Security news.
Today's cybersecurity news highlights active exploitation of zero-day vulnerabilities, significant supply chain attacks impacting major companies, and new initiatives to combat malicious apps. Developers and IT teams should pay close attention to critical patches and the evolving threat landscape around AI and credential theft.
TrueConf Zero-Day Exploited in Attacks on Southeast Asian Governments
A high-severity zero-day vulnerability (CVE-2026-3502) in TrueConf video conferencing software is being actively exploited to target government entities in Southeast Asia.
Cisco Source Code Stolen in Trivy-Linked Dev Environment Breach
Cisco experienced a cyberattack where threat actors used stolen credentials from the recent Trivy supply chain attack to breach its internal development environment and exfiltrate source code.
Hackers Compromise Axios npm Package to Drop Cross-Platform Malware
The npm account for the widely used Axios JavaScript HTTP client was hijacked to distribute remote access trojans targeting Linux, Windows, and macOS systems.
Vertex AI Vulnerability Exposes Google Cloud Data and Private Artifacts
A "blind spot" in Google Cloud's Vertex AI platform could allow AI agents to be weaponized, leading to unauthorized access to sensitive data and compromise of cloud environments.
CISA Adds Citrix NetScaler Out-of-Bounds Read Vulnerability to KEV Catalog
CISA has added CVE-2026-3055, a Citrix NetScaler Out-of-Bounds Read Vulnerability, to its Known Exploited Vulnerabilities Catalog, urging immediate remediation.
Android Developer Verification Rollout Begins Ahead of September Enforcement
Google is rolling out Android developer verification to combat malicious apps, with a mandate starting in September for select regions and expanding globally next year.
High-Severity Vulnerability in PX4 Autopilot Allows Remote Code Execution
A critical vulnerability (CVE-2026-1579, CVSS 9.8) in PX4 Autopilot allows attackers with MAVLink interface access to execute arbitrary shell commands without authentication.
Stolen Logins Fueling Ransomware and Nation-State Cyberattacks
A new report highlights how industrialized credential theft underpins various cyberattacks, shifting the security focus from prevention to detecting the misuse of legitimate access.