A maximum-severity, unauthenticated Remote Code Execution (RCE) vulnerability has been disclosed in the Samba printing subsystem, tracked...
Cyber Attack
A sophisticated supply chain attack has compromised 42 TanStack npm packages, deploying credential-stealing malware that exfiltrates AWS,...
An emergency security update addressing five serious vulnerabilities in UniFi OS, three of which carry a perfect...
A maximum-severity zero-day vulnerability in LiteSpeed’s User-End cPanel Plugin, tracked as CVE-2026-48172 with a CVSS score of...
A sophisticated, coordinated supply chain campaign targeting PHP and JavaScript developers simultaneously. This cross-ecosystem attack infected eight...
On May 6 and May 7, 2026, threat actors successfully compromised the platform’s public infrastructure. This unauthorized...
The official JDownloader website was compromised between May 6–7, 2026, with attackers hijacking installer download links to...
A critical security flaw, tracked as CVE-2026-42569, has been disclosed in phpVMS, a popular open-source virtual airline management system,...
A high-severity authorization bypass vulnerability (CVE-2026-42297) has been discovered in Argo Workflows, a widely deployed Kubernetes-native workflow...
A critical authenticated remote command execution vulnerability (CVE-2026-3828) affecting several discontinued PoE switch models, urging users still...
