Articles

432 articles

VulnerabilitiesMay 7, 2026

Ivanti EPMM Zero-Day CVE-2026-6973 Exploited in Limited Attacks

Ivanti warns CVE-2026-6973, a high-severity RCE in EPMM 12.8.0.0 and earlier, is under limited zero-day exploitation. Patches available; 850+ EPMM instances exposed online.

CVE-2026-6973CVE-2026-5786CVE-2026-5787+4

4 min read

PCPJack Worm Steals Cloud Credentials, Wipes TeamPCP Infections

HIGH

MalwareMay 7, 2026

PCPJack Worm Steals Cloud Credentials, Wipes TeamPCP Infections

SentinelLabs uncovers PCPJack, a credential-stealing worm targeting Docker, Kubernetes, Redis, and MongoDB that actively removes rival TeamPCP access from compromised cloud...

CVE-2025-29927CVE-2025-55182CVE-2026-1357+2

4 min readPCPJack

ZiChatBot Malware Spreads via PyPI Packages Using Zulip C2

HIGH

MalwareMay 7, 2026

ZiChatBot Malware Spreads via PyPI Packages Using Zulip C2

Three PyPI packages deliver ZiChatBot malware on Windows and Linux using Zulip chat APIs for stealthy C2 — Kaspersky identifies 12+ victim organizations globally.

4 min readZiChatBot

APT37 Targets Ethnic Koreans in China With Android BirdCall Malware

HIGH

MalwareMay 6, 2026

APT37 Targets Ethnic Koreans in China With Android BirdCall Malware

ESET says APT37 compromised Sqgame card game platform to deliver BirdCall backdoor to Android devices, stealing SMS, call logs, and private keys from ethnic Koreans in Yanbian.

4 min readAPT37

Cisco DoS Flaw CVE-2026-20188 Requires Manual Reboot to Recover

HIGH

VulnerabilitiesMay 6, 2026

Cisco DoS Flaw CVE-2026-20188 Requires Manual Reboot to Recover

CVE-2026-20188: Unauthenticated attackers can crash Cisco Crosswork Network Controller and NSO via low-complexity exploit. No patch for older releases; manual reboot required.

CVE-2026-20188CVE-2025-20362CVE-2025-20333+3

3 min read

MOVEit Automation CVE-2026-5174 Raises Patch Urgency After Cl0p History

HIGH

VulnerabilitiesMay 6, 2026

MOVEit Automation CVE-2026-5174 Raises Patch Urgency After Cl0p History

CVE-2026-5174 is a high-severity MOVEit Automation privilege-escalation flaw. No APT or Cl0p exploitation is confirmed, but the 2023 MOVEit compromise history makes rapid patching urgent.

CVE-2026-5174CVE-2026-4670

5 min read

Palo Alto PAN-OS CVE-2026-0300 Attacked via Captive Portal

CRITICAL

VulnerabilitiesMay 6, 2026

Palo Alto PAN-OS CVE-2026-0300 Attacked via Captive Portal

CVE-2026-0300 is a critical PAN-OS buffer overflow in the User-ID Authentication Portal. Fixed builds are upcoming, so disable or restrict the portal immediately.

CVE-2026-0300

4 min read

USB Drop Attack That Defined Social Engineering Turns 20

INFORMATIONAL

Industry NewsMay 6, 2026

USB Drop Attack That Defined Social Engineering Turns 20

Steve Stasiukonis's 2006 USB drop test at a credit union — 15 of 20 drives plugged in by employees — became the blueprint for physical social engineering assessments still used…

2 min read

CRITICAL

VulnerabilitiesMay 5, 2026

Apache Patches Critical HTTP/2 Double-Free Flaw CVE-2026-23918

Apache HTTP Server CVE-2026-23918 (CVSS 8.8) enables DoS and potential RCE via double-free in HTTP/2 handling. Affects all mod_http2 users. Patch now.

CloudZ RAT Hijacks Microsoft Phone Link to Steal SMS, OTPs

Cisco Talos: CloudZ RAT's new Pheno plugin abuses Windows Phone Link to read SMS and OTPs from local SQLite database.

2 min readCloudZ

CRITICAL

VulnerabilitiesMay 5, 2026

Critical Ollama Bug CVE-2026-7482 Exposes 300K Deployments

Cyera discloses CVE-2026-7482 (CVSS 9.3) — a heap out-of-bounds read in Ollama's GGUF model loader that leaks prompts, API keys, and secrets via three unauthenticated API calls.

CVE-2026-7482

2 min read

EOL Open Source Blind Spots Hide 400K+ Unflagged CVEs

HIGH

Industry NewsMay 5, 2026

EOL Open Source Blind Spots Hide 400K+ Unflagged CVEs

HeroDevs analysis: 5.4M EOL package versions across npm, PyPI, Maven evade SCA scanners; ~80% of CVEs on supported versions also affect unlisted EOL releases. Free scan offered.

CVE-2026-22732

4 min read

← PrevPage 14 of 36Next →