Collecting Cyber-News from over 60 sources

Tag: vulnerability

Attackers Chain CODESYS Vulnerabilities to Backdoor Applications

Apr 27, 2026 7:39 AM

Tags: backdoor, control, cyber, exploit, flaw, network, vulnerability

Nozomi Networks Labs published critical research detailing three new vulnerabilities in the CODESYS Control runtime. When chained together, these security flaws allow an authenticated attacker with low-level privileges to replace a legitimate industrial control application with a backdoored version. Ultimately, this exploit path leads to complete administrative control over the target device and its host…
Critical bug in CrowdStrike LogScale let attackers access files

Apr 26, 2026 7:39 PM

Tags: access, crowdstrike, cve, flaw, update, vulnerability

CrowdStrike fixed CVE-2026-40050 in LogScale self-hosted, a critical flaw allowing unauthenticated file access via path traversal. CrowdStrike recently disclosed a critical vulnerability, tracked as CVE-2026-40050, affecting its LogScale self-hosted product. The flaw enables unauthenticated path traversal, which could allow a remote attacker to read arbitrary files from the server filesystem. >>CrowdStrike has released security updates…
Security Affairs newsletter Round 574 by Pierluigi Paganini INTERNATIONAL EDITION

Apr 26, 2026 11:38 AM

Tags: cisa, email, exploit, flaw, international, kev, vulnerability, WeeklyReview

A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. U.S. CISA adds SimpleHelp, Samsung, and D-Link flaws to its Known Exploited Vulnerabilities catalog Over 400,000…
U.S. CISA adds SimpleHelp, Samsung, and D-Link flaws to its Known Exploited Vulnerabilities catalog

Apr 26, 2026 12:38 AM

Tags: cisa, cve, cybersecurity, exploit, flaw, infrastructure, kev, vulnerability

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds SimpleHelp, Samsung, and D-Link flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added SimpleHelp, Samsung, and D-Link flaws to its Known Exploited Vulnerabilities (KEV) catalog. Below are the flaws added to the catalog: The vulnerability CVE-2024-7399 (CVSS score of 8.8) is…
U.S. CISA adds SimpleHelp, Samsung, and D-Link flaws to its Known Exploited Vulnerabilities catalog

Apr 26, 2026 12:38 AM

Tags: cisa, cve, cybersecurity, exploit, flaw, infrastructure, kev, vulnerability

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds SimpleHelp, Samsung, and D-Link flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added SimpleHelp, Samsung, and D-Link flaws to its Known Exploited Vulnerabilities (KEV) catalog. Below are the flaws added to the catalog: The vulnerability CVE-2024-7399 (CVSS score of 8.8) is…
Over 400,000 sites at risk as hackers exploit Breeze Cache plugin flaw (CVE-2026-3844)

Apr 25, 2026 5:39 PM

Tags: cve, exploit, flaw, hacker, risk, threat, vulnerability, wordpress

Attackers exploit a Breeze Cache flaw (CVE-2026-3844) to upload files without login. Wordfence researchers detected over 170 attacks. Threat actors are exploiting a critical flaw, tracked as CVE-2026-3844 (CVSS score of 9.8), in the Breeze Cache WordPress plugin, allowing them to upload files to a server without authentication. The vulnerability has already been used in…
CISA Adds 4 Exploited Flaws to KEV, Sets May 2026 Federal Deadline

Apr 25, 2026 8:39 AM

Tags: cisa, cve, cybersecurity, exploit, flaw, infrastructure, kev, router, vulnerability

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added four vulnerabilities impacting SimpleHelp, Samsung MagicINFO 9 Server, and D-Link DIR-823X series routers to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation.The list of vulnerabilities is below -CVE-2024-57726 (CVSS score: 9.9) – A missing authorization vulnerability in First seen on thehackernews.com…
TekStream Targets Proactive Security With ImagineX Cyber Buy

Apr 25, 2026 1:39 AM

Tags: advisory, ai, attack, ciso, cyber, grc, service, vulnerability, vulnerability-management

Acquisition Adds Advisory, GRC and Vulnerability Services to ImagineX’s MDR Core. TekStream acquired ImagineX’s cyber division to integrate advisory, vulnerability management and GRC with its MDR services, aiming to help CISOs defend against faster, AI-driven attacks by unifying proactive and reactive security into a single operational model. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/tekstream-targets-proactive-security-imaginex-cyber-buy-a-31507
12-year-old Pack2TheRoot bug lets Linux users gain root privileges

