top of page
Advisory Date | Advisory Name | Severity Level |
|---|---|---|
April 30th, 2026 | Padding Oracle Vulnerability in Apache Tomcat EncryptInterceptor (CVE-2026-29146) | High |
May 08th, 2026 | Local Privilege Escalation via Linux Kernel AF_ALG Page Cache Corruption (CVE-2026-31431) | High |
April 29th, 2026 | Checkmarx and Bitwarden CLI Supply Chain Compromise Deploys Credential-Stealing Malware Across Developer Environments | Critical |
April 28th, 2026 | Fortinet FortiOS Authentication Bypass Actively Exploited (CVE-2026-35616) | Critical |
April 23rd, 2026 | Authorization Bypass Vulnerability in Moby (Docker Engine) – "CVE-2026-34040" | High |
April 21st, 2026 | Windows Defender Local Privilege Escalation Vulnerability Actively Exploited (CVE-2026-33825) | High |
April 14th, 2026 | Stored XSS Vulnerability in Jira Work Management Leading to Organization Takeover | High |
April 11th, 2026 | Qilin Ransomware Deploys Multi-Stage EDR Killer to Neutralize Endpoint Defenses | High |
April 8th, 2026 | Axios npm Supply Chain Attack: WAVESHAPER.V2 Backdoor Delivered via Compromised Package | High |
April 1st, 2026 | Critical Citrix NetScaler ADC & Gateway Vulnerabilities (CVE‑2026‑3055, CVE‑2026‑4368) | Critical |
March 27th, 2026 | CanisterWorm: Compromised npm Publisher Allows Worm Propagation in Supply Chain Attack | High |
March 26th, 2026 | Critical Unauthenticated Remote Code Execution in Oracle Fusion Middleware (CVE-2026-21992) | Critical |
March 19th, 2026 | AI-Augmented Credential Abuse Campaign Targets Internet-Exposed Fortinet FortiGate Management Interfaces [UPDATED INFORMATION] | Critical |
March 17th, 2026 | Microsoft Teams Impersonation Campaign Deploying A0Backdoor via Social Engineering and DLL Sideloading | High |
March 13th, 2026 | Actively Exploited Command Injection in VMware Aria Operations (CVE-2026-22719) | High |
March 11th, 2026 | VIP Keylogger MaaS Campaign Leverages Steganography and In-Memory Execution for Credential Theft | High |
March 10th, 2026 | Stealthy Dohdoor Backdoor Campaign Targeting U.S. Education and Healthcare via DNS-over-HTTPS | High |
March 6th, 2026 | Impersonated Zoom & Google Meet Phishing Campaigns Deploy Stealthy Surveillance Software | High |
March 6th, 2026 | Conflict-Driven Cyber Activity Escalates Following Operations Epic Fury and Roaring Lion | High |
February 27th, 2026 | Active Exploitation of Cisco Catalyst SD-WAN Authentication Bypass (CVE-2026-20127) Grants Administrative Control | Critical |
February 27th, 2026 | Architectural Weaknesses in Cloud Password Managers Under Malicious-Server Threat Model | High |
February 26th, 2026 | Privilege Escalation Vulnerability in Microsoft Windows Admin Center (CVE-2026-26119) | High |
February 25th, 2026 | AI-Augmented Credential Abuse Campaign Targeting Fortinet FortiGate Devices | High |
February 20th, 2026 | Google Chrome V8 Zero-Day Under Active Exploitation (CVE-2026-2441) | High |
February 18th, 2026 | Windows 11 Notepad Remote Code Execution Vulnerability (CVE-2026-20841) | High |
February 13th, 2026 | Critical Pre-Authentication Remote Code Execution Vulnerability in BeyondTrust RS & PRA (CVE-2026-1731) | Critical |
February 12th, 2026 | Active Exploitation of Critical Ivanti EPMM Zero-Day Vulnerabilities (CVE-2026-1281, CVE-2026-1340) | Critical |
February 11th, 2026 | Active Ransomware Exploitation of VMware ESXi Vulnerability (CVE-2025-22225) | High |
February 10th, 2026 | Critical FortiClientEMS Vulnerability Allows Unauthenticated Remote Code Execution (CVE-2026-21643) | Critical |
February 6th, 2026 | Osiris Ransomware Campaign Using BYOVD for Defense Evasion and Double Extortion | High |
February 6th, 2026 | Microsoft Office Zero Day Actively Exploited via Security Feature Bypass Vulnerability (CVE 2026 21509) | High |
February 3rd, 2026 | Critical RCE Vulnerability in Python PLY via Unsafe Pickle Deserialization (CVE-2025-56005) | Critical |
February 2nd, 2026 | Cisco Unified Communications Zero-Day RCE Actively Exploited in the Wild (CVE-2026-20045) | Critical |
