Security news.
Today's security brief highlights critical warnings from CISA and the FBI regarding Russian intelligence targeting Signal backup recovery keys and an urgent deadline to patch an exploited Cisco flaw. Additionally, a significant supply-chain attack impacted Polymarket customers, leading to $3 million in losses, while ne
FBI: Russian Hackers Now Target Signal Backup Recovery Keys
The FBI and CISA warn that a phishing campaign by Russian intelligence services is evolving to steal Signal Backup Recovery Keys, allowing attackers to access victims' historical messages.
CISA Sets Urgent Deadline to Fix Cisco Flaw Exploited in Attacks
CISA has issued an urgent directive for federal agencies to patch a actively exploited vulnerability in Cisco Unified Communications Manager Server by Sunday.
Polymarket Customers Lose $3 Million in Supply-Chain Attack
Polymarket will reimburse customers for an estimated $3 million lost after hackers injected a malicious script into the platform's frontend following a breach at a third-party vendor.
New Linux pedit COW Exploit Enables Root Access by Poisoning Cached Binaries
A flaw in the Linux kernel's traffic-control subsystem (CVE-2026-46331), nicknamed "pedit COW," allows a local unprivileged user to gain root access by corrupting shared page-cache memory.
New DirtyClone Linux Kernel Flaw Lets Local Users Gain Root via Cloned Packets
A new Linux kernel privilege escalation vulnerability, DirtyClone (CVE-2026-43503), allows a local user to corrupt file-backed memory through a cloned network packet to gain root access.
CISA Adds Exploited PTC Windchill RCE Flaw to KEV
CISA has added a critical remote code execution vulnerability (CVE-2026-12569) in PTC Windchill PDMlink and FlexPLM software to its Known Exploited Vulnerabilities catalog due to active exploitation.
Chinese Framework Powers 200,000 Scam Sites
Threat actors are leveraging the legitimate DCloud Uni-App toolkit to sell investment scam templates, powering an estimated 200,000 fraudulent websites.
OpenAI Previews GPT-5.6 Sol With Restricted Access and Stronger Cyber Safeguards
OpenAI has released limited previews of GPT-5.6 models (Sol, Terra, Luna) to select companies, with Sol being the most powerful flagship model and featuring enhanced cyber safeguards.