Sansec Archives • Daily CyberSecurity

PolyShell Exposed: Public PoC and Active Exploitation Disclosed for Critical Magento RCE as Automated Attacks Surge PolyShell Magento RCE Magento PolyShell REST API RCE CosmicSting (CVE-2024-34102) Magento Security Updates

Do Son April 1, 2026

Magento remains a titan in the e-commerce space, currently “estimated to be running on more than 130,000...

Do Son March 30, 2026

When we complacently believed that the checkout portals of e-commerce bastions were enveloped in impenetrable armor, the...

PolyShell Alert: Critical Magento REST API Vulnerability Faces Massive Global Exploitation in the Wild PolyShell Magento RCE Magento PolyShell REST API RCE CosmicSting (CVE-2024-34102) Magento Security Updates

Do Son March 24, 2026

A critical security flaw in the Magento REST API is currently being weaponized by cybercriminals to hijack...

Do Son January 17, 2026

Security researchers at Sansec have discovered an active keylogger planted on the employee merchandise store of a...

Adobe Issues Emergency Patch for SessionReaper (CVE-2025-54236), One of Magento’s Most Critical Flaws libheif Vulnerability CVE-2025-65586 Trend Micro RCE CVE-2025-69258 SessionReaper CVE-2025-54236 VS Code Marketplace, supply chain attack npm Supply Chain, Toptal Compromise Ruckus AP Vulnerability

Do Son September 9, 2025

Adobe has broken from its regular patch schedule to release an emergency fix for CVE-2025-54236, a vulnerability...

Do Son May 6, 2025

The Sansec Forensics Team has uncovered a coordinated supply chain attack that has silently infected ecommerce infrastructure...

Sansec