Collaborate Disseminate
Researchers at the University of Toronto, the Vector Institute, and the University of Cambridge have built and tested a proof-of-concept AI-driven worm that does not operate on a fixed list of exploits. Instead, it analyzes each target it encounters, r… Continue reading Autonomous AI-driven worm can reason its way through corporate networks
Google has announced the June 2026 Android security updates, which fix a bucketload of vulnerabilities, including a high-severity vulnerability (CVE-2025-48595) in the Android Framework that “may be under limited, targeted exploitation.” Ab… Continue reading Google fixes actively exploited Android vulnerability (CVE-2025-48595)
Unknown attackers have compromised 30+ Red Hat Cloud Services npm packages with malware that goes after credentials stored in developers’ build environment. What the malware stole and how it can spread further The compromised packages were publis… Continue reading Red Hat npm packages compromised in new Mini Shai-Hulud malware wave
CVE-2026-41089, a critical Windows Netlogon RCE flaw that allows remote code execution, is now actively exploited in the wild, the Centre for Cybersecurity Belgium (CCB) warned on Friday. About CVE-2026-41089 CVE-2026-41089 is a stack-based buffer over… Continue reading Windows Netlogon RCE exploited, domain controllers at risk (CVE-2026-41089)
A US federal watchdog has outlined how the National Institute of Standards and Technology (NIST) failed to effectively manage the growing backlog of unprocessed cybersecurity vulnerabilities in the National Vulnerability Database (NVD). How the NVD cri… Continue reading How NIST fumbled management of the National Vulnerability Database
Authentication bypass vulnerabilities (CVE-2026-0257) in Palo Alto Networks’ firewalls that the company disclosed on May 13 have been targeted in “limited exploit attempts”. “Across multiple customers, Rapid7 observed successful… Continue reading Hackers are exploiting Palo Alto GlobalProtect VPN authentication bypass (CVE-2026-0257)
The Dutch National Police and the country’s National Cyber Security Center (NCSC) have taken offline 200 servers controlling a botnet of 17 million devices, the law enforcement agency announced on Thursday. The investigation was launched after th… Continue reading Dutch police disrupts botnet composed of 17 million devices
Attackers are delivering a broad-spectrum infostealer to enterprise computers by exploiting a known vulnerability (CVE-2026-35616) in FortiClient Enterprise Management Server (EMS). “The [malicious] payload was presented as a Fortinet endpoint up… Continue reading New infostealer reaches enterprise devices through FortiClient EMS vulnerability
A newly documented phishing campaign is targeting professionals with fake LinkedIn business emails and abusing a trusted service operated by Adobe. The attack from the victim’s perspective The attack starts with an email that looks, at first glan… Continue reading LinkedIn-themed phishing abuses Adobe’s A/B testing platform
A relative directory path traversal vulnerability (CVE-2026-34926) in Trend Micro’s Apex One platform has been exploited in zero-day attacks, the company confirmed. “TrendAI has observed at least one attempt to exploit this vulnerability in… Continue reading Actively exploited Trend Micro Apex One flaw gets CISA warning (CVE-2026-34926)