Vulnerability News

Cargo theft has gone digital. The NMFTA reports that freight hijacking now starts with phishing emails and stolen credentials attackers reroute shipments through compromised logistics accounts rather than physical interception. Supply chain attack surface keeps expanding. Source: BleepingComputer Full analysis → t.me/VulnerabilityN… Follow @VulnerabilityNw

Broadcom patched a high-severity vulnerability in VMware Fusion. The timing is notable the fix dropped while Broadcom is at Pwn2Own Berlin. No word yet on whether this was a contest-discovered bug or independent finding. Source: SecurityWeek Full analysis → t.me/VulnerabilityN… Follow @VulnerabilityNw

Broadcom patched a high-severity vulnerability in VMware Fusion. The timing is notable the fix dropped while Broadcom is at Pwn2Own Berlin. No word yet on whether this was a contest-discovered bug or independent finding. Source: SecurityWeek Full analysis → t.me/VulnerabilityN… Follow @VulnerabilityNw

Hackers began exploiting a PraisonAI authentication bypass less than four hours after public disclosure. This is the speed-of-weaponization reality now: patch latency measured in hours, not days. If you're running PraisonAI in production, assume scanning started immediately. Source: SecurityWeek Full analysis → t.me/VulnerabilityN… Follow @VulnerabilityNw

The alleged administrator of Dream Market Incognito Market one of the largest dark web marketplaces before shutdown has been indicted in the US on money laundering charges. Arrested in Germany. Extradition pending. Source: BleepingComputer Full analysis → t.me/VulnerabilityN… Follow @VulnerabilityNw

The alleged administrator of Dream Market Incognito Market one of the largest dark web marketplaces before shutdown has been indicted in the US on money laundering charges. Arrested in Germany. Extradition pending. Source: BleepingComputer Full analysis → t.me/VulnerabilityN… Follow @VulnerabilityNw

CVE-2026-46300 Fragnesia. Another Linux kernel memory management bug yields local privilege escalation. Similar mechanics to Dirty Frag and Copy Fail. Affects multiple distributions. Patch cycle in progress. Source: SecurityWeek Full analysis → t.me/VulnerabilityN… Follow @VulnerabilityNw

Initial access broker KongTuke has shifted from email-based phishing to Microsoft Teams for social engineering. Attackers gain persistent network access in as little as five minutes. The vector: posing as IT support, convincing targets to install remote access tools. Source: BleepingComputer Full analysis → t.me/VulnerabilityN… Follow @VulnerabilityNw

Salt Typhoon has struck an energy entity in Azerbaijan. Twill Typhoon is targeting Asian organizations with an updated RAT. Both Chinese APTs are expanding their target sets and refreshing backdoors in concurrent campaigns. Source: SecurityWeek Full analysis → t.me/VulnerabilityN… Follow @VulnerabilityNw

1/2 Cisco Catalyst SD-WAN has a maximum-severity authentication bypass under active exploitation. CVE-2026-20182. Unauthenticated attacker can gain full control of the SD-WAN Controller and Manager. Cisco disclosed and patched the same day.

The flaw affects Cisco Catalyst SD-WAN Controller and SD-WAN Manager. Exploitation confirmed in the wild timing suggests coordinated disclosure or rapid reverse-engineering of the patch. If you manage SD-WAN infrastructure, validate your upgrade status now. Full analysis + raw sources → t.me/VulnerabilityN… Follow @VulnerabilityNw

Microsoft's MDASH found 16 of the 137 Patch Tuesday flaws autonomously. Palo Alto Networks used Claude Mythos to scan its product portfolio found dozens of real vulns. AI-driven vulnerability discovery is shifting from experiment to production pipeline. Source: SecurityWeek Full analysis → t.me/VulnerabilityN… Follow @VulnerabilityNw

Fortinet patches critical RCE in FortiSandbox and FortiAuthenticator. Ivanti fixes multiple flaws leading to arbitrary code execution. Both vendors assess exploitation as likely. Patch immediately. Source: SecurityWeek Full analysis → t.me/VulnerabilityN… Follow @VulnerabilityNw

Intel and AMD publish 24 advisories covering 70 vulns. Intel's worst: CVE-2026-20794 (CVSS 9.3) buffer overflow in Data Center Graphics Driver for VMware ESXi, privilege escalation + potential RCE. Also patches for UEFI firmware, EMA, and QAT drivers. Source: SecurityWeek Full analysis → t.me/VulnerabilityN… Follow @VulnerabilityNw

1/2 Microsoft patches CVE-2026-40361 zero-click RCE in Outlook via preview pane. Use-after-free in email rendering DLL shared with Word. No user interaction needed. Researcher Haifei Li (Expmon) compares it to BadWinmail (CVE-2015-6172), the "enterprise killer" from 2015.

2/2 Mitigation: switch Outlook to plain text mode. No known exploitation in the wild yet. Attack surface: every Outlook + Exchange environment. One of 137 vulns in Microsoft's May Patch Tuesday. Source: SecurityWeek Full analysis → t.me/VulnerabilityN… Follow @VulnerabilityNw

🔓 PoC released for two unpatched Windows zero-days: YellowKey (BitLocker bypass via WinRE using FsTx files) and GreenPlasma (CTFMON → SYSTEM LPE). Researcher Chaotic Eclipse promises more exploits next Patch Tuesday. Kevin Beaumont confirms YellowKey works. Source: BleepingComputer Full analysis → t.me/VulnerabilityN… Follow @VulnerabilityNw

Foxconn confirms cyberattack on North American factories. Nitrogen ransomwaregang claims 8TB stolen confidential documents, operational data. World's largest electronics manufacturer's third major cyber incident since 2020. Operations still resuming. Source: BleepingComputer / SecurityWeek Full analysis → t.me/VulnerabilityN… Follow @VulnerabilityNw

House Homeland Security Committee demands Instructure execs testify over ShinyHunters' Canvas breach. Attackers stole student data and disrupted final exams across US schools. Instructure previously claimed it reached an "agreement" with the threat actor to stop the leak. Source: BleepingComputer / SecurityWeek Full analysis → t.me/VulnerabilityN… Follow @VulnerabilityNw

Adobe Patches 52 Vulnerabilities in 10 Products Adobe fixes 52 CVEs across 10 products including After Effects and Illustrator. Two are rated critical CVE-2026-34659 and CVE-2026-34660, both CVSS 9.x, arbitrary code execution vectors. No exploitation in the wild, but patch velocity is rising. Source: SecurityWeek / Adobe Full analysis → t.me/VulnerabilityN… Follow @VulnerabilityNw