A critical pre-authentication remote code execution vulnerability in a popular AI orchestration framework is now being exploited in the wild. […]
CISA adds critical Marimo AI notebook pre-auth RCE to KEV catalog Read More »
Attackers are industrializing the exploitation of a critical privilege escalation flaw in the Windows security subsystem to gain SYSTEM-level access
Microsoft Defender BlueHammer privilege escalation exploitation enters high-volume phase Read More »
State-sponsored threat actors have scaled their reconnaissance operations by weaponizing massive botnets to identify and exploit unpatched management interfaces at
China-backed hackers industrialize botnets for mass enterprise perimeter scanning Read More »
A previously undocumented state-backed threat actor is leveraging legitimate enterprise SaaS platforms to hide its command-and-control traffic. This strategy allows
China-linked GopherWhisper APT abuses Outlook and Slack for stealthy C2 comms Read More »
A critical privilege escalation flaw in the Windows security subsystem has been added to the federal list of known exploited
CISA adds Microsoft Defender BlueHammer privilege escalation flaw to KEV catalog Read More »
A critical data persistence vulnerability in mobile notification services has been addressed following reports that it was being used by
Apple patches notification service flaw used to recover deleted Signal messages Read More »
Ongoing analysis of a major supply chain intrusion has revealed additional compromised customer accounts following the abuse of a third-party
Vercel confirms additional compromised accounts in Context.ai-linked breach Read More »
A maximum-severity privilege escalation vulnerability in a core web development framework allows attackers to bypass security boundaries and execute code
Microsoft releases emergency fix for critical ASP.NET Core privilege escalation flaw Read More »
A critical vulnerability in a popular web server management interface is being weaponized to hijack enterprise web traffic and steal
Nginx-UI management platform under active exploitation for traffic hijacking Read More »
A sophisticated supply chain attack targeting the Node Package Manager (npm) ecosystem is leveraging compromised developer tokens to distribute malicious
New npm supply chain campaign weaponizes compromised developer accounts Read More »
