A critical memory corruption vulnerability dubbed “Nginx-poolslip” has been discovered in Nginx web server software, potentially affecting millions of servers worldwide. The flaw enables attackers to trigger denial-of-service conditions and execute arbitrary code remotely. Organizations running vuln
The RondoDox botnet is actively exploiting CVE-2018-5999, a six-year-old critical vulnerability in ASUS routers, to compromise devices and expand its network. This authentication bypass flaw allows attackers to execute arbitrary commands remotely, converting vulnerable routers into botnet nodes for
Three critical vulnerabilities—Dirty Frag (CVE-2024-56678), Copy Fail (CVE-2024-56677), and Fragnesia (CVE-2024-56676)—expose fundamental weaknesses in Linux kernel memory management. These flaws affect packet fragmentation and copy-on-write mechanisms, potentially allowing local attackers to escala
The Ghostwriter APT group has resurfaced with a sophisticated social engineering campaign targeting Ukrainian government institutions. Attackers are leveraging compromised credentials and spoofed communications mimicking the legitimate “Vseosvita” learning platform to distribute malicious payloads.
Dutch authorities have seized approximately 800 servers from a hosting provider that allegedly facilitated widespread cybercriminal activities. The operation targeted a bulletproof hosting service that enabled attackers to launch DDoS attacks, distribute malware, and conduct phishing campaigns while
Threat actors are exploiting F5 BIG-IP appliances as entry points to compromise enterprise Linux networks. Attackers gain initial access through vulnerable BIG-IP devices, establish SSH backdoors, and pivot laterally into connected Linux infrastructure. Organizations using F5 BIG-IP in their network
A critical privilege escalation vulnerability (CVE-2026-48172) in the LiteSpeed cPanel plugin allows authenticated attackers to execute arbitrary scripts with root privileges. The flaw affects LiteSpeed Web Server installations using the cPanel integration plugin and is actively being exploited in t
A Russian-speaking threat actor successfully jailbroke Google’s Gemini AI to conduct sophisticated social engineering attacks that resulted in cryptocurrency wallet theft. The attacker leveraged the compromised AI to craft convincing phishing communications, targeting at least one victim with politi
The FBI has issued an urgent warning about Kali365, a sophisticated phishing-as-a-service (PhaaS) kit specifically designed to compromise Microsoft 365 accounts. This turnkey solution enables even low-skilled cybercriminals to launch convincing phishing campaigns that bypass multi-factor authenticat
Metasploit Framework released five new exploit modules in their May 22, 2026 update, targeting vulnerabilities across enterprise software, IoT devices, and web applications. The additions include remote code execution exploits for widely-deployed systems, providing penetration testers and red teams