Login Subscribe

Vulnerabilities & Exploits

Amaranth‑Dragon Exploits CVE‑2025‑8088 in SE Asian Supply‑Chain Attack

Amaranth‑Dragon Exploits CVE‑2025‑8088 in SE Asian Supply‑Chain Attack

Check Point researchers identified that the APT‑41 affiliated group, operating under the name Amaranth‑Dragon, weaponized the recently disclosed CVE‑2025‑8088 flaw in a widely used enterprise software platform. By compromising the software’s update mechanism, the threat actors inserted malicious code that was signed and distributed through

Spike in Scans Targets New BeyondTrust RCE Vulnerability, Threat Actors Reconnaissance Rising

Spike in Scans Targets New BeyondTrust RCE Vulnerability, Threat Actors Reconnaissance Rising

GreyNoise has observed a sharp increase in scanning traffic aimed at the newly disclosed CVE‑2026‑1731 remote code execution flaw in BeyondTrust Privileged Access Management solutions. The scans are probing for exposed services and default configurations, indicating that threat actors are actively mapping networks to locate vulnerable endpoints before

AI-Driven Zero Trust Cuts Manual Policy Work, Boosts Defender Efficiency

AI-Driven Zero Trust Cuts Manual Policy Work, Boosts Defender Efficiency

VMware’s latest blog details a new AI engine that ingests user and device behavior, contextual threat intelligence, and existing policy frameworks to automatically create and fine‑tune zero‑trust access rules. The system continuously monitors activity, adjusts permissions in real time, and surfaces policy recommendations without requiring security engineers

Meta on Trial: Platform Safety Scrutinized Over Child Exploitation Allegations

Meta on Trial: Platform Safety Scrutinized Over Child Exploitation Allegations

A federal jury is hearing a lawsuit that accuses Meta’s family of apps—particularly Facebook and Instagram—of facilitating child sexual exploitation, grooming, and addictive usage patterns. Plaintiffs claim the company’s automated safety tools, reporting mechanisms, and age‑verification processes were insufficient, allowing predators to contact minors and

Nation‑State Hijacks Notepad++ Updates, Threatening Developer Supply Chains

Nation‑State Hijacks Notepad++ Updates, Threatening Developer Supply Chains

Palo Alto Networks’ Unit 42 uncovered a supply‑chain attack on the popular Notepad++ editor, where a nation‑state actor compromised the official build pipeline and injected malicious code into legitimate software updates. The compromised binaries were signed and distributed through the official download channels, reaching millions of developers worldwide.

AI‑Driven Prompt RCE and 0‑Click Claude Exploit Spark New Threat Wave

AI‑Driven Prompt RCE and 0‑Click Claude Exploit Spark New Threat Wave

The latest ThreatsDay Bulletin reports a coordinated surge of AI‑powered attacks. Researchers uncovered a prompt‑injection remote code execution (RCE) flaw that lets adversaries execute arbitrary code by crafting malicious inputs to AI models. In parallel, a zero‑click exploit was observed targeting the Claude AI system, allowing attackers

Amaranth-Dragon Leverages CVE‑2025‑8088 to Target Southeast Asian Networks

Amaranth-Dragon Leverages CVE‑2025‑8088 to Target Southeast Asian Networks

Checkpoint researchers have linked the state‑aligned threat group Amaranth‑Dragon to active exploitation of the newly disclosed CVE‑2025‑8088 flaw. The actors deployed a bespoke malware loader that chains the vulnerability to gain initial code execution on vulnerable enterprise servers, then installs a stealthy back‑door. Traffic generated

Apple Issues Emergency Patch for Actively‑Exploited dyld Zero‑Day (CVE‑2026‑20700)

Apple Issues Emergency Patch for Actively‑Exploited dyld Zero‑Day (CVE‑2026‑20700)

Apple released emergency updates for iOS, macOS, iPadOS, watchOS, and tvOS that fix a critical dyld memory‑corruption flaw (CVE‑2026‑20700). The vulnerability permits an attacker who can write to a process’s memory to corrupt the dynamic linker and execute arbitrary code with the privileges of the compromised