS blind spot," where they lack visibility into administrative access and data within their numerous SaaS applications. This lack of insight stems from security tools not being designed to monitor these environments, leading to potential data exposure risks.</description>
      <guid isPermaLink="false">https://www.csoonline.com/article/4197923/the-saas-blind-spot-why-security-teams-cant-get-inside-their-own-apps.html</guid>
      <pubDate>Fri, 17 Jul 2026 09:00:00 +0000</pubDate>
      <source url="https://www.csoonline.com/article/4197923/the-saas-blind-spot-why-security-teams-cant-get-inside-their-own-apps.html">CSO Online</source>
    </item>
    <item>
      <title>Cyberattack Disrupts Operations of Japanese Frozen Food Giant Nichirei</title>
      <link>https://infosecradar.com/stories/2026/07/17/cyberattack-disrupts-operations-of-japanese-frozen-food-giant-nichirei/</link>
      <description>Japanese frozen food giant Nichirei experienced a cyberattack on July 13 that disrupted its operations. The company has begun the process of gradually restoring its systems.</description>
      <guid isPermaLink="false">https://www.securityweek.com/cyberattack-disrupts-operations-of-japanese-frozen-food-giant-nichirei/</guid>
      <pubDate>Fri, 17 Jul 2026 09:06:27 +0000</pubDate>
      <source url="https://www.securityweek.com/cyberattack-disrupts-operations-of-japanese-frozen-food-giant-nichirei/">SecurityWeek</source>
    </item>
    <item>
      <title>Windows Server 2022 reach end of mainstream support in 90 days</title>
      <link>https://infosecradar.com/stories/2026/07/17/windows-server-2022-reach-end-of-mainstream-support-in-90-days/</link>
      <description>Microsoft has announced that Windows Server 2022 will reach the end of its mainstream support in October 2026. Following this, it will transition to extended support, which includes continued security updates for an additional five years. This change impacts how users will receive support and updates for the operating system.</description>
      <guid isPermaLink="false">https://www.bleepingcomputer.com/news/microsoft/windows-server-2022-reach-end-of-mainstream-support-in-90-days/</guid>
      <pubDate>Fri, 17 Jul 2026 09:10:15 +0000</pubDate>
      <source url="https://www.bleepingcomputer.com/news/microsoft/windows-server-2022-reach-end-of-mainstream-support-in-90-days/">Bleeping Computer</source>
    </item>
    <item>
      <title>The Race to Field Military Autonomy Is On, Can Trusted Information Infrastructure Keep Pace?</title>
      <link>https://infosecradar.com/stories/2026/07/17/the-race-to-field-military-autonomy-is-on-can-trusted-information-infrastructure/</link>
      <description>Military forces are under pressure to deploy autonomous capabilities rapidly, driven by investment and new defense strategies in the US, UK, and NATO. This race to accelerate acquisition necessitates a focus on trusted information infrastructure to keep pace with these advancements.</description>
      <guid isPermaLink="false">https://thehackernews.com/2026/07/the-race-to-field-military-autonomy-is.html</guid>
      <pubDate>Fri, 17 Jul 2026 11:30:00 +0000</pubDate>
      <source url="https://thehackernews.com/2026/07/the-race-to-field-military-autonomy-is.html">The Hacker News</source>
    </item>
  </channel>
</rss>
