6:30 pm – June 15, 2026 The cybersecurity landscape continues to be a battleground of innovation and exploitation, with attackers consistently finding new ways to leverage existing vulnerabilities and emerging technologies. This week’s recap highlights a series of concerning trends, from actively exploited zero-days in widely used software to the sophisticated abuse of phishing kits and…
Palo Alto Networks VPN vulnerability, identified as CVE-2026-0257, is being actively exploited by an unknown threat actor to gain unauthorized access to GlobalProtect portals. The critical authentication bypass flaw, which affects the portal and gateway components of PAN-OS software, carries a CVSS score of 7.8 and allows malicious actors to…
Splunk has issued critical security updates to address CVE-2026-20253, a severe vulnerability in Splunk Enterprise that allows unauthenticated users to perform arbitrary file operations and potentially achieve remote code execution. Rated 9.8 on the CVSS scoring system, the flaw presents a significant risk to enterprise environments utilizing the affected software.…
U.S. law enforcement agencies, in collaboration with international partners, have seized multiple internet domains alleged to have hosted nonconsensual AI-generated pornography. The operation targeted websites that specialized in creating and distributing digitally altered images and videos of women without their consent. The domains, CFAKE.com and SOCFAKE.com, are accused of publishing…
Cybersecurity researchers have unveiled a novel attack technique, dubbed “Agentjacking,” that subverts artificial intelligence (AI) coding agents, compelling them to execute arbitrary code on developer workstations. This groundbreaking vulnerability exploits a fundamental architectural weakness at the intersection of error tracking platforms and AI agents, potentially granting attackers unfettered access to…
The cybercriminal group ShinyHunters has been actively exploiting a critical vulnerability in Oracle PeopleSoft, a widely used enterprise resource planning (ERP) system. This zero-day exploit, identified as CVE-2026-35273, allows attackers to gain unauthorized access, exfiltrate sensitive data, and then demand ransom payments to prevent its public release. The campaign has…
Research & Analysis
More Articles
The cybersecurity landscape continues its relentless evolution, with a notable surge in rapid exploitation of critical vulnerabilities and sophisticated attacks targeting both established systems and emerging technologies. This past week saw a critical flaw in a widely used web framework rapidly weaponized, a significant influx of AI-powered tools becoming targets…
Recent security research has unveiled significant vulnerabilities within the Proxmox Virtual Environment, detailing how attackers can leverage “living off the hypervisor” techniques to execute stealthy attacks. This analysis by Andy Gill exposes previously unknown exploitation paths that enable adversaries to gain unauthorized access, move laterally across virtual machines, and extract…
A critical security flaw within the WordPress Sneeit Framework plugin, identified as CVE-2025-6389, is currently being actively exploited in the wild. This remote code execution vulnerability poses a significant threat, with a CVSS score of 9.8, affecting all versions of the plugin up to and including 8.3. A patch was…
Predator Spyware Firm Exploited 15 Zero-Day Vulnerabilities Against iOS Users Since 2021
By News RoomA commercial spyware firm, Intellexa, has been identified as exploiting 15 zero-day vulnerabilities since 2021 to target users of both iOS and Android devices globally. This aggressive exploitation makes Intellexa one of the most active companies leveraging unknown security flaws in mobile browsers. Despite U.S. government sanctions, the company continues…
MuddyWater Employs UDPGangster Backdoor in Targeted Campaign Against Turkey, Israel, and Azerbaijan
By News RoomThe Iranian state-sponsored hacking group known as MuddyWater has been observed employing a new backdoor, dubbed UDPGangster, which utilizes the User Datagram Protocol (UDP) for its command-and-control (C2) communications. This sophisticated malware targets users in Turkey, Israel, and Azerbaijan, enabling remote control over compromised systems by executing commands, exfiltrating sensitive…
Several AI coding tools, including GitHub Copilot, Gemini CLI, and Claude, exhibit critical vulnerabilities affecting millions of users.
By News RoomMillions of software developers are at risk due to a newly discovered class of critical vulnerabilities, dubbed “IDEsaster,” affecting popular AI-powered coding tools like GitHub Copilot, Gemini CLI, and Claude. These vulnerabilities exploit the integration of AI agents directly into legacy Integrated Development Environment (IDE) architectures, extending the attack surface…
A Kuwait Ministry of Interior research team has won the prestigious Prince Naif bin Abdulaziz Security Research Award at the GCC level for their study on the security implications of social media. This recognition underscores the escalating concern across Gulf Cooperation Council states regarding the impact of online platforms on…
Researchers Discover Over 30 Vulnerabilities in AI Coding Tools Posing Data Theft and Remote Code Execution Risks
By News RoomAI IDE Security Vulnerabilities Unleash “IDEsaster” Threat: Data Exfiltration and RCE Now a Reality Security researchers have uncovered over thirty critical vulnerabilities within popular AI-powered Integrated Development Environments (IDEs), collectively dubbed “IDEsaster.” These flaws create new attack vectors that combine prompt injection techniques with legitimate IDE features, enabling attackers to…
CISA Adds React2Shell Vulnerability to Known Exploited Vulnerabilities List Following Confirmed Exploitation
By News RoomThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) has officially added a critical security flaw affecting React Server Components (RSC) to its Known Exploited Vulnerabilities (KEV) catalog. This critical vulnerability, designated CVE-2025-55182, has a CVSS score of 10.0 and is also tracked as React2Shell. Reports indicate that the flaw is…
Russian threat actors are actively employing sophisticated phishing campaigns that impersonate prominent European security events. These attacks aim to steal cloud credentials by luring unsuspecting targets with seemingly legitimate invitations. The campaigns, identified by Volexity security analysts, are linked to a Russian group known as UTA0355. The attackers are meticulously…
Hackers Employ CastleRAT Malware to Compromise Windows Systems and Establish Remote Access
By News RoomA new and sophisticated threat known as CastleRAT malware is actively targeting Windows systems, allowing attackers to gain extensive remote access. First observed around March 2025, this Remote Access Trojan (RAT) poses a significant risk to users worldwide. Security researchers have identified its presence and are warning organizations to bolster…
MuddyWater Hackers Deploy UDPGangster Backdoor Against Windows, Evading Network Defenses
By News RoomMuddyWater hackers are employing a new UDP-based backdoor, dubbed UDPGangster, in a series of sophisticated attacks targeting Windows systems across the Middle East. This advanced malware grants attackers extensive remote control over compromised machines, allowing for data exfiltration and the deployment of additional malicious payloads while deliberately evading traditional network…