GLossary

More

News

More
ServiceNow CVE-2026-6875

ServiceNow Patches Critical AI Platform RCE (CVE-2026-6875), Says No Active Exploitation Observed

The CyberSec Guru

ServiceNow has patched CVE-2026-6875, a critical AI platform sandbox escape vulnerability that could allow unauthenticated RCE

CISA Warns of Exploited SonicWall

SonicWall Warns of Actively Exploited SMA 1000 Zero-Days as CISA Adds Flaws to KEV Catalog

The CyberSec Guru

SonicWall has patched two actively exploited SMA 1000 zero-day vulnerabilities, CVE-2026-15409 and CVE-2026-15410. CISA added both to KEV

Windows BitLocker Zero-Day Allows Physical Bypass of Disk Encryption (CVE-2026-50661)

The CyberSec Guru

Microsoft fixes CVE-2026-50661, a publicly disclosed BitLocker zero-day that allows attackers with physical access to bypass Windows disk encryption

FortiSandbox Vulnerability

FortiSandbox Vulnerability Exposes Malware Analysis VMs Through Unauthenticated VNC Access

The CyberSec Guru

Fortinet has disclosed CVE-2026-59835, a high-severity FortiSandbox vulnerability that allows unauthenticated access to VNC servers of malware analysis VMs

Progress Confirms ShareFile Zero-Day Behind Emergency Storage Zone Shutdown

Progress Confirms ShareFile Zero-Day Behind Emergency Storage Zone Shutdown, Releases Security Updates

The CyberSec Guru

Progress Software has released patches for a high-severity ShareFile Storage Zone Controller zero-day after previously urging customers to immediately shut down vulnerable Windows servers

Advisory

More
AnyDesk Hacked

Remote Desktop Software AnyDesk Hacked, Users Urged to Change Passwords

AnyDesk hacked: Cyberattack compromises production systems, raising concerns over source code security and user data. Immediate actions taken, passwords revoked, and new security measures implemented

Jenkins Security Alert Critical Vulnerability Exposes Servers to Remote Code Execution (RCE) Attacks

Jenkins Security Alert: Critical Vulnerability Exposes Servers to Remote Code Execution (RCE) Attacks

Jenkins Security Alert: Critical vulnerability poses remote code execution risk. Servers exposed. Immediate action required to patch and safeguard systems against potential exploitation. Stay vigilant