Internet Security

U.S. CISA adds Cisco SD-WAN flaws to its Known Exploited Vulnerabilities catalog

February 26, 2026 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Cisco SD-WAN flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added two Cisco SD-WAN flaws... Read more »

Hackers abused Cisco SD-WAN zero-day since 2023 to gain full admin control

February 26, 2026 add comment
Cisco SD-WAN vulnerability CVE-2026-20127 has been exploited since 2023 to gain unauthenticated admin access. A critical Cisco SD-WAN vulnerability, tracked as CVE-2026-20127 (CVSS score of 10.0), has been actively... Read more »

Google GTIG disrupted China-linked APT UNC2814 halting attacks on 53 orgs in 42 countries

February 26, 2026 add comment
Google and partners disrupted UNC2814, a suspected China-linked group that hacked 53 organizations across 42 countries. Google, with industry partners, disrupted the infrastructure of UNC2814, a suspected China-linked cyber... Read more »

Untrusted repositories turn Claude code into an attack vector

February 25, 2026 add comment
Flaws in Anthropic’s Claude Code could allow remote code execution and theft of API keys when users open untrusted repositories. Check Point Research team found multiple vulnerabilities in Anthropic’s... Read more »

Critical Zyxel router flaw exposed devices to remote attacks

February 25, 2026 add comment
Zyxel fixed a critical flaw in multiple routers that lets unauthenticated attackers remotely execute commands on vulnerable devices. Zyxel addressed a critical remote code execution vulnerability, tracked as CVE-2025-13942... Read more »

Critical Zyxel router flaw exposed devices to remote attacks

February 25, 2026 add comment
Zyxel fixed a critical flaw in multiple routers that lets unauthenticated attackers remotely execute commands on vulnerable devices. Zyxel addressed a critical remote code execution vulnerability, tracked as CVE-2025-13942... Read more »

ShinyHunters cyberattack on CarGurus impacts 12.4 Million users

February 25, 2026 add comment
ShinyHunters leaked data from 12.4M CarGurus accounts, exposing personal information from the U.S.-based auto research and shopping platform. The ShinyHunters group published personal data from over 12 million CarGurus... Read more »

Former U.S. Defense contractor executive sentenced for selling zero-day exploits to Russian broker Operation Zero

February 25, 2026 add comment
A former employee at U.S. defense contractor L3Harris got over 7 years in prison for selling eight zero-days to a Russian broker. Peter Williams, a 39-year-old Australian former L3Harris... Read more »

U.S. CISA adds a flaw in Soliton Systems K.K FileZen to its Known Exploited Vulnerabilities catalog

February 25, 2026 add comment
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a flaw in Soliton Systems K.K FileZen to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency... Read more »

Lazarus APT group deployed Medusa Ransomware against Middle East target

February 25, 2026 add comment
North Korea’s Lazarus Group used Medusa ransomware in an attack on an unnamed Middle East organization, researchers report. The North Korea-linked Lazarus APT Group, also known as Diamond Sleet... Read more »
Subscribe to our Newsletter