Enterprise Security Archives • Daily CyberSecurity

Collibra Platform Agent Flaws Allow Remote Code Execution Without Authentication Collibra Platform Agent flaw Zip Slip vulnerability during extraction

Collibra Platform Agent flaw Zip Slip vulnerability during extraction

Collibra Platform Agent Flaws Allow Remote Code Execution Without Authentication

Do Son June 8, 2026

Privileged REST Endpoints and Zip Slip Vulnerability Threaten Data Clusters A threat notice has been issued for...

The Great Convergence: When Traditional Malware Becomes a Crypto-Hunting Machine Crypto Drainer Convergence Blockchain Infrastructure Attack

Crypto Drainer Convergence Blockchain Infrastructure Attack

The Great Convergence: When Traditional Malware Becomes a Crypto-Hunting Machine

Do Son April 30, 2026

A new report from LevelBlue SpiderLabs’ Cyber Threat Intelligence Team details a “progressive convergence” where traditional malware...

Cisco SD-WAN Vulnerability CVE-2026-20133 FortiGate Compromise Ivanti EPMM Zero-Day CVE-2026-1281 SmarterMail Vulnerability Storm-2603 WatchGuard Zero-Day, IKEv2 Out-of-Bounds Write Cisco Zero-Day, UAT-9686 Chinese APT FortiWeb RCE Exploitation CVE-2025-58034 VMware Zero-Day, Privilege Escalation Sitecore, remote code execution CVE-2025-53690 Windows CLFS, Privilege Escalation CVE-2024-47575 & CVE-2024-11120 CVE-2025-24983 vulnerability

In the Wild: Information Disclosure (CVE-2026-20133) Exploited in Cisco SD-WAN Manager

Do Son April 23, 2026

The networking giant Cisco has issued an urgent warning to enterprise administrators. In April 2026, the Cisco...

Cisco Talos Unveils “Living-off-the-Land” Tactics Threatening macOS macOS LOTL Techniques Enterprise Mac Security

Cisco Talos Unveils “Living-off-the-Land” Tactics Threatening macOS

Do Son April 23, 2026

As macOS adoption reaches record highs in the enterprise—now serving as the primary workstation for over 45...

Critical 9.9 Alert: SAP’s April 2026 Patch Day Targets Major SQL Injection SAP security patch day critical security vulnerabilities SAP SQL Injection April 2026 Patch Day SAP Security, Critical Vulnerabilities Security Patch Day CVE-2025-42944

SAP security patch day critical security vulnerabilities SAP SQL Injection April 2026 Patch Day SAP Security, Critical Vulnerabilities Security Patch Day CVE-2025-42944

Critical 9.9 Alert: SAP’s April 2026 Patch Day Targets Major SQL Injection

Do Son April 14, 2026

SAP has marked its latest monthly security update with the release of 19 new security notes and...

One-Touch Security: Google Expands End-to-End Encryption to Gmail on Android and iOS Gmail Mobile E2EE Gmail POP3 support end 2026, Gmailify deprecated January 2026 Gmail spam filter, political bias

Gmail Mobile E2EE Gmail POP3 support end 2026, Gmailify deprecated January 2026 Gmail spam filter, political bias

One-Touch Security: Google Expands End-to-End Encryption to Gmail on Android and iOS

Do Son April 13, 2026

Two years after its debut on desktop platforms, Google has announced the expansion of Gmail’s “End-to-End Encryption”...

Weaver E-cology RCE CVE-2026-22679 CVE-2026-20127 Cisco SD-WAN Exploitation AI-Driven Cyberattack ARXON Malware React Server Components Vulnerability CVE-2025-55182 FortiWeb Auth Bypass, Unauthenticated Admin Takeover RayInitiator Bootkit, LINE VIPER CVE-2025-59689 Department of the Treasury cybersecurity - CVE-2025-0108 PoC CVE-2025-31103 Dior Data Breach SK Telecom data breach, long-term intrusion

Critical Zero-Day: Unauthenticated RCE Exploited in Weaver E-cology 10.0

Do Son April 8, 2026

A critical security vulnerability, tracked as CVE-2026-22679, has been identified in Weaver (Fanwei) E-cology 10.0, one of...

