infosec Archives • Page 14 of 45 • Daily CyberSecurity

UNC6692 Uses MS Teams and Cloud Reputations to Hijack Active Directory UNC6692 SNOW Malware Suite

UNC6692 Uses MS Teams and Cloud Reputations to Hijack Active Directory

Ddos April 27, 2026

A sophisticated new threat actor, UNC6692, is redefining the art of the initial breach. According to a...

Tactical Evolution: Trigona Ransomware Debuts Custom Exfiltration Armory Trigona Ransomware Custom Exfiltration Tool

Tactical Evolution: Trigona Ransomware Debuts Custom Exfiltration Armory

Ddos April 25, 2026

The ransomware landscape is witnessing a sophisticated shift in how data is stolen. While most cybercriminal groups...

Altium Enterprise Server Vulnerability CVE-2026-9129 Path Traversal Patreon OAuth Vulnerability Identity Collision DRC INSIGHT Vulnerability Exam Data Hijacking Horner Automation PLC Industrial Brute Force Honeywell IQ4x Vulnerability CVE-2026-3611 DJI Romo vacuum security flaw Python Cryptography Vulnerability CVE-2026-26007 Open5GS Vulnerability CVE-2026-0622 Vivotek IP7137 Vulnerabilities CVE-2025-66049 Forcepoint DLP Vulnerability CVE-2025-14026 Cellopoint Secure Email Gateway - CVE-2024-9043

Academic Exposure: The Unpatched Flaw Siphoning Student Data from DRC INSIGHT

Ddos April 24, 2026

A security vulnerability has been unearthed in the DRC INSIGHT software—a platform widely used for proctoring academic...

The 9.1 CVSS Flaw: Why Millions of Spring Boot Apps May Be Exposed Spring Cloud Config Vulnerability CVE-2026-40982 Spring Boot Vulnerability CVSS 9.1 Bypass CVE-2022-31692 Spring Boot Vulnerability Authentication Bypass

Spring Cloud Config Vulnerability CVE-2026-40982 Spring Boot Vulnerability CVSS 9.1 Bypass CVE-2022-31692 Spring Boot Vulnerability Authentication Bypass

The 9.1 CVSS Flaw: Why Millions of Spring Boot Apps May Be Exposed

Ddos April 24, 2026

In a major update for the Java ecosystem, several critical vulnerabilities have been disclosed in Spring Boot,...

Triple Threat: Apache ActiveMQ Vulnerabilities Expose Enterprises to RCE and XSS ActiveMQ security flaws Jolokia web console exploit ActiveMQ RCE Jolokia Spring Vulnerability ActiveMQ MQTT Vulnerability CVE-2025-66168 Apache Artemis Vulnerability CVE-2026-27446

ActiveMQ security flaws Jolokia web console exploit ActiveMQ RCE Jolokia Spring Vulnerability ActiveMQ MQTT Vulnerability CVE-2025-66168 Apache Artemis Vulnerability CVE-2026-27446

Triple Threat: Apache ActiveMQ Vulnerabilities Expose Enterprises to RCE and XSS

Ddos April 24, 2026

Apache ActiveMQ, the world’s most popular open-source message broker, is currently facing a series of “Important” security...

Workflow Warning: The n8n CVSS 10.0 Prototype Pollution Crisis n8n RCE Automation Security n8n Vulnerability Prototype Pollution RCE

Workflow Warning: The n8n CVSS 10.0 Prototype Pollution Crisis

Ddos April 24, 2026

In the world of rapid development, n8n has become a favorite for technical teams looking to merge...

The Global Surge in Modbus/TCP Probes Targeting Our Physical World Modbus Exploitation ICS Security

The Global Surge in Modbus/TCP Probes Targeting Our Physical World

Ddos April 24, 2026

Between September and November 2025, a massive wave of suspicious activity targeted industrial control systems worldwide, proving...

Beyond Stuxnet: Uncovering fast16, the Apex Saboteur That Rewrites Mathematical Reality fast16 Malware Cyber Sabotage IronWind malware Stealc

fast16 Malware Cyber Sabotage IronWind malware Stealc

Beyond Stuxnet: Uncovering fast16, the Apex Saboteur That Rewrites Mathematical Reality

Ddos April 24, 2026

For decades, the cybersecurity world believed Stuxnet was the undisputed pioneer of state-grade cyber sabotage. SentinelLABS has...

Tropic Trooper Weaponizes GitHub and VS Code for East Asian Espionage Tropic Trooper Espionage VS Code Tunnels

Tropic Trooper Weaponizes GitHub and VS Code for East Asian Espionage

Ddos April 24, 2026

A sophisticated cyber espionage campaign has been uncovered targeting individuals across East Asia, leveraging a deceptive mix...

Operational Blackout: How Kyber Ransomware Targets the Heart of Virtualized Environments Kyber Ransomware ESXi Virtualization Attack

Operational Blackout: How Kyber Ransomware Targets the Heart of Virtualized Environments

Ddos April 24, 2026

Researchers at Rapid7 have uncovered Kyber, a specialized ransomware family that recently hit enterprise environments with a...

Supply Chain Sabotage: Bitwarden CLI Compromised in Global “Checkmarx” Campaign Bitwarden CLI Compromise Dune Supply Chain Attack

Supply Chain Sabotage: Bitwarden CLI Compromised in Global “Checkmarx” Campaign

Ddos April 24, 2026

The password management world was rocked this week as researchers from Socket revealed a major supply chain...

