ClawJacked flaw exposed OpenClaw users to data theft
ClawJacked flaw exposed OpenClaw users to data theft Pierluigi Paganini March 02, 2026 “ClawJacked” flaw let malicious sites hijack OpenClaw...
flaw
APT28 Tied to CVE-2026-21513 MSHTML 0-Day Exploited Before Feb 2026 Patch Tuesday
Ravie LakshmananMar 02, 2026Vulnerability / Threat Intelligence A recently disclosed security flaw patched by Microsoft may have been exploited by...
5 Nations Alert: Critical Cisco Bug Used in Global Espionage Campaign
Image: Generated via Google’s Nano Banana For three years, a critical flaw sat inside Cisco’s Catalyst SD-WAN products unnoticed. Hackers...
Cisco SD-WAN Zero-Day CVE-2026-20127 Exploited Since 2023 for Admin Access
Ravie LakshmananFeb 26, 2026Vulnerability / Network Security A newly disclosed maximum-severity security flaw in Cisco Catalyst SD-WAN Controller (formerly vSmart)...
Critical Zyxel router flaw exposed devices to remote attacks
Critical Zyxel router flaw exposed devices to remote attacks Pierluigi Paganini February 25, 2026 Zyxel fixed a critical flaw in...
U.S. CISA adds a flaw in Soliton Systems K.K FileZen to its Known Exploited Vulnerabilities catalog
U.S. CISA adds a flaw in Soliton Systems K.K FileZen to its Known Exploited Vulnerabilities catalog Pierluigi Paganini February 25,...
Microsoft Patches CVE-2026-26119 Privilege Escalation in Windows Admin Center
Ravie LakshmananFeb 19, 2026Vulnerability / Network Security Microsoft has disclosed a now-patched security flaw in Windows Admin Center that could...
Notepad++ patches flaw used to hijack update system
Notepad++ patches flaw used to hijack update system Pierluigi Paganini February 18, 2026 Notepad++ patched a vulnerability that attackers used...
Grandstream GXP1600 VoIP Phones Exposed to Unauthenticated Remote Code Execution
Cybersecurity researchers have disclosed a critical security flaw in the Grandstream GXP1600 series of VoIP phones that could allow an...
A security flaw at DavaIndia Pharmacy allowed attackers to access customers’ data and more
A security flaw at DavaIndia Pharmacy allowed attackers to access customers’ data and more Pierluigi Paganini February 16, 2026 A...
U.S. CISA adds a flaw in BeyondTrust RS and PRA to its Known Exploited Vulnerabilities catalog
U.S. CISA adds a flaw in BeyondTrust RS and PRA to its Known Exploited Vulnerabilities catalog Pierluigi Paganini February 14,...
Researchers Observe In-the-Wild Exploitation of BeyondTrust CVSS 9.9 Vulnerability
Threat actors have started to exploit a recently disclosed critical security flaw impacting BeyondTrust Remote Support (RS) and Privileged Remote...
10K Claude Desktop Users Exposed by Zero-Click Vulnerability
Image: iLixe48/Envato A newly disclosed flaw in Anthropic’s Claude Desktop Extensions shows how a routine productivity feature can enable zero-click...
Critical Fortinet FortiClientEMS flaw allows remote code execution
Critical Fortinet FortiClientEMS flaw allows remote code execution Pierluigi Paganini February 09, 2026 Fortinet warns of a critical FortiClientEMS vulnerability...
Hackers abused React Native CLI flaw to deploy Rust malware before public disclosure
Hackers abused React Native CLI flaw to deploy Rust malware before public disclosure Pierluigi Paganini February 03, 2026 Hackers exploit...