CISA Orders Immediate Patching of Windows Zero-Day — The Hacker News

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has mandated federal agencies to patch a critical Windows vulnerability actively exploited as a zero-day. This flaw, identified as CVE-2026-32202, affects Windows Shell and allows for remote code execution. Security teams must prioritize this patch to prevent potential system compromises, as the vulnerability is being actively targeted by threat actors.

Credential Theft via Compromised SAP npm Packages — The Hacker News

A supply chain attack has compromised official SAP npm packages, injecting credential-stealing malware. The attack targets developers using these packages, potentially exposing sensitive information and credentials. Security teams should audit their npm dependencies and monitor for suspicious activity, particularly if using SAP-related packages, to mitigate the risk of data breaches.

• New Wave of DPRK Attacks Uses AI-Inserted npm Malware, Fake Firms, and RATs [The Hacker News]
• Hackers exploit RCE flaws in Qinglong task scheduler for cryptomining [BleepingComputer]
• cPanel, WHM emergency update fixes critical auth bypass bug [BleepingComputer]
• Critical cPanel Authentication Vulnerability Identified — Update Your Server Immediately [The Hacker News]
• Critical GitHub Vulnerability Exposed Millions of Repositories - SecurityWeek [Google News Security]