January 29th, 2026 | Malicious Chrome Extensions Target Enterprise HR Platforms for Credential Theft | High |
January 27th, 2026 | Critical vCenter Server RCE Vulnerability (CVE-2024-37079) Actively Exploited in the Wild | Critical |
January 27th, 2026 | Active Proxyjacking Campaign Leveraging Trojanized Notepad++ Installers | High |
January 23rd, 2026 | Active Exploitation of Windows Desktop Window Manager Zero-Day (CVE-2026-20805) | Medium |
January 23rd, 2026 | CrashFix Malicious Browser Extension Campaign Leading to ModeloRAT Infections | High |
January 22nd, 2026 | GitLab CE/EE Vulnerabilities Allow 2FA Bypass and DoS Attacks on Self-Managed Instances | High |
January 22nd, 2026 | ValleyRAT_S2 Campaign Leveraging DLL Side-Loading and Custom TCP Command-and-Control | High |
January 19th, 2026 | High-Severity Remote Code Execution Vulnerability in Fortinet FortiOS and FortiSwitchManager (CVE-2025-25249) | High |
January 15th, 2026 | PHALT#BLYX ClickFix Campaign Exploits Fake Booking.com Errors and Windows Blue Screen of Death to Deploy DCRat | High |
January 9th, 2026 | Multiple Critical n8n Vulnerabilities Allow Sandbox Escape, Arbitrary File Access, and RCE | Critical |
January 6th, 2026 | RondoDoX Botnet Weaponizes React2Shell (CVE-2025-55182) for Mass Exploitation of React and Next.js Infrastructure | Critical |
January 5th, 2026 | Critical Authentication Bypass Vulnerability in IBM API Connect (CVE-2025-13915) | Critical |
January 2nd, 2026 | Tax-Themed Phishing Campaign in India Delivers ValleyRAT via DLL Hijacking | High |
December 31st, 2025 | MongoBleed: Pre-Authentication Memory Disclosure in MongoDB Server (CVE-2025-14847) | High |
December 26th, 2025 | Active Exploitation of Apple WebKit Zero-Days (CVE-2025-43529 & CVE-2025-14174) | High |
December 26th, 2025 | OAuth Device Code Phishing Campaigns Target Microsoft 365 for Covert Account Takeovers | High |
December 26th, 2025 | Critical Cisco AsyncOS Zero-Day (CVE-2025-20393) Actively Exploited to Gain Root-Level Access on Secure Email Appliances | Critical |
December 18th, 2025 | Active Exploitation of Critical Fortinet SAML Authentication Bypass (CVE-2025-59718, CVE-2025-59719) | Critical |
December 17th, 2025 | Critical XXE Vulnerability in Apache Tika Allows Data Exposure via Malicious PDFs (CVE-2025-66516) | Critical |
December 12th, 2025 | MuddyWater Cyber-Espionage Campaign Deploys MuddyViper Backdoor via Fooder Loader | High |
December 10th, 2025 | PRC State Actors Deploy BRICKSTORM Backdoor Against VMware Virtualization Environments | High |
December 8th, 2025 | React2Shell: Critical React Server Components RCE Exploited in the Wild (CVE-2025-55182) | Critical |
December 5th, 2025 | Critical Apache bRPC JSON Parsing Vulnerability Allows Remote, Unauthenticated DoS (CVE-2025-59789) | Critical |
December 5th, 2025 | ToddyCat Expands Toolset With PowerShell TomBerBil for Microsoft 365 Token Theft | High |
December 4th, 2025 | Shai-Hulud Supply-Chain Attack: Multi-Wave npm Compromise Allows Automated Credential Theft and Worm-Style Propagation | High |
November 26th, 2025 | Critical Authentication Bypass in Microsoft Azure Bastion Allows Remote Administrative Access (CVE-2025-49752) | Critical |
November 26th, 2025 | Unauthorized Salesforce Data Access via Compromised Gainsight OAuth Integrations | High |
November 24th, 2025 | 7-Zip Symbolic-Link Vulnerability Allows Arbitrary Code Execution on Windows (CVE-2025-11001) | High |
November 21st, 2025 | Active Exploitation of Critical FortiWeb Authentication Bypass (CVE-2025-64446) | Critical |
November 18th, 2025 | Malicious LNK Campaign Deploys MastaStealer via MSI-Based Payloads | High |
November 18th, 2025 | AppleScript-Based Malware Campaign Bypasses Gatekeeper to Deliver macOS Stealers | High |
November 14th, 2025 | Chrome V8 Engine Vulnerability (CVE-2025-13042) Exposes Users to Memory Corruption via Crafted Web Content | High |
