cve-2026-3854
56 articles with this tag
✨
AI summary
Loading…
INFO
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
INFO
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
INFO
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
HIGH
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
HIGH
CRITICAL
CRITICAL
CRITICAL
CRITICAL
FCC, Github, MiniShai-hulud, Stated of Supply Chain, Itron, CRA, NIS2, and more!! - PSW #927
cPanel, WHM Release Fixes for Three New Vulnerabilities — Patch Now
TCLBANKER Banking Trojan Targets Financial Platforms via WhatsApp and Outlook Worms
Fake Call History Apps Stole Payments From Users After 7.3 Million Play Store Downloads
The Fatal 4-Byte Error That Just Broke Linux | Threat Wire
Quasar Linux RAT Steals Developer Credentials for Software Supply Chain Compromise
New Linux PamDOORa Backdoor Uses PAM Modules to Steal SSH Credentials
One Missed Threat Per Week: What 25M Alerts Reveal About Low-Severity Risk
Linux Kernel Dirty Frag LPE Exploit Enables Root Access Across Major Distributions
PCPJack Credential Stealer Exploits 5 CVEs to Spread Worm-Like Across Cloud Systems
Ivanti EPMM CVE-2026-6973 RCE Under Active Exploitation Grants Admin-Level Access
One Click, Total Shutdown: The "Patient Zero" Webinar on Killing Stealth Breaches
PAN-OS RCE Exploit Under Active Use Enabling Root Access and Espionage
PyPI Packages Deliver ZiChatBot Malware via Zulip APIs on Windows and Linux
vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution
Mirai-Based xlabs_v1 Botnet Exploits ADB to Hijack IoT Devices for DDoS Attacks
The Hacker News Launches 'Cybersecurity Stars Awards 2026' — Submissions Now Open
GitHub: Zounds, a genuinely helpful AI-assisted bug report that isn't total slop! Here, Wiz, take this wad of cash
Windows Phone Link Exploited by CloudZ RAT to Steal Credentials and OTPs
Google's Android Apps Get Public Verification to Stop Supply Chain Attacks
Palo Alto PAN-OS Flaw Under Active Exploitation Enables Remote Code Execution
DAEMON Tools Supply Chain Attack Compromises Official Installers with Malware
Critical Apache HTTP/2 Flaw (CVE-2026-23918) Enables DoS and Potential RCE
China-Linked UAT-8302 Targets Governments Using Shared APT Malware Across Regions
MetInfo CMS CVE-2026-29014 Exploited for Remote Code Execution Attacks
We Scanned 1 Million Exposed AI Services. Here's How Bad the Security Actually Is
ScarCruft Hacks Gaming Platform to Deploy BirdCall Malware on Android and Windows
Keeping Up With the OWASP GenAI Project - Scott Clinton - ASW #381
Microsoft Details Phishing Campaign Targeting 35,000 Users Across 26 Countries
Weaver E-cology RCE Flaw CVE-2026-22679 Actively Exploited via Debug API
Phishing Campaign Hits 80+ Orgs Using SimpleHelp and ScreenConnect RMM Tools
Progress Patches Critical MOVEit Automation Bug Enabling Authentication Bypass
⚡ Weekly Recap: AI-Powered Phishing, Android Spying Tool, Linux Exploit, GitHub RCE & More
Silver Fox Deploys ABCDoor Malware via Tax-Themed Phishing in India and Russia
2026: The Year of AI-Assisted Attacks
Critical cPanel Vulnerability Weaponized to Target Government and MSP Networks
CISA Adds Actively Exploited Linux Root Access Bug CVE-2026-31431 to KEV
Trellix Confirms Source Code Breach With Unauthorized Repository Access
30,000 Facebook Accounts Hacked via Google AppSheet Phishing Campaign
China-Linked Hackers Target Asian Governments, NATO State, Journalists, and Activists
Cybercrime Groups Using Vishing and SSO Abuse in Rapid SaaS Extortion Attacks
Two Cybersecurity Professionals Get 4-Year Sentences in BlackCat Ransomware Attacks
Poisoned Ruby Gems and Go Modules Exploit CI Pipelines for Credential Theft
DotNetNuke CMS vulnerability allows server compromise via malicious SVG uploads
Critical cPanel vulnerability actively exploited in the wild
PyTorch Lightning Compromised in PyPI Supply Chain Attack to Steal Credentials
New Python Backdoor Uses Tunneling Service to Steal Browser and Cloud Credentials
CISA adds ConnectWise, Microsoft flaws to KEV catalog
New Linux 'Copy Fail' Vulnerability Enables Root Access on Major Distributions
Google Fixes CVSS 10 Gemini CLI CI RCE and Cursor Flaws Enable Code Execution
GitHub vulnerability CVE-2026-3854 allows code execution with a single git push
GitHub: Woah, a genuinely helpful AI-assisted bug report that isn't total slop. Here, Wiz, take this wad of cash
GitHub fixes RCE flaw that gave access to millions of private repos
Critical GitHub RCE bug exposed millions of repositories
Critical GitHub Vulnerability Exposed Millions of Repositories
Researchers Discover Critical GitHub CVE-2026-3854 RCE Flaw Exploitable via Single Git Push