Active Exploitation Alert
249 posts | Page 1 of 11
Active Exploitation Alert
Active Exploitation Alert: AI-Assisted Zero-Day Targeting Erlang SSH Library (CVE-2025-32433) Outpaces Vulnerability Scanners
Active Exploitation Alert
Active Exploitation Alert: GPU Mining Malware Targeting Windows Systems via SEO Poisoning and AI Chatbot Recommendations
Active Exploitation Alert
Active Exploitation Alert: Grandoreiro Banking Trojan and BTMOB RAT Targeting Windows and Android Users in Global Financial Malware Campaigns
Active Exploitation Alert
Active Exploitation of CVE-2026-5426 in KnowledgeDeliver LMS Enables Godzilla (BLUEBEAM) Web Shell and Cobalt Strike Attacks
Active Exploitation Alert
Active Exploitation Alert: Ghost CMS CVE-2026-26980 Mass Attack Hijacks 700+ Sites for ClickFix Malware Campaigns
Active Exploitation Alert
TrapDoor Supply Chain Attack Actively Exploiting npm, PyPI, and CratesIO to Steal Developer Credentials in Crypto, DeFi, Solana, and AI Sectors
Active Exploitation Alert
Active Exploitation Alert: Lazarus Group Targets Financial and Crypto Firms with RemotePE Memory-Only RAT
Active Exploitation Alert
Critical Active Exploitation Alert: CVE-2026-48172 in LiteSpeed cPanel Plugin Enables Root Privilege Escalation
Active Exploitation Alert
Active Exploitation Alert: Laravel Lang PHP Packages Compromised in Supply Chain Attack to Deploy Credential-Stealing Malware
Active Exploitation Alert
Active Exploitation Alert: Underminr Vulnerability in Major CDN Providers Enables Attackers to Hide Malicious Traffic Behind Trusted Domains
Active Exploitation Alert
Microsoft Defender Zero-Day Vulnerabilities RedSun and UnDefend Actively Exploited on Windows 10, 11, and Server (April 2026 CVE Analysis)
Active Exploitation Alert
CVE-2026-42897 Zero-Day Analysis: Microsoft Exchange Server OWA XSS Vulnerability Exploited in the Wild
Active Exploitation Alert
PoC Code Published for Critical NGINX and Ingress-NGINX Vulnerabilities (CVE-2026-42945 & CVE-2025-1974): Remote Code Execution Risk for Web Servers and Kubernetes Clusters
Active Exploitation Alert
Funnel Builder Plugin Vulnerability Actively Exploited: WooCommerce Checkout Skimming Puts 40,000+ WordPress Sites at Risk
Active Exploitation Alert
CVE-2026-41940: Active Exploitation of cPanel/WHM Authentication Bypass to Deploy Filemanager Backdoor
Active Exploitation Alert
UAE Cyber Threat Landscape 2026: AI-Driven Attacks, Ransomware Surge, and Exploited Vulnerabilities in Ivanti, Microsoft, and Cisco Systems
Active Exploitation Alert
Critical DAEMON Tools Supply Chain Attack: Malware-Compromised Windows Installers Threaten Organizations and Home Users (Versions 12.5.0.2421–12.5.0.2434)
Active Exploitation Alert
ConsentFix v3: Automated OAuth Abuse Targets Microsoft Azure and Entra ID, Bypassing MFA and Conditional Access
Active Exploitation Alert
CVE-2026-42208: Critical Pre-Auth SQL Injection in LiteLLM Actively Exploited Within 36 Hours of Disclosure
Active Exploitation Alert
Critical Authenticated Remote Code Execution Vulnerability in JuzaWeb CMS 3.4.2 (CVE-2025-5425) – Exploit in the Wild and Mitigation Guidance
Active Exploitation Alert
BlueNoroff APT Targets Crypto and Web3 Firms with AI Deepfakes and Fake Zoom Malware on macOS
Active Exploitation Alert
Firestarter Backdoor Malware Targets Cisco ASA and FTD Firewalls, Survives Updates and Security Patches
Active Exploitation Alert
CVE-2026-33626: Critical SSRF Vulnerability in LMDeploy Rapidly Exploited in the Wild — Technical Analysis and Mitigation Guide
Active Exploitation Alert