Cisco Talos is tracking the active exploitation of CVE-2026-20182, an authentication bypass vulnerability in Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, and Cisco Catalyst SD-WAN...
This is a current list of where and when I am scheduled to speak: I’m giving a virtual talk on “The Security of Trust in the Age of AI,” hosted by the Financial Women’s Association of New York, at...
Broadcom VMware security advisory (AV26-469)
MongoDB security advisory (AV26-468)
A new Linux kernel local privilege escalation exploit with a public proof-of-concept targets the same subsystem as Dirty Frag but requires a separate patch.Key TakeawaysCVE-2026-46300 (Fragnesia)...
OpenAI says two employees' devices were breached in the recent TanStack supply chain attack that impacted hundreds of npm and PyPI packages, causing the company to rotate code-signing certificates...
Cross-site Scripting vulnerability (CVE-2026-21730) has been found in Verba software.
An anonymous cybersecurity researcher who disclosed three Microsoft Defender vulnerabilities has returned with two more zero-days involving a BitLocker bypass and a privilege escalation impacting...
Cross-site Scripting vulnerability (CVE-2026-1630) has been found in WEBCON BPS software.
On the first day of Pwn2Own Berlin 2026, security researchers collected $523,000 in cash awards after exploiting 24 unique zero-days. [...]
The ransomware group Nitrogen claimed responsibility for the attack and said it stole 8 terabytes of data spanning more than 11 million files belonging to the company’s top customers. The post...
CERT Polska has received a report about 2 vulnerabilities (CVE-2025-68420 and CVE-2025-68421) found in Comarch ERP Optima software.
Ransomware activity remained consistent through Q1, with credential-based initial access continuing to drive most incidents. Compromised credentials paired with exposed remote access services...
West Pharmaceutical Services disclosed a ransomware attack that disrupted manufacturing, shipping, and receiving operations across multiple global facilities... The post Ransomware attacks on West...
GitLab security advisory (AV26-467)
Owe Martin Andresen faces charges in both US and Germany connected with money laundering, claims he sent gold bars directly to his doorstep
Mick Baccio and Scott Roberts examine whether public breach signals and market timing models can turn cyber incidents into actionable trading opportunities.
Details have emerged about a new variant of the recent Dirty Frag Linux local privilege escalation (LPE) vulnerability that allows local attackers to gain root access, making it the third such bug...
Fresh kernel flaw comes with public exploit code and continues ugly run of highly reliable privilege escalation bugs tied to memory and page-cache handling
Integer Overflow vulnerability (CVE-2026-8295) has been found in simdjson library.
An 18-year-old flaw in the NGINX open-source web server, discovered using an autonomous scanning system, can be exploited for denial of service and, under certain conditions, remote code execution. [...]
Russian state-sponsored threat group Sandworm is continuing to target industrial and critical infrastructure environments using aggressive lateral movement,... The post Sandworm uses...
New research from Bitdefender detailed targeting an Azerbaijani oil and gas company in a multi-wave cyberespionage campaign that... The post Bitdefender uncovers FamousSparrow attacks on...
Cybersecurity researchers have disclosed multiple security vulnerabilities impacting NGINX Plus and NGINX Open, including a critical flaw that remained undetected for 18 years. The vulnerability,...
Patero, a provider of post-quantum encryption and secure communications technologies, and Orilla, an edge-native software company focused on... The post Patero, Orilla launch secure...
Tidal Cyber announced a major advancement to its platform with the separation of MITRE ATT&CK intelligence from Tidal... The post Tidal Cyber updates platform for MITRE ATT&CK v19 with focus on...
Cargo theft now starts with phishing emails and stolen credentials, not hijackings, to reroute and steal freight from supply chains. NMFTA outlines how cyber-enabled cargo crime is changing...
Semperis, an identity-driven cyber resilience and crisis response company, published results of a multi-industry global study of 1,100... The post Semperis study warns AI agents are rapidly...
Last month, Anthropic made a remarkable announcement about its new model, Claude Mythos Preview: it was so good at finding security vulnerabilities in software that the company would not release...
Kaspersky researchers analyze a range of new PebbleDash-based tools used in recent Kimsuky campaigns and reveal their connection to the AppleSeed malware cluster.