Under Active Attack: Critical 9.1 CVSS FortiClient EMS Flaw Exploited in the Wild Knowledge Deliver RCE vulnerability FortiClient EMS Vulnerability CVE-2026-35616 Cisco SD-WAN Vulnerability CVE-2026-20122 PCPcat, Next.js RCE Salesloft breach, Salesforce CRM WIREFIRE web shell

Knowledge Deliver RCE vulnerability FortiClient EMS Vulnerability CVE-2026-35616 Cisco SD-WAN Vulnerability CVE-2026-20122 PCPcat, Next.js RCE Salesloft breach, Salesforce CRM WIREFIRE web shell

Under Active Attack: Critical 9.1 CVSS FortiClient EMS Flaw Exploited in the Wild

Do Son April 4, 2026

Security teams are on high alert as Fortinet confirms that a critical vulnerability in its FortiClient EMS...

Critical Alert: SAP’s Latest Security Update Fixes 9.8 CVSS RCE and Deserialization Flaws SAP Security Patches CVE-2026-27685 SAP Security Update CVE-2026-0488 CVE-2024-47578 - CVE-2025-0070 and CVE-2025-0066

SAP Security Patches CVE-2026-27685 SAP Security Update CVE-2026-0488 CVE-2024-47578 - CVE-2025-0070 and CVE-2025-0066

Critical Alert: SAP’s Latest Security Update Fixes 9.8 CVSS RCE and Deserialization Flaws

Do Son March 10, 2026

Today, 2026, SAP released its monthly security patch update, addressing 15 new security notes across its product...

Urgent Patch Required: HPE AutoPass License Server Hits Maximum Severity Risk HPE AutoPass Vulnerability, CVE-2026-23600 CVE-2024-22442 - HPE vulnerability HPE Storage Vulnerability CVE-2026-23594

Urgent Patch Required: HPE AutoPass License Server Hits Maximum Severity Risk

Do Son March 3, 2026

Hewlett Packard Enterprise (HPE) has issued an urgent security bulletin regarding a critical vulnerability in its AutoPass...

Beyond the Router: How the Zerobotv9 Botnet is Hijacking Enterprise Automation Zerobotv9 Botnet n8n Vulnerability VMware ESXi Ransomware

Beyond the Router: How the Zerobotv9 Botnet is Hijacking Enterprise Automation

Do Son March 3, 2026

According to a recent investigation by the Akamai Security Intelligence and Response Team (SIRT), a notorious malware...

Hackers Use Jira Notifications to Bypass Spam Filters Layoff Phishing Scam Remcos RAT Malware Aruba Phishing, Phishing-as-a-Service PyPI, phishing CVE-2024-25608 PyPI Phishing, Credential Theft

Layoff Phishing Scam Remcos RAT Malware Aruba Phishing, Phishing-as-a-Service PyPI, phishing CVE-2024-25608 PyPI Phishing, Credential Theft

Hackers Use Jira Notifications to Bypass Spam Filters

Do Son February 18, 2026

A new spam campaign is slipping past enterprise defenses by wearing a disguise that most security filters...

CVE-2026-24656: Deserialization Flaw in Apache Karaf Exposes Systems to DoS

Do Son January 26, 2026

A significant security vulnerability has been identified in Apache Karaf Decanter, a monitoring solution widely used in...

CISA Alert: Critical VMware vCenter RCE (CVSS 9.8) Now Exploited in the Wild CISA KEV Catalog DarkSword Exploit Draytek Routers VMware vCenter RCE CVE-2024-37079

CISA KEV Catalog DarkSword Exploit Draytek Routers VMware vCenter RCE CVE-2024-37079

CISA Alert: Critical VMware vCenter RCE (CVSS 9.8) Now Exploited in the Wild

Do Son January 25, 2026

The Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability affecting Broadcom VMware vCenter Server...

Total Takeover: Critical CVSS 10 Flaw Found in Oracle Fusion Middleware Oracle breach Oracle Fusion Middleware CVE-2026-21962

Total Takeover: Critical CVSS 10 Flaw Found in Oracle Fusion Middleware

Do Son January 21, 2026

Oracle has kicked off 2026 with a massive security overhaul, releasing its first Critical Patch Update (CPU)...

