A critical path traversal vulnerability in a widely used enterprise display management server has been added to the federal list […]
CISA adds Samsung MagicINFO path traversal flaw to KEV following active abuse Read More »
A critical pre-authentication remote code execution vulnerability in a popular AI orchestration framework is now being exploited in the wild.
CISA adds critical Marimo AI notebook pre-auth RCE to KEV catalog Read More »
A functional proof-of-concept exploit has been published for a critical command execution vulnerability in your automated threat analysis infrastructure. This
Public PoC exploit released for critical Fortinet FortiSandbox RCE vulnerability Read More »
A large-scale automated campaign is currently exploiting a critical pre-authentication RCE in Next.js applications to siphon credentials from cloud-native environments.
React2Shell campaign achieves industrial scale with NEXUS Listener command center Read More »
Attackers are industrializing the exploitation of a critical privilege escalation flaw in the Windows security subsystem to gain SYSTEM-level access
Microsoft Defender BlueHammer privilege escalation exploitation enters high-volume phase Read More »
A new ransomware threat actor has emerged, specifically targeting Managed Service Providers to deliver encryption payloads to dozens of downstream
New The Gentlemen ransomware group targets MSPs via Bomgar RMM exploitation Read More »
A critical pre-authentication remote code execution vulnerability in a popular AI orchestration framework is now being exploited in the wild.
CISA adds critical Marimo AI notebook pre-auth RCE to KEV catalog Read More »
Attackers are industrializing the exploitation of a critical privilege escalation flaw in the Windows security subsystem to gain SYSTEM-level access
Microsoft Defender BlueHammer privilege escalation exploitation enters high-volume phase Read More »
State-sponsored threat actors have scaled their reconnaissance operations by weaponizing massive botnets to identify and exploit unpatched management interfaces at
China-backed hackers industrialize botnets for mass enterprise perimeter scanning Read More »
A previously undocumented state-backed threat actor is leveraging legitimate enterprise SaaS platforms to hide its command-and-control traffic. This strategy allows
China-linked GopherWhisper APT abuses Outlook and Slack for stealthy C2 comms Read More »
