Security news.
Today's security landscape is marked by active exploitation and critical vulnerabilities, with a high-severity Cisco flaw being actively targeted and a new Linux kernel bug allowing root privilege escalation. Supply chain attacks continue to pose a significant risk, impacting major players like OpenAI and exposing mali
Cisco Catalyst SD-WAN Controller Auth Bypass Actively Exploited
Cisco has released updates for a maximum-severity authentication bypass flaw (CVE-2026-20182, CVSS 10.0) in its Catalyst SD-WAN Controller, which is being actively exploited in limited attacks to gain admin access.
OpenAI Confirms Breach in TanStack Supply Chain Attack
OpenAI announced that two employee devices were compromised in the recent TanStack supply chain attack, leading to the rotation of code-signing certificates for its applications as a precautionary measure.
Stealer Backdoor Found in Node-IPC npm Package Versions
Cybersecurity researchers have identified malicious activity in three versions of the popular npm package 'node-ipc' (9.1.6, 9.2.3, 12.0.1), which contain a stealer backdoor targeting developer secrets.
New Fragnesia Linux Kernel Flaw Grants Root Privileges
A new high-severity Linux kernel privilege escalation vulnerability, dubbed Fragnesia (CVE-2026-46300), allows local attackers to gain root access via page cache corruption, with patches being rolled out by Linux distributions.
18-Year-Old NGINX Vulnerability Allows DoS, Potential RCE
An 18-year-old heap buffer overflow flaw (CVE-2026-42945, CVSS 9.2) in the NGINX ngx_http_rewrite_module has been discovered, which could lead to denial of service or remote code execution under specific conditions.
Windows 11 and Microsoft Edge Hacked at Pwn2Own Berlin 2026
Security researchers earned $523,000 on the first day of Pwn2Own Berlin 2026 by exploiting 24 unique zero-day vulnerabilities in Windows 11 and Microsoft Edge.
PraisonAI Auth Bypass Targeted Within Hours of Disclosure
Threat actors were observed attempting to exploit CVE-2026-44338, a missing authentication vulnerability in the PraisonAI open-source multi-agent orchestration framework, within four hours of its public disclosure.
KongTuke Hackers Now Using Microsoft Teams for Corporate Breaches
Initial access broker KongTuke has shifted to using Microsoft Teams for social engineering attacks, enabling them to gain persistent access to corporate networks in as little as five minutes.