radar.cysentrix

Security Radar

Page 1 of 10 · 567 stories from the last 30 days across 19 trusted sources.

Actively exploited 17 actively exploited CVEs in current coverage
View all CVEs →
  • CVE-2026-10520

    An OS Command Injection vulnerability in Ivanti Sentry before the R10.5.2, R10.6.2 and R10.7.1 versions allows a remote unauthenticated user to achieve root-level remote code execution

    1storyEPSS 99%
  • CVE-2026-20253

    In Splunk Enterprise 10.2 versions below 10.2.4 and 10 versions below 10.0.7, an unauthenticated user could create or truncate arbitrary files through a PostgreSQL sidecar service endpoint. The vulnerability exists because the PostgreSQL sidecar service endpoint lacks authentication controls, allowing any network-reachable user to invoke file operations without credentials. Splunk Enterprise versions 9.4 and earlier are not affected. If you cannot immediately upgrade to a fixed version, you can mitigate this vulnerability by disabling the PostgreSQL sidecar service.

    5storiesEPSS 92%
  • CVE-2026-35273

    Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Updates Environment Management). Supported versions that are affected are 8.61 and 8.62. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise PeopleTools. Successful attacks of this vulnerability can result in takeover of PeopleSoft Enterprise PeopleTools. CVSS 3.1 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).

    2storiesEPSS 90%
  • CVE-2026-50751

    A logic flow weakness in Remote Access and Mobile Access certificate validation in deprecated IKEv1 key exchange allows an unauthenticated remote attacker to bypass user authentication and establish a remote access VPN connection without a valid user password.

    1storyEPSS 71%
  • CVE-2024-40766

    An improper access control vulnerability has been identified in the SonicWall SonicOS management access, potentially leading to unauthorized resource access and in specific conditions, causing the firewall to crash. This issue affects SonicWall Firewall Gen 5 and Gen 6 devices, as well as Gen 7 devices running SonicOS 7.0.1-5035 and older versions.

    1storyEPSS 16%
  • CVE-2026-34908

    AICISA added max-severity Ubiquiti UniFi OS and Lantronix EDS5000 flaws to its Known Exploited Vulnerabilities catalog, warning they are actively exploited.

    1storyEPSS 2%
Schneier on Security

Interesting Paper Exploring Prompt Injection

This is a fascinating explotation of how LLMs fall for prompt injection attacks. It turns out that they learn to recognize the style of text in different role/instruction blocks, and not just the tags. Their conclusion: Role tags were a formatting trick that became the securit...

SecurityWeek · BleepingComputer · Security Affairs · CISA Alerts4 stories

CISA warns of max severity Ubiquiti flaws exploited in attacks

AICISA added max-severity Ubiquiti UniFi OS and Lantronix EDS5000 flaws to its Known Exploited Vulnerabilities catalog, warning they are actively exploited.

Open narrative →
vulnerability Actively exploited · EPSS 2%
Show all coverage
Help Net Security

Hacker gets 18 months for attack that compromised 60,000 betting accounts

A 21-year-old man known online as “Snoopy” was sentenced to 18 months in prison for his role in a scheme that hacked user accounts on a fantasy sports and betting website and sold access to them, causing hundreds of thousands of dollars in losses. Nathan Austad of Farmington, ...

Cisco Talos

Introduction to COM usage by Windows threats

Component Object Model (COM) is a fundamental Windows technology used by legitimate applications for object activation, inter-process communication, automation and language-independent component reuse. Those same qualities make it useful to threat actors.

microsoft
Help Net Security

SpyCloud automates threat investigations with new Research Agent

SpyCloud has announced the launch of SpyCloud Research Agent, a conversational AI investigation agent now available in its Cybercrime Investigations console. Cybercrime investigations have a tax: hours of manual pivot work that experienced analysts run by instinct and junior a...

Help Net Security

Flare unveils new CTI capabilities and Okta support

Flare has announced the expanded capabilities for Flare CTI, and an Okta integration within its Identity Exposure Management (IEM) offering. These updates extend Flare’s identity expertise into tactical threat intelligence use cases and agentic workflows to reshape security op...

Help Net Security

Seemplicity AI Analysts focus remediation on exploitable risks

Seemplicity has launched AI Analysts for exposure management and response. The autonomous agents replace manual vulnerability triage by working directly within remediation workflows to conduct structured, evidence-based exploitability investigations. The old playbook is broken...

vulnerability
SecurityWeek

25-Year-Old Vulnerability Patched in Curl

The latest version of the open source data transfer tool resolves 18 medium and low-severity vulnerabilities. The post 25-Year-Old Vulnerability Patched in Curl appeared first on SecurityWeek.

vulnerability
Security Affairs · SecurityWeek · The Hacker News · BleepingComputer · Dark Reading5 stories

Cisco Catalyst SD-WAN Zero-Day CVE-2026-20245 Exploited to Gain Root Access

AIMandiant found threat actors exploited Cisco Catalyst SD-WAN zero-day CVE-2026-20245 as a zero-day two months before disclosure, creating rogue root accounts on devices.

Open narrative →
vulnerabilityzero dayapt Actively exploitedCVE-2026-20245 · EPSS 10%
Show all coverage
Help Net Security

Entrust uses biometrics to verify users during high-risk transactions

Entrust has introduced a new approach to preventing account takeover. As attackers increasingly target high-risk moments like account recovery, device changes, and large transactions, organizations need to modernize authentication from verifying access to verifying the real hu...

Help Net Security

YesWeHack automates penetration testing with AI-powered agents

YesWeHack announces Agentic Pentest, an on-demand solution using autonomous AI agents to test organisations’ assets and deliver same-day findings. Shaped by YesWeHack’s extensive offensive security experience, Agentic Pentest helps organisations identify vulnerabilities, test ...

vulnerability
CyberScoop

Why patch directives only go so far

Six weeks of undetected access through a compromised VPN exposes why patching isn't a solution for the organizations already breached. The post Why patch directives only go so far appeared first on CyberScoop.

vulnerability
Help Net Security

Forescout brings PQC visibility to IT, OT, IoT, and IoMT environments

Forescout has announced the launch of its Post-Quantum Cryptography (PQC) Readiness and Encryption Hygiene Dashboards. The new dashboards are designed to help organizations identify, prioritize, and manage quantum risk across information technology (IT), operational technology...

The Hacker News · BleepingComputer2 stories

New Mistic Backdoor Linked to KongTuke in ClickFix and ModeloRAT Campaigns

AINew Mistic backdoor linked to threat actor KongTuke targets insurance, education, IT, and professional services in financially motivated attacks since April 2026.

Open narrative →
ransomware
Show all coverage
Help Net Security

WhatsApp will warn users before they message a potential scammer

WhatsApp is rolling out a warning screen on Android and iOS that appears before users open chats with unfamiliar phone numbers. Meta hopes that this new feature will help users avoid scammers. WhatsApp chats warning screen (Source: WABetaInfo) “WhatsApp now checks the phone nu...

Help Net Security

Stellar Cyber improves threat detection and data onboarding in new updates

Stellar Cyber has announced continued momentum across Stellar Cyber 6.5 and 6.6. The releases advance the company’s AI-driven, human-augmented SOC vision with governed AI workflows, improved Auto Triage visibility, sharper detections, stronger platform health monitoring, expan...

Help Net Security

Bitdefender RealCheck analyzes videos for deepfakes and fraud

Bitdefender has announced the launch of Bitdefender RealCheck, a standalone solution that helps consumers evaluate the authenticity of video content circulating across digital platforms and whether it carries malicious intent, such as financial fraud, credential theft, or defa...