Megalodon CI/CD attack hits thousands of GitHub repos
Megalodon CI/CD attack hits thousands of GitHub repos Megalodon pushed malicious GitHub Actions workflow commits into 5,561 repositories, risking exposed CI...
Microsoft Defender zero-days under active exploit
Microsoft Defender zero-days under active exploit Microsoft says Defender flaws CVE-2026-41091 and CVE-2026-45498 are being exploited, risking SYSTEM...
GitHub Probes Employee Device Breach
GitHub Probes Employee Device Breach GitHub says a poisoned VS Code extension on an employee device exposed about 3,800 internal repositories. The practical...
Nx Console Extension Stealer Hits Developers
Nx Console Extension Stealer Hits Developers A compromised Nx Console 18.95.0 VS Code extension ran a credential stealer when developers opened workspaces,...
MiniPlasma Windows Zero-Day Revives Old Cloud Files Flaw
MiniPlasma Windows Zero-Day Revives Old Cloud Files Flaw MiniPlasma reportedly revives CVE-2020-17103 in Windows cldflt.sys, letting local attackers gain...
OpenClaw Claw Chain Exposes Agent Tool Risks
OpenClaw Claw Chain Exposes Agent Tool Risks Four OpenClaw “Claw Chain” flaws (CVE-2026-44112/44113/44115/44118) could expose files, bypass command checks,...
NGINX Rift: 18-Year-Old Rewrite Flaw
NGINX Rift: 18-Year-Old Rewrite Flaw NGINX CVE-2026-42945 is a rewrite-module heap overflow that can let crafted HTTP requests crash worker processes and, on...
Exim Dead.Letter Mail Server Flaw
Exim Dead.Letter Mail Server Flaw Exim CVE-2026-45185, aka Dead.Letter, can corrupt memory in GnuTLS-based mail server builds and may allow code execution....
Bleeding Llama: Ollama Memory Leak
Bleeding Llama: Ollama Memory Leak Ollama CVE-2026-7482 can let exposed AI servers leak process memory, including API keys, prompts, and chats. Update to...
Fake Privacy Filter Steals the Spotlight
Fake Privacy Filter Steals the Spotlight A fake OpenAI Privacy Filter repo on Hugging Face reportedly hit #1 trending and drew about 244K downloads before...
Shinyhunters Breach Canvas
Shinyhunters Breach Canvas 9000 Schools and 231M emails exposed. A for effort.. Read on dailycyber.net →
Ivanti EPMM flaw hits CISA exploited list
Ivanti EPMM flaw hits CISA exploited list CISA added Ivanti EPMM CVE-2026-6973 to KEV; defenders should patch, review admin accounts, and rotate risky...