CISA warns of active attacks exploiting Android, Linux bugs
… The issue has been addressed with the release of June 2026 security patches 2026-06-01 and 2026-06-05 security patch levels . …
Search
Microsoft warns of new Defender zero-days exploited in attacks
… For example, type "Security" in the Search bar, then select the Windows Security program. …
Google fixes one actively exploited Android zero-day, 124 flaws
… Download Now Related Articles: Microsoft April 2026 Patch Tuesday fixes 167 flaws, 2 zero-days Microsoft March 2026 Patch Tuesday fixes 2 zero-days, 79 flaws Palo Alto GlobalProtect VPN auth bypass flaw now exploited in attacks Race Against Time: Why Faster Vulnerability Alerts Matter Disgruntled r… …
CISA flags two-year-old Oracle flaw as actively exploited in attacks
… "Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle WebLogic Server accessible data." Internet intelligence platform Shodan now tracks over 1,592 Oracle WebLogic servers exposed online and vulnerable to CVE-2024-21182 exploit… …
Cisco warns of critical Unified CM flaw with PoC exploit code
… Cybersecurity and Infrastructure Security Agency CISA tagged 91 Cisco vulnerabilities as actively exploited in the wild, six of which have been used by various ransomware operations. Test every layer before attackers do Security teams log 54% of successful attacks and alert on just 14%. …
CISA orders feds to patch actively exploited Drupal vulnerability
… Cybersecurity and Infrastructure Security Agency CISA added the flaw to its Known Exploited Vulnerabilities KEV Catalog and ordered Federal Civilian Executive Branch FCEB agencies to patch their systems by midnight on Wednesday, May 27, as mandated by Binding Operational Directive BOD 22-01 . …
Max severity Cisco Secure Workload flaw gives Site Admin privileges
… Cybersecurity and Infrastructure Security Agency CISA added the CVE-2026-20182 flaw to its Known Exploited Vulnerabilities Catalog on May 14 and ordered federal agencies to secure affected devices within three days, by May 17. …
Drupal critical update to fix bug with high exploitation risk
Drupal critical update to fix bug with high exploitation risk By Bill Toulas May 20, 2026 08:52 AM Drupal has announced a "core security release" scheduled for later today, warning that threat actors might develop exploits within hours of the update disclosure. …
Palo Alto Networks firewall zero-day exploited for nearly a month
… Cybersecurity and Infrastructure Security Agency CISA also added the CVE-2026-0300 zero-day to its Known Exploited Vulnerabilities KEV Catalog and ordered Federal Civilian Executive Branch FCEB agencies to secure vulnerable firewalls by Saturday midnight, May 9. …
Exploit available for new DirtyDecrypt Linux root escalation flaw
… The Cybersecurity and Infrastructure Security Agency CISA added Copy Fail to its list of flaws exploited in attacks on May 1 and ordered federal agencies to secure their Linux devices within two weeks, by May 15. …