Showing 141 - 150 of 177 historical articles
2026-07-04 - CISA KEV Alert: Exploit Deadline Arrives for Microsoft SharePoint Server RCE CVE-2026-45659
CISA KEV Alert: Exploit Deadline Arrives for Microsoft SharePoint Server RCE CVE-2026-45659 Executive Summary The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning to federal civilian agencies and enterprise security te...
Data Extortion: U.S. Government Entity Paid Kairos Group $1 Million to Avoid Data Leak
Data Extortion: U.S. Government Entity Paid Kairos Group $1 Million to Avoid Data Leak Executive Summary A U.S. municipal government entity recently paid $1 million to a cybercriminal group to prevent the leak of stolen corporate and citizen records. Disclose...
Exploit Warning: Public PoC Released for Microsoft Exchange SSRF Vulnerability CVE-2026-45504
Exploit Warning: Public PoC Released for Microsoft Exchange SSRF Vulnerability CVE-2026-45504 Executive Summary A high-severity Server-Side Request Forgery (SSRF) vulnerability in on-premises Microsoft Exchange Server has been publicly disclosed alongside a f...
Supply-Chain Defeated: FBI Disrupts TeamPCP Developer-Tool Credential Harvesting Ring
Supply-Chain Defeated: FBI Disrupts TeamPCP Developer-Tool Credential Harvesting Ring Executive Summary The FBI, in coordination with international law enforcement partners, has announced a successful joint operation disrupting the infrastructure of a promine...
2026-07-02 - State-Sponsored Threat: China-Linked APT Clusters Target Southeast Asian Critical Infrastructure
State-Sponsored Threat: China-Linked APT Clusters Target Southeast Asian Critical Infrastructure Executive Summary A highly coordinated, state-sponsored cyber espionage campaign has targeted critical national infrastructure across Southeast Asia. Security res...
2026-07-02 - Cybersecurity Warning: Fake GitHub PoC Repos Distribute New ChocoPoC RAT
Cybersecurity Warning: Fake GitHub PoC Repos Distribute New ChocoPoC RAT Executive Summary Security researchers and bug hunters have increasingly become the targets of malicious social engineering campaigns. A recent joint investigation by YesWeHack and Sekoi...
2026-07-02 - CISA Sounds Alarm: SharePoint Server RCE CVE-2026-45659 Added to KEV Catalog
CISA Sounds Alarm: SharePoint Server RCE CVE-2026-45659 Added to KEV Catalog Executive Summary The Cybersecurity and Infrastructure Security Agency (CISA) has added a high-severity remote code execution (RCE) vulnerability in Microsoft SharePoint Server to it...
2026-07-02 - Apple Speeds Up Security Updates to Counter AI-Driven Exploit Acceleration
Apple Speeds Up Security Updates to Counter AI-Driven Exploit Acceleration Executive Summary In a major policy shift, Apple has announced that it will begin releasing critical security updates earlier than planned, departing from its long-standing practice of...
2026-07-02 - Critical Progress Kemp LoadMaster Pre-Auth RCE Under Active Exploitation (CVE-2026-8037)
Edge Under Siege: Progress Kemp LoadMaster Pre-Auth RCE (CVE-2026-8037) Facing Active Exploitation Executive Summary A critical vulnerability in the Progress Kemp LoadMaster load balancer is facing active in-the-wild exploitation attempts. Tracked as CVE-2026...
2026-07-02 - 81 Million Login Attempts: Automated Azure CLI Password Spray Bypasses MFA
81 Million Login Attempts: Automated Azure CLI Password Spray Bypasses MFA Executive Summary Cybersecurity researchers have sounded the alarm on an exceptionally aggressive, automated password-spraying campaign targeting Microsoft 365 environments. Between Ju...