Critical Zoom Flaw (CVE-2026-22844): CVSS 9.9 Command Injection Exposes Hybrid Meetings Zoom Node Vulnerability CVE-2026-22844 CVE-2024-45421 & CVE-2024-45419 CVE-2025-27440

Zoom Node Vulnerability CVE-2026-22844 CVE-2024-45421 & CVE-2024-45419 CVE-2025-27440

Critical Zoom Flaw (CVE-2026-22844): CVSS 9.9 Command Injection Exposes Hybrid Meetings

Do Son January 21, 2026

A near-maximum severity vulnerability has been discovered in Zoom’s enterprise infrastructure, threatening to turn hybrid meeting setups...

Fake Productivity Tools: 5 Malicious Chrome Extensions Hijack Enterprise Sessions Amazon Ads Blocker Affiliate Link Hijacking Malicious browser extensions

Amazon Ads Blocker Affiliate Link Hijacking Malicious browser extensions

Fake Productivity Tools: 5 Malicious Chrome Extensions Hijack Enterprise Sessions

Do Son January 19, 2026

A new and sophisticated campaign targeting enterprise environments has been uncovered by Socket’s Threat Research Team. Five...

Windows 11 KB5089549 network lag Windows 11 Home to Pro Education upgrade Windows 11 Start menu update Windows 11 update KB5079391 Windows 11 KB5085516 OOB update Windows 11 C drive permission error Windows 11 C drive access denied Windows native NVMe driver UEFI Secure Boot certificate rotation Windows 11 printer driver policy Windows 11 printer driver deprecation Windows 11 Build 26300 Sysmon Windows 11 Storage settings restriction Windows 11 Build 26300.7674, Windows Insider channel migration 2026 Windows 11 Update Fix KB5073455 shutdown bug, Secure Launch restart loop Windows 11 File Explorer search performance, Search Indexer RAM usage fix Windows 11 Gaming PC Specs, NVMe DirectStorage Windows 10 End of Support Windows 11 Slow Adoption Windows 11 Crash Loop KB5062553 Bug Update and Shut Down, KB5067036 Windows authentication, Kerberos bug Windows 11 fix, localhost bug Windows 11 Update Restart, Update and Shut Down Windows SMBv1 Windows 11 Arm, Easy Anti-Cheat Windows 11 error, Pluton Windows 11 24H2, Easy Anti-Cheat Windows Firewall Bug, Microsoft Update Error Windows 11, JScript9Legacy Windows Activation, TSforge Windows 11 Update, Firewall Error Windows 11 25H2, Annual Update Windows Resiliency Initiative, Kernel Security Windows 11 Upgrade, ESU Program Windows 11 Recall, Data Export Windows 11 Easy Anti-Cheat Windows 11 Update, Cumulative Update Windows Update, ACPI.sys Windows Updates, Enterprise Software Windows 11 Start Data Encryption Standard Printing Problems Windows 11 updates Estimated installation time Smart App Control, Windows 11 security

The Infinite Loop: Windows 11 Update KB5073455 Breaks Shutdown & Hibernation

Do Son January 17, 2026

Microsoft has confirmed that the routine security updates disseminated in January 2026 have inadvertently compromised the operational...

The Exit Strategy: Microsoft Finally Grants Admins a Way to Uninstall Copilot Windows 11 Build 26220.7535 Copilot removal, Remove Microsoft Copilot App Group Policy

Windows 11 Build 26220.7535 Copilot removal, Remove Microsoft Copilot App Group Policy

The Exit Strategy: Microsoft Finally Grants Admins a Way to Uninstall Copilot

Do Son January 10, 2026

Microsoft has integrated its artificial intelligence utility, Microsoft Copilot, into the Windows 11 architecture; however, this inclusion...

Public Exploit Released: Critical Trend Micro Flaw Grants SYSTEM Access libheif Vulnerability CVE-2025-65586 Trend Micro RCE CVE-2025-69258 SessionReaper CVE-2025-54236 VS Code Marketplace, supply chain attack npm Supply Chain, Toptal Compromise Ruckus AP Vulnerability

libheif Vulnerability CVE-2025-65586 Trend Micro RCE CVE-2025-69258 SessionReaper CVE-2025-54236 VS Code Marketplace, supply chain attack npm Supply Chain, Toptal Compromise Ruckus AP Vulnerability

Public Exploit Released: Critical Trend Micro Flaw Grants SYSTEM Access

Do Son January 9, 2026

Trend Micro has issued a critical security alert for users of Apex Central (on-premise), patching a dangerous...

Critical Alert 3 Active Exploits Detected Today

Critical Alert