Security Intelligence

Actively exploited PTC Windchill flaw allows unauthenticated RCE

A critical flaw in PTC Windchill and FlexPLM allows unauthenticated remote code execution, giving attackers persistent...

Security Intelligence

Update: FortiBleed exposes Fortinet credentials at global scale

New research shows that FortiBleed operates as a continuous credential harvesting and validation system, not just a...

Security Intelligence

Klue integration breach exposes Salesforce customer data

A breach at Klue in June 2026 exposed how a compromised SaaS integration can be used to access multiple Salesforce...

Security Intelligence

F5 patches critical NGINX flaws affecting edge infrastructure

F5 released updates on June 17, to fix two critical NGINX vulnerabilities that allow remote, unauthenticated...

Security Intelligence

FortiBleed exposes Fortinet credentials at global scale

Researchers validated the FortiBleed dataset, exposing potentially valid credentials for approx. 75,000 Fortinet...

Security Intelligence

Exploited Splunk vulnerability could allow RCE on exposed systems

Active exploitation of CVE‑2026‑20253 began within days of disclosure, targeting exposed Splunk Enterprise systems that...

Security Intelligence

SimpleHelp flaw could enable broader compromise across managed environments

A critical auth. bypass flaw in SimpleHelp allows unauthenticated adversaries to create privileged technician accounts...

Security Intelligence

China-nexus actor abuses domain-level compliance rules

A threat actor used domain-level content compliance rules to exfiltrate email comms, turning a built-in control into an...

Security Intelligence

Update: ShinyHunters used zero‑day to breach PeopleSoft environments

ShinyHunters’ exploitation of Oracle PeopleSoft is confirmed to involve a zero‑day in the Environment Management Hub...

Security Intelligence

ShinyHunters target Oracle PeopleSoft in large-scale data theft campaign

ShinyHunters is conducting large-scale data theft operations against Oracle PeopleSoft by combining multiple flaws with...

Security Intelligence

Langflow flaw under active exploitation with no patch available

An actively exploited zero-day in Langflow can lead to full system compromise if not contained. The issue remains...

Security Intelligence

UniFi OS flaws: New findings reveal broader impact and silent exploitation path

UniFi OS flaws allow full control of the system with a single unauthenticated request, resulting in a much broader...