1. Microsoft Exchange and Windows 11 were successfully compromised by researchers using zero day vulnerabilities during the Pwn2Own Berlin 2026 event (bleepingcomputer.com).
2. The Funnel Builder WordPress plugin is being actively exploited to inject malicious JavaScript into WooCommerce checkout pages to steal credit card data (bleepingcomputer.com).
3. A critical supply chain attack targeting the TanStack library impacted two OpenAI employee devices, prompting immediate security containment and macOS updates (thehackernews.com).
4. Threat actor UNC6671 is conducting an expansive extortion campaign under the BlackFile brand using voice phishing and adversary in the middle techniques to bypass SSO defenses (cloud.google.com).
5. The Russian state sponsored group Turla has evolved its Kazuar backdoor into a modular peer to peer botnet to maintain persistent access to compromised hosts (thehackernews.com).
6. CISA has issued an emergency directive ordering federal agencies to patch a critical authentication bypass vulnerability in Cisco SD WAN systems (therecord.media).
7. A new Linux kernel vulnerability has been disclosed that could potentially lead to the theft of SSH host keys (reddit.com).
8. Researchers identified four security flaws in OpenClaw, collectively named Claw Chain, which can be chained to facilitate data theft and privilege escalation (thehackernews.com).
9. The node ipc npm package was compromised by hackers who injected credential stealing malware into new versions of the library (bleepingcomputer.com).
10. Two vulnerabilities in the Avada Builder WordPress plugin are being targeted to allow unauthorized file reading and database credential extraction (bleepingcomputer.com).
11. The crypto platform THORChain suffered a security incident resulting in the theft of approximately 10.7 million dollars from one of its vaults (therecord.media).
12. A new Linux privilege escalation vulnerability named Fragnesia has been disclosed with proof of concept code publicly available (reddit.com).
13. Motor insurance data for insured persons was exposed online due to an unprotected server belonging to insdubai.com (reddit.com).
14. Instructure reached an agreement with the ShinyHunters cybercriminal group following a significant cyberattack and subsequent outage on the Canvas platform (darkreading.com).
15. Microsoft is updating the Edge browser to stop loading clear text passwords into process memory at startup following security concerns (bleepingcomputer.com).
Be First to Comment