Apr 24, 2026 10:39 PM

Tags: cve, cvss, flaw, linux, vulnerability

‘Pack2TheRoot’ flaw lets local Linux users gain root via PackageKit. CVE-2026-41651 (8.8) has existed for nearly 12 years. The Pack2TheRoot flaw, tracked as CVE-2026-41651, lets unprivileged users install or remove system packages without authorization, potentially gaining full root access. The vulnerability is rated high severity, CVSS score of 8.8, and has existed for nearly 12…
TDL 020 – Why DNS Is Your First Line of Cyber Defense – Chris Buijs

Apr 24, 2026 9:39 PM

Tags: access, attack, automation, business, cisco, ciso, cloud, container, corporate, country, cyber, cybersecurity, data, ddos, defense, dns, encryption, endpoint, finance, firewall, group, hacker, ibm, infrastructure, Internet, iot, jobs, malicious, microsoft, network, office, phone, programming, router, saas, service, software, startup, strategy, switch, technology, threat, tool, training, update, usa, vulnerability, zero-trust

In Episode 20 of The Defender’s Log, host David Redekop sits down with Amsterdam-based tech veteran Chris Buijs to discuss the often-overlooked backbone of internet security: DNS (Domain Name System). The “Set-it-and-Forget-it” Trap Buijs, who transitioned from an electrician to a network architect, notes that many organizations treat DNS as a “utility” rather than a…
TDL 020 – Why DNS Is Your First Line of Cyber Defense – Chris Buijs

Apr 24, 2026 9:39 PM

Tags: access, attack, automation, business, cisco, ciso, cloud, container, corporate, country, cyber, cybersecurity, data, ddos, defense, dns, encryption, endpoint, finance, firewall, group, hacker, ibm, infrastructure, Internet, iot, jobs, malicious, microsoft, network, office, phone, programming, router, saas, service, software, startup, strategy, switch, technology, threat, tool, training, update, usa, vulnerability, zero-trust

In Episode 20 of The Defender’s Log, host David Redekop sits down with Amsterdam-based tech veteran Chris Buijs to discuss the often-overlooked backbone of internet security: DNS (Domain Name System). The “Set-it-and-Forget-it” Trap Buijs, who transitioned from an electrician to a network architect, notes that many organizations treat DNS as a “utility” rather than a…
New ‘Pack2TheRoot’ flaw gives hackers root Linux access

Apr 24, 2026 8:39 PM

Tags: access, exploit, flaw, hacker, linux, vulnerability

A new vulnerability dubbed Pack2TheRoot could be exploited in the PackageKit daemon to allow local Linux users to install or remove system packages and gain root permissions. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/new-pack2theroot-flaw-gives-hackers-root-linux-access/
How CrowdStrike Is Helping The Industry To Withstand AI-Driven Vulnerability Deluge: Exec

Apr 24, 2026 8:39 PM

Tags: ai, business, crowdstrike, software, vulnerability

CrowdStrike’s launch of a new initiative, Project QuiltWorks, is a sorely needed answer to the widespread questions over how to prepare for the coming onslaught of AI-discovered software vulnerabilities, Chief Business Officer Daniel Bernard told CRN. First seen on crn.com Jump to article: www.crn.com/news/security/2026/how-crowdstrike-is-helping-the-industry-to-withstand-ai-driven-vulnerability-deluge-exec
Too Many Vulnerabilities? Here’s How AutoSecT Risk Prioritization Helps!

Apr 24, 2026 5:39 PM

Tags: cve, risk, vulnerability

If your security team is drowning in vulnerabilities, that’s math done wrong. Prioritize your risk with the right vulnerability assessment tool. Here’s why? The volume of vulnerabilities has exploded beyond what any team can realistically handle. 48,185 CVEs were published in 2025, marking a 20.6% increase compared to 2024. Approximately 130 133 new vulnerabilities… First…
Too Many Vulnerabilities? Here’s How AutoSecT Risk Prioritization Helps!

Apr 24, 2026 5:39 PM

Tags: cve, risk, vulnerability

If your security team is drowning in vulnerabilities, that’s math done wrong. Prioritize your risk with the right vulnerability assessment tool. Here’s why? The volume of vulnerabilities has exploded beyond what any team can realistically handle. 48,185 CVEs were published in 2025, marking a 20.6% increase compared to 2024. Approximately 130 133 new vulnerabilities… First…
Too Many Vulnerabilities? Here’s How AutoSecT Risk Prioritization Helps!

