Blogs - Code Defence

Critical Zimbra XSS flaw added to CISA KEV following active attacks. 🐚

Your corporate email is being targeted through malicious CSS @import directives. 🐚 CVE-2025-66376 · Severity 7.2 · Active Stored XSS […]

Critical Zimbra XSS flaw added to CISA KEV following active attacks. 🐚 Read More »

CISA orders federal agencies to patch critical SharePoint RCE flaw today. 🛑

Leave a Comment / News / Code Defence

A critical unauthenticated remote code execution flaw in SharePoint is being weaponized in the wild. 🛑 CVE-2026-20963 · Severity 9.8

CISA orders federal agencies to patch critical SharePoint RCE flaw today. 🛑 Read More »

DarkSword exploit kit targets millions of iPhones for full device takeover. 📱

Leave a Comment / News / Code Defence

A new Russian-linked exploit kit is silently compromising iPhones via infected websites. 📱 DarkSword · Targets iOS 18.4 to 18.7

DarkSword exploit kit targets millions of iPhones for full device takeover. 📱 Read More »

Interlock ransomware exploited Cisco FMC zero-day for 36 days before disclosure. 🛡️

Leave a Comment / News / Code Defence

The Interlock ransomware group had a one-month head start on your defense team. 🛡️ CVE-2026-20131 · Severity 10.0 · Critical

Interlock ransomware exploited Cisco FMC zero-day for 36 days before disclosure. 🛡️ Read More »

CISA flags actively exploited Wing FTP Server vulnerability. 🐚

Leave a Comment / News / Code Defence

Your internal file transfer configurations are being leaked to unauthenticated scanners. 🐚 CVE-2025-47813 · Severity Medium · Active Exploitation in

CISA flags actively exploited Wing FTP Server vulnerability. 🐚 Read More »

Veeam patches seven critical RCE flaws in Backup and Replication. 💾

Leave a Comment / News / Code Defence

Veeam has released urgent security updates for its Backup and Replication software to address seven critical flaws. 💾 CVE-2026-21666 ·

Veeam patches seven critical RCE flaws in Backup and Replication. 💾 Read More »

Critical pre-auth OpenSSH flaw exposes Linux servers to root compromise. 🛡️

Leave a Comment / News / Code Defence

A critical pre-authentication vulnerability has been identified in OpenSSH impacting core Linux distributions. 🛡️ CVE-2026-3497 · Severity 9.8 · Unauthenticated

Critical pre-auth OpenSSH flaw exposes Linux servers to root compromise. 🛡️ Read More »

Google rushes emergency Chrome update for two zero-days under active attack. 🌐

Leave a Comment / News / Code Defence

Google has issued an emergency Chrome update to address two zero-day vulnerabilities already being exploited in the wild. 🌐 CVE-2026-3909

Google rushes emergency Chrome update for two zero-days under active attack. 🌐 Read More »

Google testing Android 17 feature to block Accessibility API abuse by malware. 📱

Leave a Comment / News / Code Defence

Google is closing a long-standing loophole used by mobile credential stealers. 📱 Security Hardening · Android 17 Advanced Protection Mode

Google testing Android 17 feature to block Accessibility API abuse by malware. 📱 Read More »

LeakNet ransomware adopts ClickFix and Deno runtime for stealthy attacks. 🐚

Leave a Comment / News / Code Defence

Attackers are bypassing browser security by tricking users into running system-level commands. 🐚 Threat Alert · LeakNet ransomware gang using

LeakNet ransomware adopts ClickFix and Deno runtime for stealthy attacks. 🐚 Read More »

Latest Cyber Security News