NGINX CVE-2026-42945 Rewrite Module Flaw Is Being Exploited
NGINX CVE-2026-42945 is now being exploited in the wild, according to VulnCheck activity reported by The Hacker News. Patch exposed NGINX servers and review rewrite rules.
News desk
Cybersecurity News & Analysis
Security incidents, exploited vulnerabilities, breach reports, and urgent patch notes, arranged for fast scanning like a daily cyber newspaper.
June 16, 2026
Latest reports
Mini Shai-Hulud Worm Hits npm and PyPI Packages Across TanStack, Mistral AI
A Mini Shai-Hulud supply-chain wave hit npm and PyPI packages tied to TanStack, Mistral AI, Guardrails, OpenSearch, and UiPath. Teams should freeze installs, inspect...
Google Says AI Helped Build a Zero-Day 2FA Bypass for Mass Exploitation
Google GTIG says an attacker used an AI tool to develop a zero-day two-factor authentication bypass that was intended for mass exploitation. The vendor...
Checkmarx Jenkins AST Plugin 2026.5.09 Was Published as Malicious Artifact
Checkmarx says a modified Jenkins AST Scanner plugin was published to Jenkins Marketplace. Jenkins admins should verify versions, avoid 2026.5.09, and rotate CI/CD secrets...
Fake OpenAI Privacy Filter Repo on Hugging Face Dropped Windows Infostealer
A fake OpenAI Privacy Filter repository on Hugging Face reached trending visibility before removal. HiddenLayer says it shipped a Windows-focused infostealer loader, so anyone...
Ollama CVE-2026-7482: Bleeding Llama Memory Leak Exposes Prompts and API Keys
Cyera disclosed Bleeding Llama, a critical unauthenticated Ollama memory leak tracked as CVE-2026-7482. Exposed servers should update to v0.17.1 or later, restrict access, and...
JDownloader Site Hacked: Malicious Installers Delivered Python RAT
JDownloader says some official website download links were swapped on May 6-7, 2026. Windows alternative installers and a Linux shell installer could deliver malware,...
cPanel & WHM Patch CVE-2026-29201, 29202, 29203: Update Now
cPanel has patched three new WHM and WP Squared vulnerabilities, including code execution and symlink handling flaws. Update with /scripts/upcp --force, verify the build,...
Ivanti EPMM CVE-2026-6973: Admin-Auth RCE Exploited in Zero-Day Attacks
Ivanti says CVE-2026-6973 is under limited exploitation in on-prem EPMM. The flaw needs admin authentication, but exposed admin panels, stolen sessions, and reused credentials...
