Login Subscribe

Vulnerabilities & Exploits

Coordinated Scans Target New BeyondTrust RCE Vulnerability – Exploit Likely Soon

Coordinated Scans Target New BeyondTrust RCE Vulnerability – Exploit Likely Soon

GreyNoise analysts have observed a widespread, credential‑free reconnaissance campaign that is actively probing internet‑exposed BeyondTrust management consoles for the recently disclosed remote code execution flaw (CVE‑2026‑1731). The probes exhibit uniform timing, identical payload signatures, and a clear focus on the vulnerable endpoint, indicating an automated effort

VMware vDefend Brings Zero‑Trust Lateral Defense to Private Clouds

VMware vDefend Brings Zero‑Trust Lateral Defense to Private Clouds

VMware introduced vDefend, a service that extends zero‑trust principles into private‑cloud environments. It continuously monitors east‑west traffic, automatically detects suspicious lateral movement, and isolates compromised workloads in real time. The solution builds on NSX micro‑segmentation, applying granular, policy‑driven controls without the need for manually crafted

Falcon Fusion SOAR Supercharges SOC Automation and Incident Consistency

Falcon Fusion SOAR Supercharges SOC Automation and Incident Consistency

CrowdStrike introduced Falcon Fusion SOAR, a cloud‑native platform that lets security operations teams stitch together existing security tools and automate repetitive response steps. The solution ships with a curated library of pre‑built playbooks mapped to MITRE ATT&CK techniques, enabling analysts to launch coordinated actions—such as

Outlook Add‑In Hijack, Wormable IoT Botnet, and AI‑Crafted Malware Threaten Defenders

Outlook Add‑In Hijack, Wormable IoT Botnet, and AI‑Crafted Malware Threaten Defenders

A wave of malicious Outlook add‑ins surfaced this week, targeting enterprise mailboxes to intercept, modify, and forward messages. The add‑ins were distributed via compromised software updates and phishing campaigns, allowing threat actors to harvest credentials, exfiltrate sensitive data, and embed further payloads directly into legitimate communications. Because the

Romanian Pipeline Operator Conpet Hit by Full-Service Outage After IT Breach

Romanian Pipeline Operator Conpet Hit by Full-Service Outage After IT Breach

Check Point’s 9 February Threat Intelligence Report details a cyberattack that breached Conpet’s corporate IT infrastructure, Romania’s national oil pipeline operator. Attackers gained foothold in business‑network systems, disabling critical services and causing a complete shutdown of the pipeline’s data‑flow and scheduling platforms. The outage

Amaranth‑Dragon Exploits New CVE‑2025‑8088 to Penetrate SE Asian Networks

Amaranth‑Dragon Exploits New CVE‑2025‑8088 to Penetrate SE Asian Networks

Check Point’s threat intel team has identified the state‑sponsored group Amaranth‑Dragon actively weaponizing the freshly disclosed CVE‑2025‑8088 flaw in widely deployed server software. The actors first exploit the remote code execution bug to gain initial access, then cascade the intrusion with credential‑dumping utilities such

Active Scans Target New BeyondTrust RCE Vulnerability – Prepare for Privileged Access Threats

Active Scans Target New BeyondTrust RCE Vulnerability – Prepare for Privileged Access Threats

GreyNoise researchers have identified a surge in scanning activity aimed at the recently disclosed BeyondTrust remote code execution flaw (CVE‑2026‑1731). Threat actors are probing default ports and common deployment configurations of the privileged‑access management solution, gathering data that would enable a targeted exploit of the vulnerability. If

Six Zero‑Day Patches Hit Windows – Patch Tuesday Demands Immediate Action

Six Zero‑Day Patches Hit Windows – Patch Tuesday Demands Immediate Action

Microsoft’s February Patch Tuesday delivered more than 50 updates, including six critical zero‑day fixes. The new patches address CVE‑2026‑21510, CVE‑2026‑21513, and CVE‑2026‑21514, which affect the Windows Shell, MSHTML rendering engine, and Microsoft Word. Security researchers have confirmed active exploitation of these flaws