3:02 am – June 6, 2026 Cisco Addresses Vulnerability in Unified Communications Manager Following Publication of Exploit Code
By News RoomCisco has issued a critical patch for a vulnerability in its Unified Communications Manager (UCM) that could allow unauthenticated attackers on a network to write arbitrary files to the system, potentially leading to full root access. This critical Cisco UCM vulnerability, tracked as CVE-2026-20230, poses a significant threat to organizations…
Flaw in Claude Code GitHub Action Uncovered, Posing Repository Takeover Risk A security vulnerability has been discovered in Anthropic’s Claude Code GitHub Action, allowing attackers to potentially hijack vulnerable public repositories. The flaw, reported by security researcher RyotaK of GMO Flatt Security, could enable a malicious actor to execute arbitrary…
ThreatsDay Bulletin Details AI Agent Malfunctions, C2 Tools, ClickFix Exploits, JavaScript Backdoors, and Over 20 New Developments.
By News RoomThe cybersecurity landscape continues to present complex challenges, with a persistent blend of evolving threats and persistent vulnerabilities. This ongoing dynamic highlights the critical importance of robust security practices and continuous vigilance for organizations across all sectors. As the digital realm expands, the intricate web of threats, from sophisticated nation-state…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability affecting the Mirasvit Cache Warmer Magento extension to its Known Exploited Vulnerabilities (KEV) catalog. The move comes after reports of attackers actively exploiting the flaw, tracked as CVE-2026-45247, in the wild, posing a significant risk to e-commerce…
A startling new vulnerability has been uncovered, allowing malicious actors to potentially hijack Google Gemini’s voice assistant on Android devices through seemingly innocuous notifications. This exploit, discovered by researchers at SafeBreach, could enable attackers to gain unauthorized access to connected devices, send fake messages, initiate calls, or even subtly alter…
A significant vulnerability found in several Microsoft 365 Android applications allowed any app on a device to access sensitive user data, including emails, files, and calendar information, without requiring authentication. This critical mobile security vulnerability, dubbed “FlagLeft” by security researchers at Enclave, was caused by a development flag inadvertently left…
Research & Analysis
More Articles
New Mirai-Derived Botnet Targets Android Devices for DDoS Attacks Cybersecurity researchers have identified a new botnet derived from the notorious Mirai malware. This emerging threat, self-identifying as “xlabs_v1,” specifically targets internet-exposed devices running Android Debug Bridge (ADB) to enlist them into a network capable of launching significant distributed denial-of-service (DDoS)…
Palo Alto Networks disclosed a critical zero-day vulnerability, identified as CVE-2026-0300, which is currently being actively exploited by attackers. This memory corruption flaw impacts the authentication portal of PAN-OS, enabling unauthenticated attackers to execute code with root privileges on the vendor’s PA-Series and VM-Series firewalls. The Cybersecurity and Infrastructure Security…
Iranian State-Sponsored Hackers Muddywater Accused of “False Flag” Ransomware Attack The Iranian state-sponsored hacking group MuddyWater, also known by aliases such as Mango Sandstorm, Seedworm, and Static Kitten, has been implicated in a recent ransomware attack that cybersecurity researchers are describing as a “false flag” operation. The sophisticated cyberattack, observed…
Palo Alto Networks has issued a critical alert regarding a buffer overflow vulnerability, CVE-2026-0300, within its PAN-OS software. This flaw, which allows for unauthenticated remote code execution, has already been observed under limited exploitation in the wild, posing a significant risk to affected firewall systems. The company emphasized that the…
A sophisticated supply chain attack has compromised installers of the popular DAEMON Tools software, enabling attackers to distribute malicious payloads to unsuspecting users. Security researchers at Kaspersky have detailed how the trojanized installers, distributed directly from the official DAEMON Tools website and digitally signed, have been active since April 8,…
Apache HTTP/2 Vulnerability (CVE-2026-23918) Poses Denial-of-Service and Remote Code Execution Risks
By News RoomThe Apache Software Foundation (ASF) has issued critical security updates for its ubiquitous HTTP Server, patching a severe vulnerability that could allow attackers to execute arbitrary code on vulnerable systems. This update addresses CVE-2026-23918, a high-severity flaw discovered by security researchers that impacts how the Apache HTTP Server handles the…
A sophisticated China-nexus advanced persistent threat (APT) group, tracked as UAT-8302 by Cisco Talos, has been linked to cyber espionage campaigns targeting government entities in South America since late 2024 and government agencies in southeastern Europe throughout 2025. The group’s operations involve the deployment of custom malware families, some of…
A significant and growing security risk is emerging from the widespread adoption of AI tools and workflow automation apps, specifically concerning unmanaged OAuth tokens. Every application connected to Google or Microsoft environments by employees this year has left behind a persistent OAuth token. These tokens often lack expiration dates, automatic…
Threat actors are actively exploiting a critical security flaw in the open-source MetInfo content management system (CMS), allowing for widespread unauthorized access. The vulnerability, identified as CVE-2026-29014, poses a significant risk to websites running on affected versions of the popular platform. This critical security flaw, with a CVSS score of…
The rapid adoption of artificial intelligence (AI) infrastructure by businesses is inadvertently creating significant security vulnerabilities, jeopardizing decades of progress in software security. Companies are rushing to deploy self-hosted Large Language Models (LLMs) to gain a competitive edge and enhance productivity. However, this acceleration comes at the cost of security…
Researchers discover active exploitation of Weaver E-cology RCE flaw CVE-2026-22679 via debug API.
By News RoomA critical security vulnerability affecting Weaver E-cology, an enterprise office automation and collaboration platform, is being actively exploited by attackers, posing a significant risk to organizations worldwide. The flaw, classified as CVE-2026-22679 with a severe CVSS score of 9.8, allows for unauthenticated remote code execution, enabling malicious actors to compromise…
Microsoft has revealed a sophisticated large-scale credential theft campaign that employed convincing code of conduct-themed lures and legitimate email services to trick over 35,000 users across 13,000 organizations into visiting malicious sites and compromising their authentication tokens. This extensive phishing operation underscores the evolving tactics of cybercriminals in their pursuit…