Cisco SD-WAN zero-day CVE-2026-20245 was exploited months before disclosure: Mandiant reveals how a malicious CSV file ...

A threat actor started exploiting a severe vulnerability in Cisco products at least two months before the flaw was disclosed, ...

Mandiant details exploitation of CVE-2026-20245, a Cisco Catalyst SD-WAN vulnerability exploited as a zero-day months prior ...

Switchzilla amid reports of new serious vulnerabilities under attack. First up is a server-side request forgery bug in its Unified Communications Manager tracked as CVE-2026-20230. Cisco disclosed and ...

D-Link router botnet AryStinger has compromised over 4,300 end-of-life DIR-850L and DIR-818LW devices, Qianxin XLab reported ...

An out-of-bounds write vulnerability with a 9.2 severity score allows attackers to achieve remote code execution. A secondary high-severity flaw enables malicious SSH servers to cause client CPU ...

A critical libssh2 vulnerability threatens IT infrastructures. Patches are available, but not yet widely implemented.

A reverse shell makes the target machine initiate the connection back to the attacker, bypassing firewalls that only filter ...

The ShinyHunters extortion crew exploited an unpatched flaw in Oracle PeopleSoft to break into enterprise systems, steal data, and demand payment to keep it private. The campaign hit universities ...

A flaw in Hugging Face Transformers could allow malicious AI models to execute code, exposing credentials and highlighting AI supply chain risks.

An unknown threat actor has leveraged a large language model agent to conduct a swift, automated cyberattack, Sysdig reported after observing the incident on May 10, 2026. The attack began with the ...

Multiple Linux exploits have been uncovered over the last few weeks, including Copy Fail, and the newest of which are dubbed "PinTheft" and "SSH-keysign-pwn." Both have been recently patched, but ...