radar.cysentrix

Security Radar

Page 1 of 10 · 1135 stories from the last 30 days across 14 trusted sources.

Actively exploited 12 actively exploited CVEs in current coverage
View all CVEs →
  • CVE-2025-8088

    Russian Attackers Weaponize WinRAR Flaw Against Ukrainian Orgs

    1storyEPSS 81%
  • CVE-2026-42271

    CISA Adds Two Known Exploited Vulnerabilities to Catalog

    1storyEPSS 54%
  • CVE-2026-50751

    CISA Adds Two Known Exploited Vulnerabilities to Catalog

    1storyEPSS 41%
  • CVE-2026-0257

    Palo Alto Warns of Active Exploitation of PAN-OS GlobalProtect VPN Flaw

    1storyEPSS 19%
  • CVE-2026-45498

    CVE-2026-45498 Microsoft Defender Denial of Service Vulnerability

    1storyEPSS 3%
  • CVE-2026-20253

    AICritical unauthenticated RCE in Splunk Enterprise (CVE-2026-20253) exploited in wild; CISA added to KEV, federal agencies must patch by June 21.

    2storiesEPSS 2%
Schneier on Security

Anthropic’s Fable and the State of AI

On June 9th, Anthropic released its Fable generative AI model. Three days later, the US government classified it as a dangerous munition, and used its export-control authority to prohibit any foreign nationals from accessing it. Unable to differentiate between Americans and fo...

Help Net Security · The Hacker News2 stories

Critical Splunk Enterprise Flaw Lets Attackers Run Code Without Authentication

AICritical unauthenticated RCE in Splunk Enterprise (CVE-2026-20253) exploited in wild; CISA added to KEV, federal agencies must patch by June 21.

vulnerability Actively exploitedCVE-2026-20253 · EPSS 2%
Show all coverage
Help Net Security

Forget traffic lights, Google’s reCAPTCHA may ask for hand gestures

Google has introduced hand gesture verification for reCAPTCHA, a new method for verifying that a user is human. Google’s reCAPTCHA is part of Google Cloud Fraud Defense, a fraud and abuse prevention platform for bot, account, and transaction protection. It uses risk analysis a...

cloud
The Hacker News

Forget Data Leakage: Shadow AI's Real Threat Is Access Control

The first wave of enterprise AI concern was straightforward. It was simply employees pasting sensitive data into public AI tools. Security teams responded with usage policies, domain blocks, and data loss prevention rules. That response made sense at the time. It doesn't fit t...

Help Net Security

Mastodon 4.6 adds profile Collections and two-factor controls

People who run accounts on the open source social network Mastodon can now group profiles together and share those groups across the web. The 4.6 release centers on a feature called Collections, along with reworked profiles, email newsletters, server administration controls, a...

Help Net Security

Google sets timeline for Android developer verification enforcement

Android’s developer verification protections will take effect on September 30, 2026, starting with users in Brazil, Indonesia, Singapore, and Thailand. Developers distributing apps through participating stores in those markets must complete the verification process by the dead...

Microsoft MSRC

CVE-2026-53689

Information published.

vulnerability