Apr 24, 2026 5:39 PM

Tags: cve, risk, vulnerability

If your security team is drowning in vulnerabilities, that’s math done wrong. Prioritize your risk with the right vulnerability assessment tool. Here’s why? The volume of vulnerabilities has exploded beyond what any team can realistically handle. 48,185 CVEs were published in 2025, marking a 20.6% increase compared to 2024. Approximately 130 133 new vulnerabilities… First…
Over 10,000 Zimbra servers vulnerable to ongoing XSS attacks

Apr 24, 2026 4:39 PM

Tags: attack, data-breach, exploit, vulnerability, xss

Over 10,000 Zimbra Collaboration Suite (ZCS) instances exposed online are vulnerable to ongoing attacks exploiting a cross-site scripting (XSS) security flaw. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/cisa-says-zimbra-flaw-now-exploited-over-10k-servers-vulnerable/
Claude-Mythos und die Konsequenzen für die Softwaresicherheit

Apr 24, 2026 2:39 PM

Tags: ai, software, vulnerability

Thales warnt schon seit langem vor diesem Wandel: KI senkt die Hürden für das Aufspüren und Ausnutzen von Software-Schwachstellen drastisch und beschleunigt diesen Prozess in einem Ausmaß, mit dem Menschen einfach nicht mithalten können. Die Konsequenz ist klar: Unternehmen müssen nun davon ausgehen, dass ihre Software und Anwendungen kontinuierlich von feindlicher KI analysiert, zerlegt und…
Hackers Exploit Agent ID Administrator Role to Hijack Service Principals

Apr 24, 2026 2:39 PM

Tags: ai, cyber, exploit, flaw, hacker, identity, microsoft, service, vulnerability

A severe scoping vulnerability was recently discovered in Microsoft Entra ID’s new Agent Identity Platform. The security flaw allowed users assigned the Agent ID Administrator role to hijack arbitrary service principals across an organization’s tenant, leading to potential privilege escalation. Although the administrative role was designed strictly to manage AI agent identities, a boundary breakdown…
AI Rush is Reviving Old Cybersecurity Mistakes, Mandiant VP Warns

Apr 24, 2026 2:39 PM

Tags: ai, cybersecurity, mandiant, tool, vulnerability

AI tools are not just creating new vulnerabilities, they are reviving old security failures, warned Jurgen Kutscher, VP of Mandiant Consulting First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/ai-old-cybersecurity-mistakes/
Microsoft’s April Security Update of High-Risk Vulnerability Notice for Multiple Products

Apr 24, 2026 1:38 PM

Tags: framework, microsoft, office, risk, sql, update, vulnerability, windows

Overview On April 15, NSFOCUS CERT detected that Microsoft released the April Security Update patch, fixing 165 security issues involving Windows, Microsoft Office, Microsoft SQL Server, Microsoft Visual Studio, Microsoft .NET Framework, Widely used products such as Azure, including high-risk vulnerability types such as privilege escalation and remote code execution. Among the vulnerabilities fixed by……
Hackers Exploit Cisco Firepower N-Day Flaws for Unauthorized Access

Apr 24, 2026 1:38 PM

Tags: access, cisco, cyber, exploit, flaw, hacker, threat, unauthorized, vulnerability, zero-day

A state-sponsored threat actor known as UAT-4356 is actively exploiting known vulnerabilities in Cisco Firepower devices to deploy a sophisticated custom backdoor. UAT-4356 exploited two n-day vulnerabilities, CVE-2025-20333 and CVE-2025-20362m affecting Cisco’s Firepower eXtensible Operating System (FXOS). These flaws allowed the threat actor to gain unauthorized access to targeted devices without requiring zero-day capabilities, instead weaponizing already-patched but unmitigated vulnerabilities…
Xiongmai IP Camera Flaw Lets Attackers Bypass Authentication

Apr 24, 2026 12:39 PM

Tags: access, authentication, cctv, cyber, cybersecurity, flaw, infrastructure, technology, vulnerability

