exploited

Microsoft Warns of Exchange Server Zero-Day Exploited in the Wild

Microsoft Warns of Exchange Server Zero-Day Exploited in the Wild 2026-05-15 at 15:32 By Eduard Kovacs Microsoft has shared mitigations for CVE-2026-42897 until a permanent patch can be released for affected Exchange Server versions. The post Microsoft Warns of Exchange Server Zero-Day Exploited in the Wild appeared first on SecurityWeek. This article is an excerpt […]

Microsoft Warns of Exchange Server Zero-Day Exploited in the Wild Read More »

Cisco Patches Another SD-WAN Zero-Day, the Sixth Exploited in 2026

Cisco Patches Another SD-WAN Zero-Day, the Sixth Exploited in 2026 2026-05-15 at 10:16 By Eduard Kovacs The zero-day, tracked as CVE-2026-20182, has been exploited in targeted attacks by a sophisticated threat actor identified as UAT-8616. The post Cisco Patches Another SD-WAN Zero-Day, the Sixth Exploited in 2026 appeared first on SecurityWeek. This article is an

Cisco Patches Another SD-WAN Zero-Day, the Sixth Exploited in 2026 Read More »

Hackers Targeted PraisonAI Vulnerability Hours After Disclosure

Hackers Targeted PraisonAI Vulnerability Hours After Disclosure 2026-05-14 at 12:48 By Ionut Arghire The first exploitation attempts were observed less than four hours after the authentication bypass was publicly disclosed. The post Hackers Targeted PraisonAI Vulnerability Hours After Disclosure appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Hackers Targeted PraisonAI Vulnerability Hours After Disclosure Read More »

Ivanti Patches EPMM Zero-Day Exploited in Targeted Attacks

Ivanti Patches EPMM Zero-Day Exploited in Targeted Attacks 2026-05-08 at 11:42 By Eduard Kovacs CVE-2026-6973 is a high-severity vulnerability that allows an attacker who has admin privileges to execute arbitrary code. The post Ivanti Patches EPMM Zero-Day Exploited in Targeted Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Ivanti Patches EPMM Zero-Day Exploited in Targeted Attacks Read More »

Palo Alto Zero-Day Exploited in Campaign Bearing Hallmarks of Chinese State Hacking

Palo Alto Zero-Day Exploited in Campaign Bearing Hallmarks of Chinese State Hacking 2026-05-07 at 19:01 By Eduard Kovacs The cybersecurity firm has not explicitly accused China of being behind the attack, but the evidence suggests it was.  The post Palo Alto Zero-Day Exploited in Campaign Bearing Hallmarks of Chinese State Hacking appeared first on SecurityWeek.

Palo Alto Zero-Day Exploited in Campaign Bearing Hallmarks of Chinese State Hacking Read More »

Palo Alto Networks to Patch Zero-Day Exploited to Hack Firewalls

Palo Alto Networks to Patch Zero-Day Exploited to Hack Firewalls 2026-05-06 at 09:24 By Eduard Kovacs CVE-2026-0300 affects the Captive Portal service of PAN-OS software on PA and VM series firewalls. The post Palo Alto Networks to Patch Zero-Day Exploited to Hack Firewalls appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

Palo Alto Networks to Patch Zero-Day Exploited to Hack Firewalls Read More »

MetInfo, Weaver E-cology Vulnerabilities in Attackers’ Crosshairs

MetInfo, Weaver E-cology Vulnerabilities in Attackers’ Crosshairs 2026-05-05 at 13:20 By Ionut Arghire The security defects allow unauthenticated, remote attackers to execute arbitrary code through crafted requests. The post MetInfo, Weaver E-cology Vulnerabilities in Attackers’ Crosshairs appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

MetInfo, Weaver E-cology Vulnerabilities in Attackers’ Crosshairs Read More »

Exploitation of ‘Copy Fail’ Linux Vulnerability Begins

Exploitation of ‘Copy Fail’ Linux Vulnerability Begins 2026-05-04 at 14:30 By Ionut Arghire CISA has added the bug to its KEV list, and Microsoft has observed limited exploitation, mainly associated with PoC testing. The post Exploitation of ‘Copy Fail’ Linux Vulnerability Begins appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

Exploitation of ‘Copy Fail’ Linux Vulnerability Begins Read More »

Over 40,000 Servers Compromised in Ongoing cPanel Exploitation

Over 40,000 Servers Compromised in Ongoing cPanel Exploitation 2026-05-04 at 13:11 By Ionut Arghire The attacks likely target CVE-2026-41940, a recently patched zero-day leading to administrative access. The post Over 40,000 Servers Compromised in Ongoing cPanel Exploitation appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Over 40,000 Servers Compromised in Ongoing cPanel Exploitation Read More »

