LiteSpeed Plugin Flaw Gives Hosting Admins Another Headache A critical vulnerability (CVE-2026-48172) has been identified in a LiteSpeed cPanel plugin, potentially allowing attackers to compromise hosting environments remotely. The flaw impacts systems running vulnerable plugin versions and could lead to unauthorised access or server compromise. Hosting providers and administrators are strongly advised to apply patches […]
“Trapdoor” Shows Why Trusted Software Isn’t Always Trustworthy Researchers have uncovered a supply chain malware campaign named “Trapdoor”, where attackers compromised trusted software distribution channels to deliver malicious payloads to downstream users. The attack leveraged legitimate update mechanisms and trusted software packages, making detection significantly more difficult. Once installed, the malware enabled remote access, persistence, […]
Lazarus Deploys RemotePE Malware North Korean threat group Lazarus has deployed a memory-only malware framework named RemotePE in recent campaigns. The malware executes payloads directly in memory, reducing forensic visibility and bypassing traditional security controls. Researchers believe the campaign targets organisations for espionage and credential theft. The use of fileless malware techniques continues to increase […]
Linux’s “Copy Fail” Shows Old Bugs Never Truly Die Researchers disclosed a nine-year-old Linux kernel vulnerability nicknamed “Copy Fail” (CVE-2026-31431), enabling local privilege escalation to root. The flaw impacts the Linux kernel cryptographic subsystem and has already been observed in active exploitation. Several major Linux distributions are affected, including Ubuntu, RHEL, and Amazon Linux. Public […]
SharePoint Servers Once Again Having a Rough Week Microsoft has patched a remote code execution vulnerability affecting SharePoint Server. The flaw could allow attackers to execute arbitrary code remotely under certain conditions, potentially leading to server compromise. The issue primarily affects on-premise SharePoint deployments and highlights continued risks facing legacy collaboration infrastructure. Microsoft has released […]
Microsoft Warns of Two Actively Exploited Defender Vulnerabilities Microsoft has disclosed two actively exploited vulnerabilities affecting Microsoft Defender components. The flaws include a privilege escalation vulnerability (CVE-2026-41091) and a denial-of-service issue (CVE-2026-45498). Attackers could potentially gain SYSTEM-level privileges or disrupt Defender operations. Both vulnerabilities affect older versions of the Malware Protection Engine and Defender Antimalware […]
Bitwarden CLI Compromised – Supply Chain Strikes Again The Bitwarden CLI has been compromised in an ongoing supply chain attack, allowing attackers to distribute malicious versions of the tool. The compromised versions could expose sensitive credentials managed through the CLI. The issue highlights risks associated with software distribution channels and dependency management. Bitwarden has responded […]
Fake IT Helpdesk? Don’t Fall for It Threat group UNC6692 is conducting phishing campaigns by impersonating IT helpdesk staff. Attackers use convincing social engineering techniques, including emails and calls, to trick victims into revealing credentials or installing remote access tools. The campaign targets organisations globally and leverages trust in internal IT teams. Researchers warn that […]
Entra ID Slip-Up Could Hand Over the Keys Microsoft has patched a vulnerability in Entra ID that could allow privilege escalation through improper role assignment handling. The flaw enabled attackers to potentially gain elevated permissions by exploiting inconsistencies in role validation. While no widespread exploitation has been reported, the issue posed a significant risk in […]
