Security Intelligence

February 2026 Microsoft updates include six exploited flaws

Microsoft’s February 2026 Patch Tuesday fixes 59 vulnerabilities, including six actively exploited flaws enabling...

Security Intelligence

BeyondTrust addresses critical pre‑auth RCE vulnerability

BeyondTrust has disclosed a critical pre-auth RCE vulnerability (CVE-2026-1731) impacting Remote Support and Privileged...

Security Intelligence

Global espionage operation employs eBPF rootkit targeting Linux systems

A global espionage campaign targeting government and critical infrastructure uses obfuscated web shells, a custom eBPF...

Security Intelligence

POC available for critical n8n remote command execution flaw

A critical n8n vulnerability with a public proof of concept allows authenticated users to execute system-level commands...

Security Intelligence

CISA flags critical SolarWinds vulnerability as exploited

CISA has confirmed active exploitation of a critical remote code execution vulnerability in SolarWinds Web Help Desk,...

Security Intelligence

Update: Chinese state‑linked actors compromised Notepad++ update infrastructure

Chinese state-linked attackers compromised Notepad++ update infrastructure, delivering malicious installers via a...

Security Intelligence

Chinese state‑linked actors compromised Notepad++ update infrastructure

Chinese state-linked attackers compromised Notepad++ update infrastructure, delivering malicious installers via a...

Security Intelligence

Critical Ivanti EPMM vulnerabilities under active exploitation

Critical Ivanti EPMM vulnerabilities are under active exploitation, allowing unauthenticated remote code execution &...

Security Intelligence

Quick, You Need Assistance!

Field Effect has been tracking a Microsoft Teams vishing campaign leveraging Quick Assist to deliver a PowerShell...

Security Intelligence

Public PoC and probing reported for max‑severity Oracle Proxy flaw

Maximum-severity Oracle WebLogic vulnerability (CVE-2026-21962) is being actively probed, enabling unauthenticated...

Security Intelligence

Microsoft releases emergency patch for exploited Office flaw

Microsoft has issued an emergency patch for an actively exploited Office vulnerability that bypasses OLE protections...

Security Intelligence

CISA adds six new flaws to its KEV catalog

Multiple high-severity CVEs are being exploited in the wild, impacting enterprise infrastructure and developer...