Today's security landscape highlights critical vulnerabilities under active exploitation, significant supply chain attacks, and the growing impact of AI in both offense and defense. CISA has added multiple flaws to its Known Exploited Vulnerabilities catalog, urging immediate attention from IT teams.

Miasma Worm Hits 73 Microsoft GitHub Repositories in Major Supply Chain Attack — The Miasma self-replicating supply chain attack campaign has impacted 73 Microsoft GitHub repositories across Azure, Azure-Samples, Microsoft, and MicrosoftDocs organizations, leading GitHub to disable access. Read more →
Cisco Catalyst SD-WAN Manager CVE-2026-20245 Flaw Actively Exploited – No Patch Available — Cisco has issued a warning regarding active exploitation of a high-severity vulnerability (CVE-2026-20245) in Catalyst SD-WAN Manager, which allows arbitrary command execution as root, with no patch currently available. Read more →
CISA Adds Actively Exploited SolarWinds Serv-U DoS Flaw to KEV Catalog — CISA has added a high-severity denial-of-service (DoS) flaw, CVE-2026-28318, affecting SolarWinds Serv-U multi-protocol file server software to its Known Exploited Vulnerabilities (KEV) catalog due to active exploitation. Read more →
AI Agent Uncovers 21 Zero-Days in FFmpeg; Chrome Patches Record 429 Bugs — An autonomous AI agent discovered 21 previously unknown vulnerabilities in FFmpeg, a widely used media library, while Google Chrome 149 patched a record 429 security bugs in a single release. Read more →
Free Apps Are Quietly Turning Smart TVs Into Web-Scraping Proxies for AI — A researcher revealed how free consumer apps embed an iOS SDK from Bright Data, transforming devices like smart TVs into exit nodes for a residential proxy network used for web-scraping, particularly for the AI industry. Read more →
Suspicious Polyfill login prompts pop up on Toshiba, Muji websites — Toshiba and Muji have warned users about suspicious sign-in screens appearing on their websites, which could be collecting credentials. Read more →
Exposed Fuel Tank Gauges Under Attack in the US — Threat actors are exploiting Internet-exposed tank gauges, breaching gas stations and potentially disrupting critical infrastructure. Read more →
IronWorm and New Miasma Worm Variant Hit npm in Supply Chain Attacks — Multiple supply chain attacks are targeting the npm ecosystem, distributing a Rust-based information stealer and a self-spreading worm via malicious and poisoned legitimate packages. Read more →