State-sponsored threat actors have scaled their reconnaissance operations by weaponizing massive botnets to identify and exploit unpatched management interfaces at […]
China-backed hackers industrialize botnets for mass enterprise perimeter scanning Read More »
Attackers are industrializing the exploitation of a critical privilege escalation flaw in the Windows security subsystem to gain SYSTEM-level access
Microsoft Defender BlueHammer privilege escalation exploitation enters high-volume phase Read More »
A critical pre-authentication remote code execution vulnerability in a popular AI orchestration framework is now being exploited in the wild.
CISA adds critical Marimo AI notebook pre-auth RCE to KEV catalog Read More »
A critical privilege escalation flaw in the Windows security subsystem has been added to the federal list of known exploited
CISA adds Microsoft Defender BlueHammer privilege escalation flaw to KEV catalog Read More »
A previously undocumented state-backed threat actor is leveraging legitimate enterprise SaaS platforms to hide its command-and-control traffic. This strategy allows
China-linked GopherWhisper APT abuses Outlook and Slack for stealthy C2 comms Read More »
Ongoing analysis of a major supply chain intrusion has revealed additional compromised customer accounts following the abuse of a third-party
Vercel confirms additional compromised accounts in Context.ai-linked breach Read More »
A critical data persistence vulnerability in mobile notification services has been addressed following reports that it was being used by
Apple patches notification service flaw used to recover deleted Signal messages Read More »
Two critical vulnerabilities in the management plane of modern software-defined networking infrastructure are being actively exploited in the wild. These
CISA adds critical Cisco Catalyst SD-WAN Manager flaws to KEV catalog Read More »
A sophisticated supply chain attack targeting the Node Package Manager (npm) ecosystem is leveraging compromised developer tokens to distribute malicious
New npm supply chain campaign weaponizes compromised developer accounts Read More »
A critical vulnerability in a popular web server management interface is being weaponized to hijack enterprise web traffic and steal
Nginx-UI management platform under active exploitation for traffic hijacking Read More »
