Exim Vulnerability Allows Remote Crash via Crafted DNS Responses
The flaws enable an unauthenticated attacker to crash Exim servers remotely by sending specially crafted DNS responses, leading to denial of service.
The Latest
SEO Poisoning Campaign Delivers EtherRAT Malware Through Fake GitHub Repos
The EtherRAT campaign leverages poisoned search results and counterfeit GitHub repositories to trick enterprise administrators into installing a remote access…
New Integration Lets Claude AI Query Thousands of Vulnerability Records Instantly
The CVE MCP Server provides 27 tools across 21 APIs, allowing Claude to directly query vulnerability databases and correlate findings…
Mass Exploitation of cPanel Flaw Affects Tens of Thousands of Servers
The publicly available cPanelSniper exploit has already been used to breach over 44,000 servers, making immediate patching critical for all…
Attackers Exploit cPanel Flaw to Target High Value Government Servers
The actively exploited cPanel vulnerability gives attackers root level access to government web servers, allowing for data theft and network…
Critical cPanel Authentication Flaw Under Active Attack with Working Exploit
PoC code for the cPanel authentication bypass is now circulating, enabling attackers to take full control of vulnerable web hosting…
New Public Beta Tool Lets Enterprises Gauge AI Safety in Real Time
Claude Security provides enterprise teams with automated testing for prompt injection and data leakage risks during AI deployment.
Adversary in the Middle Phishing Campaign Targets Major Cloud Platforms
The AiTM phishing method captures both passwords and session cookies in real time, allowing attackers to bypass multi factor authentication…
Legitimate Services Used as Bait in Facebook Credential Theft Operation
The campaign uses Google AppSheet and Netlify to host convincing fake login pages while Telegram silently forwards captured credentials to…
Phishing Campaigns Use CAPTCHA and Fake Error Prompts to Snatch User Logins
The ClickFix technique tricks users into running a malicious PowerShell command disguised as a browser error repair, enabling attackers to…
Fake CAPTCHA Pages Used in Multi Stage Credential Theft Attack
The attack relies on social engineering to trick users into copying and running a malicious PowerShell payload disguised as a browser verification step.
Windows Shell Vulnerability Under Active Attack: Urgent Patching Required
Microsoft has confirmed active exploitation of a Windows Shell privilege escalation bug, urging all organizations to apply the April 2026…
Supply Chain Attack Targets Checkmarx Users Through Malicious Docker Images and Extensions
The attack leverages both malicious Docker images on Docker Hub and fake VS Code extensions, requiring developers to verify all…
Critical LMDeploy Vulnerability Exploited Hours After Public Disclosure
Security researchers documented proof-of-concept exploits being deployed against unpatched LMDeploy servers within hours of the vulnerability announcement.
Spotlight
New Linux Malware Abuses Microsoft Graph API for Covert Operations in South Asia
GoGra uses OAuth tokens to blend into normal Office 365 traffic, making detection difficult for signature based security tools.
Persistent Backdoor Compromises Cisco Firepower Appliances at a Federal Agency
FIRESTARTER backdoor embeds itself in the firmware of Cisco Firepower appliances, allowing it to survive OS reinstalls and standard security patches.
EtherRAT Campaign Exploits Fake GitHub Repos to Distribute Malware Disguised as Admin Tools
The EtherRAT trojan is being distributed through fraudulent GitHub repositories that convincingly mimic legitimate system administration tools to trick IT professionals into downloading the malware.
Severe cPanel Authentication Bypass Found Exploited in Web Hosting Environments
Exploitation attempts have already been detected in the wild, prompting an urgent call for server administrators to apply security patches immediately.
Features
Silk Typhoon Operator Extradited for Hacking COVID Research Institutions
The Silk Typhoon hacker allegedly targeted over a dozen universities and vaccine developers in a multi year espionage campaign.
Checkmarx Breach Exposes GitHub Repository Data on Dark Web
The attacker exfiltrated source code and proprietary information from multiple GitHub repositories, prompting an ongoing investigation with law enforcement.
Malicious npm Package Targets Bitwarden Users in Multi Stage Supply Chain Attack
The attack leverages a trojanized npm package to steal credentials from developer environments connected to Bitwarden CLI workflows.
Apple Closes iOS Data Recovery Hole That Exposed Signal Messages
The iOS flaw allowed forensic extraction of supposedly deleted conversations from Signal and other encrypted apps, undermining user privacy controls.
Canonical Services Silenced by Wave of Flood Traffic
The DDoS attack temporarily blocked access to Ubuntu's website and other Canonical web properties, disrupting updates and support for users…
Trellix Repository Compromised in Source Code Theft Incident
The intruder accessed a Trellix source code repository, potentially exposing proprietary code used in the company's cybersecurity products.