Arcane Door Reopened: The Cisco Firepower Backdoor That Only a Hard Reboot Can Kill FortiClient EMS exploitation Cisco FIRESTARTER Backdoor Arcane Door Campaign Dell RecoverPoint Zero-Day UNC6201 Espionage Notepad++ Compromise Supply Chain Attack Magento SessionReaper CVE-2025-54236 ShadowRay 2.0, AI-Generated Malware WordPress Auth Bypass, CVE-2025-5947 Exploited EcoStruxure Vulnerabilities, Industrial Control System UNC5820 - CVE-2014-2120 - CVE-2021-44207

FortiClient EMS exploitation Cisco FIRESTARTER Backdoor Arcane Door Campaign Dell RecoverPoint Zero-Day UNC6201 Espionage Notepad++ Compromise Supply Chain Attack Magento SessionReaper CVE-2025-54236 ShadowRay 2.0, AI-Generated Malware WordPress Auth Bypass, CVE-2025-5947 Exploited EcoStruxure Vulnerabilities, Industrial Control System UNC5820 - CVE-2014-2120 - CVE-2021-44207

Arcane Door Reopened: The Cisco Firepower Backdoor That Only a Hard Reboot Can Kill

Ddos April 24, 2026

Cisco Talos has released a critical update on the threat actor known as UAT-4356 (also associated with...

Harvester APT Goes Cross-Platform: New Linux Backdoor Abuses Microsoft Graph API Harvester APT Linux Backdoor OT Cyberattack Iranian APT Operation Olalampo MuddyWater APT Prince of Persia APT, Tonnerre v50 Patchwork APT, DLL Sideloading Subtle Snail, cyber espionage ShadowSilk, cyber espionage Volt Typhoon APT Group - Chinese Cybersecurity Firm

Harvester APT Linux Backdoor OT Cyberattack Iranian APT Operation Olalampo MuddyWater APT Prince of Persia APT, Tonnerre v50 Patchwork APT, DLL Sideloading Subtle Snail, cyber espionage ShadowSilk, cyber espionage Volt Typhoon APT Group - Chinese Cybersecurity Firm

Harvester APT Goes Cross-Platform: New Linux Backdoor Abuses Microsoft Graph API

Ddos April 24, 2026

The sophisticated threat actor known as Harvester is expanding its horizons. Traditionally known for targeting Windows environments,...

Windows Python Users Warned of High-Severity “asyncio” Memory Flaw Python asyncio Vulnerability Windows Buffer Overflow ormar SQL Injection CVE-2026-26198 CVE-2024-49768 - Waitress WSGI server

Python asyncio Vulnerability Windows Buffer Overflow ormar SQL Injection CVE-2026-26198 CVE-2024-49768 - Waitress WSGI server

Windows Python Users Warned of High-Severity “asyncio” Memory Flaw

Ddos April 23, 2026

Python developers and system administrators on Windows are being urged to update their environments following the discovery...

Mailcow Critical Alert: Unauthenticated XSS Threatens Admin Takeover mailcow XSS CVE-2026-40872

Mailcow Critical Alert: Unauthenticated XSS Threatens Admin Takeover

Ddos April 23, 2026

The popular open-source groupware suite mailcow: dockerized is facing a high-stakes security challenge. A critical Stored Cross-Site...

Unpatch Ollama Flaw: Malicious Model Uploads Can Leak Server Heap Memory Ollama Heap Leak CVE-2026-5757 Anritsu Vulnerability Authentication Bypass Gootloader Malware Malformed ZIP Evasion Blender Malware, StealC V2 Lectora, XSS CVE-2025-9125 HFS RCE, Template Injection Arch Linux Malware, CHAOS RAT CVE-2024-56404 - CVE-2024-39327 CVE-2025-2538

Ollama Heap Leak CVE-2026-5757 Anritsu Vulnerability Authentication Bypass Gootloader Malware Malformed ZIP Evasion Blender Malware, StealC V2 Lectora, XSS CVE-2025-9125 HFS RCE, Template Injection Arch Linux Malware, CHAOS RAT CVE-2024-56404 - CVE-2024-39327 CVE-2025-2538

Unpatch Ollama Flaw: Malicious Model Uploads Can Leak Server Heap Memory

Ddos April 23, 2026

A critical unauthenticated remote information disclosure vulnerability has been uncovered in Ollama, the popular open-source tool used...

Critical Authentication Bypass in Apache HttpClient 5.6 Apache HttpClient Vulnerability SCRAM-SHA-256 Auth Bypass

Critical Authentication Bypass in Apache HttpClient 5.6

Ddos April 23, 2026

The Apache Software Foundation has issued an urgent advisory for a vulnerability in its widely used HttpClient...

Critical 9.8 CVSS Flaws Hit ArcGIS Infrastructure

Ddos April 23, 2026

Esri has issued an urgent security bulletin regarding two critical vulnerabilities affecting developer credentials within ArcGIS Online,...

The Lotus Evolves: Mustang Panda Targets Indian Banks in a New Espionage Pivot Mustang Panda LOTUSLITE Financial Cyber-Espionage

The Lotus Evolves: Mustang Panda Targets Indian Banks in a New Espionage Pivot

Ddos April 23, 2026

The Acronis Threat Research Unit (TRU) has identified a significant shift in the operations of Mustang Panda,...

Cisco Talos Unveils “Living-off-the-Land” Tactics Threatening macOS macOS LOTL Techniques Enterprise Mac Security

Cisco Talos Unveils “Living-off-the-Land” Tactics Threatening macOS

Ddos April 23, 2026

As macOS adoption reaches record highs in the enterprise—now serving as the primary workstation for over 45...