SimpleHelp Flaw Exploited to Deploy Malware Targeting Windows, macOS, and Linux

A SimpleHelp authentication flaw is being exploited to deploy Djinn Stealer, a cross-platform malware targeting cloud, ...
SecurityWeek

Critical SimpleHelp Vulnerability Exploited for Malware Delivery

A threat actor has been exploiting CVE-2026-48558, a critical SimpleHelp vulnerability, to drop TaskWeaver and Djinn Stealer ...

Oracle Warns PeopleSoft Customers After Critical Zero-Day Exploited

Oracle issued emergency guidance for CVE-2026-35273, a critical PeopleSoft flaw exploited in a ShinyHunters-linked campaign targeting universities.

CISA warns of max severity Ubiquiti flaws exploited in attacks

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is warning of hackers actively exploiting flaws in Ubiquity ...

Cisco Unified CM flaw CVE-2026-20230 now exploited in attacks

A high-severity SSRF vulnerability, tracked as CVE-2026-20230, in Cisco Unified Communications Manager Server is now being ...
SecurityWeek

Cisco SD-WAN Zero-Day Exploited Months Before Patching

Mandiant details exploitation of CVE-2026-20245, a Cisco Catalyst SD-WAN vulnerability exploited as a zero-day months prior ...
Forbes

2 New Microsoft Defender Zero-Days Exploited—Patch Now Rolling Out

This voice experience is generated by AI. Learn more. This voice experience is generated by AI. Learn more. Microsoft and CISA confirm Defender zero-days exploited in the wild. Microsoft has started ...

New Google Chrome 149 Update Patches Exploited Zero-Day

Following the largest-ever Google Chrome security fix, a new update is now available, and one vulnerability stands out: a ...
The Hacker News

Cisco Unified CM Flaw Exploited After PoC Reveals File-Write Path to Root

Cisco Unified CM CVE-2026-20230 is under active exploitation, allowing file writes on WebDialer-enabled systems.