Cisco SD-WAN Controller Auth Bypass Exploited in Zero-Day Attacks — The Hacker News

Cisco has issued updates to mitigate a critical authentication bypass vulnerability in the Catalyst SD-WAN Controller, tracked as CVE-2026-1234, which is actively exploited in the wild. The flaw, with a CVSS score of 10.0, allows unauthenticated attackers to gain administrative access, posing a severe risk to network integrity. Organizations using affected versions should apply patches immediately to protect against potential breaches.

Windows 11 Zero-Days Expose BitLocker Bypasses — Ars Technica Security

A zero-day exploit has been disclosed that bypasses BitLocker encryption on Windows 11, potentially allowing unauthorized data access. Additionally, a privilege escalation vulnerability involving CTFMON has been identified, posing further risks. These vulnerabilities highlight critical weaknesses in Windows 11's security posture, necessitating immediate attention from security teams to mitigate potential exploitation.

Fragnesia Linux Kernel Flaw Grants Root Access — The Hacker News

The Fragnesia vulnerability, a new variant of the Dirty Frag exploit, has been identified in the Linux kernel, allowing local privilege escalation via page cache corruption. This flaw affects multiple Linux distributions, enabling attackers to gain root access. Security teams should prioritize patching affected systems to prevent unauthorized access and potential system compromise.

• TeamPCP hackers advertise Mistral AI code repos for sale [BleepingComputer]
• Hackers exploit auth bypass flaw in Burst Statistics WordPress plugin [BleepingComputer]
• OpenAI confirms security breach in TanStack supply chain attack [BleepingComputer]
• Ghostwriter Targets Ukrainian Government With Geofenced PDF Phishing, Cobalt Strike [The Hacker News]
• 'FrostyNeighbor' APT Carefully Targets Govt Orgs in Poland, Ukraine [Dark Reading]