Sign in Subscribe

Vulnerabilities & Exploits

27
Mar

Microsoft Patches Azure AD Token‑Issuance Flaws Exploited by Ransomware

Microsoft disclosed two high‑severity vulnerabilities in Azure Active Directory that allowed attackers to issue authentication tokens without proper authorization.
26
Mar

Critical Zero‑Day in Cisco Catalyst OS Exploits SNMP for Remote Code Execution

Cisco’s latest security advisory reveals a critical zero‑day vulnerability (CVE‑2026‑XXXX) in the Catalyst network operating system.
1 min read
26
Mar

Kaseya Zero‑Day Fuels Ransomware Blitz Across MSP Networks

Kaseya disclosed that a previously unknown zero‑day flaw in its VSA remote‑management platform is being actively weaponized by
1 min read
26
Mar

Supply‑Chain Breach Hits Popular Logistics SaaS, Spreads Backdoor to Customers

FireEye’s recent investigation uncovered a sophisticated supply‑chain attack targeting a widely adopted SaaS logistics platform. Threat actors infiltrated
26
Mar

Microsoft Issues Emergency Patch for Critical Windows Kernel RCE Flaw

Microsoft’s Security Response Center released an out‑of‑band update to fix CVE‑2026‑12345, a newly disclosed vulnerability
25
Mar
Student Loan Servicer Breach Exposes 2.5M Records via Unpatched Web Portal Flaw

Student Loan Servicer Breach Exposes 2.5M Records via Unpatched Web Portal Flaw

A major student loan servicer suffered a data breach after attackers leveraged a known vulnerability in its public‑facing web
1 min read
24
Mar
Atomic Display Switching Tool Exposes Supply‑Chain Screen‑Capture Threat

Atomic Display Switching Tool Exposes Supply‑Chain Screen‑Capture Threat

A GitHub repository hosting “Atomic Display Switching,” a command‑line utility for managing multi‑monitor setups, was flagged after security
1 min read
24
Mar
Supply‑Chain Hijack: TeamPCP Backdoors LiteLLM via Corrupt Trivy Image

Supply‑Chain Hijack: TeamPCP Backdoors LiteLLM via Corrupt Trivy Image

Security researchers uncovered that the threat group TeamPCP injected malicious backdoors into recent releases of the open‑source LiteLLM library.
1 min read
24
Mar
Open‑Source Display CLI Threatens CI/CD Supply‑Chain Integrity

Open‑Source Display CLI Threatens CI/CD Supply‑Chain Integrity

The GitHub project “displayflow_cli” offers a command‑line utility for configuring multiple monitors, a feature that can be handy
1 min read
24
Mar
Stealthy IP‑KVM Abuse Uncovered: New SANS Findings Show Hidden Network Infiltration

Stealthy IP‑KVM Abuse Uncovered: New SANS Findings Show Hidden Network Infiltration

A recent SANS diary entry documents a wave of campaigns in which threat actors compromise Internet‑connected KVM (Keyboard‑Video‑
1 min read