Collaborate Disseminate
Hackers published 96 malicious package versions, injected with a credential-stealing worm similar to Mini Shai-Hulud.
The post Supply Chain Attack Hits 32 Red Hat NPM Packages appeared first on SecurityWeek.
Continue reading Supply Chain Attack Hits 32 Red Hat NPM Packages
Oracle’s monthly Critical Security Patch Update (CSPU) rollouts are meant to deliver critical fixes faster.
The post Oracle’s First Monthly Patches Resolve 77 Vulnerabilities appeared first on SecurityWeek.
Continue reading Oracle’s First Monthly Patches Resolve 77 Vulnerabilities
The security defect (CVE-2026-8732) allows unauthenticated attackers to create administrative accounts on the affected installations.
The post WP Maps Pro Vulnerability Exploited to Take Over WordPress Sites appeared first on SecurityWeek.
Continue reading WP Maps Pro Vulnerability Exploited to Take Over WordPress Sites
Dutch authorities seized command-and-control servers tied to a botnet of infected computers, smartphones, and tablets that was allegedly used to power a residential proxy network and facilitate cybercrime.
The post Dutch Police Dismantle Massive 17-Mil… Continue reading Dutch Police Dismantle Massive 17-Million-Device Botnet
Organizations are advised to patch CVE-2026-41089 as soon as possible, given its severity, the potential ongoing exploitation.
The post Critical Windows Netlogon Vulnerability in Attackers’ Crosshairs appeared first on SecurityWeek.
Continue reading Critical Windows Netlogon Vulnerability in Attackers’ Crosshairs
Proof-of-concept (PoC) exploit code has been released for the CIFSwitch flaw, which allows low-privileged users to escalate to root on vulnerable Linux systems.
The post 19-Year-Old Linux Kernel Vulnerability Exposes Systems to Root Access appeared fir… Continue reading 19-Year-Old Linux Kernel Vulnerability Exposes Systems to Root Access
Hackers began exploiting CVE-2026-0257, an authentication bypass in Palo Alto Networks PAN-OS, four days after public disclosure.
The post Recent Palo Alto Networks Vulnerability Exploited for Weeks appeared first on SecurityWeek.
Continue reading Recent Palo Alto Networks Vulnerability Exploited for Weeks
The one-click vulnerability allows attackers to execute arbitrary code on self-hosted Flowise servers by tricking users into importing a malicious chatflow.
The post Exploit Code Published for Critical Flowise RCE Vulnerability appeared first on Securi… Continue reading Exploit Code Published for Critical Flowise RCE Vulnerability
The notorious ShinyHunters extortion group leaked over 42 million records allegedly stolen from Charter in April.
The post Charter Communications Data Breach Could Impact Nearly 5 Million appeared first on SecurityWeek.
Continue reading Charter Communications Data Breach Could Impact Nearly 5 Million
MokN’s platform deploys realistic decoy access points to lure attackers into revealing compromised credentials, enabling organizations to respond before abuse occurs.
The post MokN Raises $15 Million for “Phish-Back” Platform appeared first… Continue reading MokN Raises $15 Million for “Phish-Back” Platform