A critical security vulnerability has been identified in Hangzhou Xiongmai Technology’s XM530 IP Cameras, putting countless commercial facilities at risk. This severe flaw allows remote attackers to bypass authentication protocols and access sensitive device information easily. The Cybersecurity and Infrastructure Security Agency (CISA) published an official alert regarding the issue on April 23, 2026. Critical…
LMDeploy CVE-2026-33626 Flaw Exploited Within 13 Hours of Disclosure

Apr 24, 2026 10:38 AM

Tags: access, cve, exploit, flaw, LLM, open-source, vulnerability

A high-severity security flaw in LMDeploy, an open-source toolkit for compressing, deploying, and serving LLMs, has come under active exploitation in the wild less than 13 hours after its public disclosure.The vulnerability, tracked as CVE-2026-33626 (CVSS score: 7.5), relates to a Server-Side Request Forgery (SSRF) vulnerability that could be exploited to access sensitive data.”A server-side…
Python Vulnerability Enables OutBounds Write on Windows

Apr 24, 2026 9:39 AM

Tags: cyber, data, flaw, vulnerability, windows

A high-severity security vulnerability has been discovered in Python’s asyncio module on Windows, potentially allowing attackers to write data beyond the boundaries of an allocated memory buffer. The flaw, tracked as CVE-2026-3298, was publicly disclosed on April 21, 2026, by Python security developer Seth Larson via the official Python security announcement mailing list. The vulnerability exists in the sock_recvfrom_into() method…
Hackers Exploit Ollama Model Uploads to Leak Server Data

Apr 24, 2026 9:39 AM

Tags: ai, cve, cyber, cybersecurity, data, exploit, flaw, hacker, leak, open-source, vulnerability

Cybersecurity researchers have uncovered a severe, unpatched vulnerability in Ollama, a popular open-source platform used for running large language models locally. Tracked as CVE-2026-5757, this critical flaw exists in Ollama’s model quantization engine. If exploited, it allows an unauthenticated attacker to steal sensitive server data by simply uploading a maliciously crafted AI model file. How…
Hackers Exploit Ollama Model Uploads to Leak Server Data

Apr 24, 2026 9:39 AM

Tags: ai, cve, cyber, cybersecurity, data, exploit, flaw, hacker, leak, open-source, vulnerability

Cybersecurity researchers have uncovered a severe, unpatched vulnerability in Ollama, a popular open-source platform used for running large language models locally. Tracked as CVE-2026-5757, this critical flaw exists in Ollama’s model quantization engine. If exploited, it allows an unauthenticated attacker to steal sensitive server data by simply uploading a maliciously crafted AI model file. How…
Hackers Track 900+ React2Shell Exploits via Telegram Bots

Apr 24, 2026 8:39 AM

Tags: ai, cyber, data, data-breach, exploit, hacker, vulnerability

Hackers are using Telegram bots and AI tooling to run a structured, at-scale exploitation campaign abusing the critical React2Shell vulnerability (CVE-2025-55182), with evidence of 900+ confirmed compromises. Investigators found an exposed server tied to the Bissa scanner platform, used for multi-victim exploitation, staging, and validation rather than simple data dumping. Logs and project artifacts show…
Warum Unternehmen jetzt ein ganzheitliches Exposure Management brauchen Der Allgefahrenansatz der NIS2

Apr 24, 2026 7:38 AM

Tags: cyersecurity, nis-2, resilience, risk, vulnerability

Mit der Verabschiedung des NIS2-Umsetzungsgesetzes durch den Bundestag stärkt der Gesetzgeber nicht nur die Resilienz kritischer Sektoren, sondern verankert gleichzeitig den sogenannten Allgefahrenansatz fest im deutschen IT-Sicherheitsrecht. Dieser Ansatz macht unmissverständlich klar: Cybersicherheit darf sich nicht länger auf die Behebung einzelner technischer Schwachstellen beschränken sie muss alle Risiken entlang der Geschäftsprozesse berücksichtigen. First seen on…
Hackers Exploit SS7 and Diameter Flaws to Track Mobile Users Globally

Apr 24, 2026 7:38 AM

Tags: cyber, exploit, flaw, hacker, mobile, vulnerability

A recent investigation by Citizen Lab has uncovered sophisticated, multi-year surveillance campaigns exploiting foundational vulnerabilities in global mobile networks. The report, titled >>Bad Connection,<< reveals how suspected commercial surveillance vendors (CSVs) weaponize the SS7 and Diameter signaling protocols to covertly track high-profile individuals across the globe without interacting directly with their devices. These findings underscore…