2:28 am – June 9, 2026 Check Point Research has issued a critical alert regarding the active exploitation of a significant vulnerability affecting Remote Access VPN and Mobile Access deployments. The flaw, identified as CVE-2026-50751, carries a high CVSS score of 9.3 and pertains to an authentication bypass within insecurely configured IKEv1 key exchange protocols. This…
A significant new threat has emerged in the software development landscape, dubbed “Mythos,” which is far more advanced than typical software vulnerabilities. Industry experts, including Dan Lorenc, CEO of Chainguard, assert that Mythos, despite initial skepticism as a mere marketing tactic, represents a fundamental shift in cyber threats. These are…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical security vulnerability affecting SolarWinds Serv-U software to its Known Exploited Vulnerabilities (KEV) catalog. This action, taken on June 6, 2026, signifies that the flaw is actively being exploited by malicious actors, prompting urgent attention from organizations reliant on…
The cybersecurity landscape is experiencing an unprecedented surge in vulnerability discovery, largely propelled by advancements in artificial intelligence. This week saw two significant developments highlighting this trend: a security startup revealed 21 previously unknown vulnerabilities in FFmpeg, a critical media library, all identified by an autonomous AI agent, while Google…
Cisco has issued a critical alert regarding a high-severity security vulnerability, CVE-2026-20182, within its Catalyst SD-WAN Manager software. This flaw has been observed to be under active exploitation, posing a significant risk to organizations relying on Cisco’s software-defined networking solutions. The vulnerability, which affects multiple deployment models including on-premises and…
A critical security vulnerability in the Everest Forms Pro WordPress plugin, affecting approximately 4,000 active installations, is being actively exploited by threat actors to execute arbitrary code, leading to full website compromise. This remote code execution (RCE) flaw, identified as CVE-2026-3300, carries a severe CVSS score of 9.8 and impacts…
Research & Analysis
More Articles
A new, highly sophisticated Linux kernel rootkit named Singularity is raising alarms within the cybersecurity community. Designed to target Linux kernel versions 6.x, this advanced malware boasts potent stealth mechanisms that significantly challenge current detection systems. Its ability to operate at the kernel level via Linux Kernel Module (LKM) architecture…
Chinese hackers are leveraging a sophisticated custom ShadowPad IIS Listener module to transform compromised servers into a resilient, distributed relay network. This advanced tactic allows the threat actors to route malicious traffic through victim infrastructure, effectively turning hacked organizations into an interconnected mesh of command-and-control nodes. This evolution in tradecraft,…
Hackers could potentially gain control of a car’s dashboard, including the ability to run applications like the classic video game Doom, by exploiting vulnerabilities in the vehicle’s modem. This alarming possibility has been highlighted by security researchers who identified a critical flaw in the System-on-Chip technology commonly used in modern…
Vulnerabilities in React2Shell prompt widespread exploitation, impacting sensitive targets.
By News RoomThe fallout from React2Shell, a critical vulnerability impacting vast portions of the internet’s infrastructure, continues to escalate. Public exploits and stealth backdoors are proliferating, revealing worrying details about the targets attackers are pursuing. Cybersecurity experts are reacting with mounting concern as cybercriminals, ransomware gangs, and nation-state threat groups actively exploit…
Operation ForumTrol, a sophisticated advanced persistent threat (APT) group, has launched a new targeted phishing campaign specifically aimed at Russian political scientists and researchers. This latest operation, which began in March 2025 with the exploitation of a zero-day vulnerability in Google Chrome (CVE-2025-2783), showcases the group’s continued focus on high-value…
SonicWall has released patches to address a critical security vulnerability impacting its Secure Mobile Access (SMA) 100 series appliances. The flaw, identified as CVE-2025-40602, has reportedly been actively exploited in the wild, posing an immediate risk to organizations relying on these devices for secure remote access. The company urges customers…
North Korean state-linked threat group Kimsuky is employing a new tactic to deliver mobile malware, weaponizing QR codes within sophisticated phishing sites that impersonate package delivery services. This evolution in their attack vectors, discovered in September 2025, aims to trick users into downloading malicious Android applications onto their smartphones, posing…
A sophisticated threat actor, previously linked to Operation ForumTroll, has resurfaced with a new wave of targeted phishing attacks aimed at individuals within Russia, according to recent findings by cybersecurity firm Kaspersky. The campaign, which began in October 2025, focuses on academics in political science, international relations, and global economics…
A sophisticated new Android malware, dubbed Cellik, has emerged, significantly raising the bar for mobile threats. Cellik is a potent Remote Access Trojan (RAT) that grants attackers complete control over a victim’s device, with a particularly alarming feature allowing malicious code to be embedded directly into legitimate applications sourced from…
A new social engineering scheme, dubbed “ClickFix,” is actively tricking users into installing the sophisticated DarkGate malware by impersonating legitimate “Word Online” error messages. This campaign represents a shift in attack vectors, moving away from automated downloads to a more hands-on approach that leverages user trust in troubleshooting procedures. Security…
Modern security operations centers (SOCs) often find themselves in a constant state of reaction, struggling to discern genuine threats amidst a deluge of alerts. With evolving attack vectors and an overwhelming volume of data, breaking free from a purely reactive defense posture is no longer a strategic advantage but a…
A concerning new trend in cybersecurity reveals that parked domains, once largely benign advertising platforms, are now overwhelmingly used to distribute malware, scams, and phishing attacks. Research indicates that approximately 90% of parked domains are actively engaged in these malicious activities, marking a significant shift in the threat landscape and…