November 14th, 2025 | High-Severity runC Vulnerabilities Create Pathways for Container Escape and Host Compromise | High |
November 13th, 2025 | GlassWorm Resurfaces Through Malicious VS Code Extensions on Open VSX | Critical |
November 11th, 2025 | Whisper Leak: Side-Channel Attack Exposes AI Chat Topics From Encrypted Traffic | High |
November 10th, 2025 | Critical WSUS Deserialization Vulnerability Exploited for SYSTEM-Level Compromise (CVE-2025-59287) | Critical |
November 7th, 2025 | Active Exploitation of Windows SMB Client Vulnerability Allows SYSTEM-Level Privilege Escalation (CVE-2025-33073) | High |
November 7th, 2025 | Jira Arbitrary File Write Vulnerability Threatens System Integrity (CVE-2025-22167) | High |
October 31st, 2025 | eBPF-Based “LinkPro” Linux Rootkit Deployed via Jenkins Exploitation and Malicious Docker Image | Critical |
October 31st, 2025 | Critical Vulnerability in OpenAI ChatGPT Atlas Allows Persistent Memory Injection and Code Execution | Critical |
October 30th, 2025 | Phishing Campaign Abuses Microsoft Azure Blob Storage for Credential Theft | High |
October 28th, 2025 | PhantomVAI Loader: Steganography-Driven Infostealer Delivery Campaign Targets Critical Sectors | High |
October 27th, 2025 | Authentication Vulnerability in FortiPAM and FortiSwitch Manager Exploited in Targeted Attacks (CVE-2025-49201) | Critical |
October 24th, 2025 | VS Code Extension Ecosystem Targeted by TigerJack and Mass Credential Exposure | High |
October 23rd, 2025 | Astaroth Banking Trojan Exploits GitHub and Ngrok To Evade Detection And Maintain Persistence | Medium |
October 21st, 2025 | Yurei Ransomware Uses Double-Extortion Tactics to Target Windows Networks | High |
October 16th, 2025 | Critical Authentication Bypass in WordPress Service Finder Bookings Plugin (CVE-2025-5947) | Critical |
October 15th, 2025 | APT Espionage Group “Phantom Taurus” Deploys NET-STAR To Compromise IIS and Exfiltrate SQL Data | Critical |
October 15th, 2025 | “Detour Dog” Exploits DNS TXT Records to Deliver Strela Stealer Malware | High |
October 13th, 2025 | Critical Local Privilege Escalation Vulnerability in Sudo Under Active Exploitation (CVE-2025-32463) | Critical |
October 10th, 2025 | AWS Client VPN macOS Vulnerability Allows Root Privilege Escalation (CVE-2025-11462) | Critical |
October 9th, 2025 | Malvertising Campaign Delivers “Oyster” Backdoor via Weaponized Microsoft Teams Installers | High |
October 8th, 2025 | ClickFix COLDRIVER’s Fake Turnstile Lure Delivers BAITSWITCH and SIMPLEFIX | High |
October 8th, 2025 | Malicious postmark-mcp npm Package Allows Email Exfiltration via MCP Ecosystem | High |
October 6th, 2025 | Critical Microsoft Entra ID “Actor Token” Vulnerability (CVE-2025-55241) | Critical |
October 6th, 2025 | Oracle E-Business Suite Zero-Day Exploited in Clop Data Theft Attacks (CVE-2025-61882) | Critical |
October 3rd, 2025 | Oracle Database Scheduler Exploited for Command Execution and Ransomware Deployment | High |
October 2nd, 2025 | Zero-Day Vulnerability Exploited in Cisco IOS and IOS XE SNMP (CVE-2025-20352) | High |
September 30th, 2025 | Actively Exploited Cisco ASA / FTD Zero-Days (ArcaneDoor Campaign) | Critical |
September 25th, 2025 | Self-Replicating Worm Targets npm Packages (Shai-Hulud) | High |
September 25th, 2025 | ShadowV2 Botnet Exploits Misconfigured Docker Containers for DDoS-for-Hire | High |
September 23rd, 2025 | Zero-Day Exploit in Google Chrome’s V8 JavaScript and WebAssembly Engine (CVE-2025-10585) | High |
September 19th, 2025 | Threat Actors Impersonate Microsoft Teams to Deliver Odyssey macOS Stealer Via Clickfix | High |
September 18th, 2025 | FileFix Campaign Uses Steganography to Deliver StealC Infostealer | High |
September 18th, 2025 | Critical SAP S/4HANA Vulnerability (CVE-2025-42957) Actively Targeted by Threat Actors | Critical |
September 16th, 2025 | UNC6384 Hackers Leverage Valid Code Signing Certificates to Evade Detection | High |
September 12th, 2025 | npm Supply-Chain Attack via Phishing Campaign | High |
bottom of page