Critical cPanel & WHM Vulnerability Exploited as Zero-Day for Months

Critical cPanel & WHM Vulnerability Exploited as Zero-Day for Months 2026-04-30 at 14:51 By Ionut Arghire The authentication bypass flaw allows attackers to gain administrative access to vulnerable servers. The post Critical cPanel & WHM Vulnerability Exploited as Zero-Day for Months appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Critical cPanel & WHM Vulnerability Exploited as Zero-Day for Months Read More »

Incomplete Windows Patch Opens Door to Zero-Click Attacks

Incomplete Windows Patch Opens Door to Zero-Click Attacks 2026-04-27 at 20:43 By Ionut Arghire The initial vulnerability was exploited by Russia-linked APT28 in attacks against Ukraine and EU countries. The post Incomplete Windows Patch Opens Door to Zero-Click Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Incomplete Windows Patch Opens Door to Zero-Click Attacks Read More »

Recent Microsoft Defender Vulnerability Exploited as Zero-Day

Recent Microsoft Defender Vulnerability Exploited as Zero-Day 2026-04-23 at 12:17 By Ionut Arghire The flaw allows attackers to access the SAM database, extract NTLM hashes, and gain System privileges. The post Recent Microsoft Defender Vulnerability Exploited as Zero-Day appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Recent Microsoft Defender Vulnerability Exploited as Zero-Day Read More »

Organizations Warned of Exploited Cisco, Kentico, Zimbra Vulnerabilities

Organizations Warned of Exploited Cisco, Kentico, Zimbra Vulnerabilities 2026-04-21 at 15:29 By Ionut Arghire CISA expanded the KEV catalog with eight flaws, but five of them have been flagged as exploited before. The post Organizations Warned of Exploited Cisco, Kentico, Zimbra Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

Organizations Warned of Exploited Cisco, Kentico, Zimbra Vulnerabilities Read More »

Hackers Fail to Exploit Flaw in Discontinued TP-Link Routers

Hackers Fail to Exploit Flaw in Discontinued TP-Link Routers 2026-04-20 at 11:16 By Ionut Arghire In-the-wild exploitation has been ongoing for a year, but no successful payload execution has been observed. The post Hackers Fail to Exploit Flaw in Discontinued TP-Link Routers appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

Hackers Fail to Exploit Flaw in Discontinued TP-Link Routers Read More »

Recent Apache ActiveMQ Vulnerability Exploited in the Wild

Recent Apache ActiveMQ Vulnerability Exploited in the Wild 2026-04-17 at 14:32 By Eduard Kovacs The remote code execution vulnerability tracked as CVE-2026-34197 came to light in early April. The post Recent Apache ActiveMQ Vulnerability Exploited in the Wild appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Recent Apache ActiveMQ Vulnerability Exploited in the Wild Read More »

Exploited Vulnerability Exposes Nginx Servers to Hacking

Exploited Vulnerability Exposes Nginx Servers to Hacking 2026-04-15 at 17:48 By Eduard Kovacs Hackers are exploiting CVE-2026-33032, a critical remote takeover vulnerability in the Nginx UI management tool.  The post Exploited Vulnerability Exposes Nginx Servers to Hacking appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Exploited Vulnerability Exposes Nginx Servers to Hacking Read More »

Microsoft Patches Exploited SharePoint Zero-Day and 160 Other Vulnerabilities

Microsoft Patches Exploited SharePoint Zero-Day and 160 Other Vulnerabilities 2026-04-14 at 22:26 By Eduard Kovacs Experts say this is the second-largest Microsoft Patch Tuesday ever based on CVE count. The post Microsoft Patches Exploited SharePoint Zero-Day and 160 Other Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Microsoft Patches Exploited SharePoint Zero-Day and 160 Other Vulnerabilities Read More »

Organizations Warned of Exploited Windows, Adobe Acrobat Vulnerabilities

Organizations Warned of Exploited Windows, Adobe Acrobat Vulnerabilities 2026-04-14 at 12:00 By Ionut Arghire The security defects allow attackers to escalate privileges and execute arbitrary code remotely. The post Organizations Warned of Exploited Windows, Adobe Acrobat Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Organizations Warned of Exploited Windows, Adobe Acrobat Vulnerabilities Read More »

Adobe Patches Reader Zero-Day Exploited for Months

Adobe Patches Reader Zero-Day Exploited for Months 2026-04-12 at 10:57 By Eduard Kovacs The vulnerability is tracked as CVE-2026-34621 and Adobe has confirmed that it can be exploited for arbitrary code execution. The post Adobe Patches Reader Zero-Day Exploited for Months appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Adobe Patches Reader Zero-Day Exploited for Months Read More »

Critical Marimo Flaw Exploited Hours After Public Disclosure

Critical Marimo Flaw Exploited Hours After Public Disclosure 2026-04-10 at 14:45 By Ionut Arghire Within nine hours, a hacker built an exploit from the unauthenticated bug’s advisory and started using it in the wild. The post Critical Marimo Flaw Exploited Hours After Public Disclosure appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

Critical Marimo Flaw Exploited Hours After Public Disclosure Read More »

Scroll to Top