Miasma Worm Hits Microsoft GitHub Repos Through AI Coding Tools
The Miasma supply-chain worm has moved from poisoned package installs to repository config files that can run through AI coding tools and IDEs. Developers...
Scam library
Phishing Scams: Tips to Spot and Prevent
Recent phishing, fake store, and scam website reports, arranged for quick checking without oversized preview images.
Everest Forms Pro CVE-2026-3300: WordPress RCE Flaw Is Exploited
Attackers are exploiting CVE-2026-3300, a critical Everest Forms Pro WordPress RCE flaw tied to the Complex Calculation feature. Update to a fixed release and...
Cisco SD-WAN CVE-2026-20245: Exploited Root Flaw Has No Patch Yet
Cisco says CVE-2026-20245 is being exploited in Catalyst SD-WAN Manager and has no dedicated patch yet. SD-WAN teams should collect admin-tech logs, upgrade related...
Cisco Unified CM CVE-2026-20230: Patch WebDialer SSRF Flaw with Public PoC
Cisco has patched CVE-2026-20230, a Unified CM and Unified CM SME WebDialer SSRF flaw with public proof-of-concept code. Admins should upgrade fixed releases and...
Kirki CVE-2026-8206: WordPress Admin Takeover Flaw Is Exploited
Kirki CVE-2026-8206 is being exploited to hijack WordPress accounts. Update to 6.0.7+ and check password resets, admin users, and site files.
Mirasvit Cache Warmer CVE-2026-45247: Magento RCE Added to CISA KEV
CISA added Mirasvit Cache Warmer CVE-2026-45247 to KEV. Magento and Adobe Commerce stores should update to 1.11.12 and review suspicious CacheWarmer cookie traffic.
Red Hat npm Packages Hit by Miasma Credential-Stealing Worm
A Miasma supply-chain attack compromised @redhat-cloud-services npm packages with a credential-stealing worm. Developers should check lockfiles, CI runners, and rotate exposed secrets.
Android CVE-2025-48595: June Patch Fixes Exploited Framework Flaw
Google's June 2026 Android update fixes CVE-2025-48595, a high-severity Framework flaw that may already be under targeted exploitation.
Windows Netlogon CVE-2026-41089: Domain Controller RCE Is Now Exploited
Belgium's CCB says Windows Netlogon CVE-2026-41089 is now exploited. Patch domain controllers, restrict Netlogon paths, and check for suspicious authentication activity.
Oracle WebLogic CVE-2024-21182 Added to CISA KEV After Exploitation
CISA added Oracle WebLogic Server CVE-2024-21182 to KEV, giving exposed T3/IIOP deployments a short June 4 remediation window.
Dutch Botnet Takedown: 17 Million Devices Were Used as Cybercrime Proxies
Dutch police and NCSC took down a 17 million-device botnet. Check routers, IoT devices, proxy apps, and strange outgoing traffic.
WP Maps Pro CVE-2026-8732: Admin Account Takeover Is Being Exploited
Attackers are exploiting WP Maps Pro CVE-2026-8732 to create rogue WordPress administrator accounts. Site owners should update to 6.1.1 and audit users and logs.
