Software Vulnerabilities

Instances where software is the primary target of the attack

React Native ‘Metro4Shell’ Exploited in the Wild, Putting Exposed Development Servers at Risk

Feb 4, 2026

•

4 min read

React Native ‘Metro4Shell’ Exploited in the Wild, Putting Exposed Development Servers at Risk

Rust-based malware targets Windows and Linux

Software Vulnerabilities

WinRAR Vulnerability Actively Exploited by State-Sponsored and Criminal Groups

Jan 28, 2026

•

5 min read

WinRAR Vulnerability Actively Exploited by State-Sponsored and Criminal Groups

Targets include government, military, and finance

Hardware

Meta Begins Addressing WhatsApp Device Fingerprinting Risks Linked to Spyware Targeting

Jan 5, 2026

•

6 min read

Meta Begins Addressing WhatsApp Device Fingerprinting Risks Linked to Spyware Targeting

WhatsApp allowed OS fingerprinting via metadata

Software Vulnerabilities

Coordinated Holiday Campaign Targets Adobe ColdFusion Servers Worldwide

Jan 3, 2026

•

5 min read

Coordinated Holiday Campaign Targets Adobe ColdFusion Servers Worldwide

GreyNoise observed a coordinated ColdFusion exploitation campaign

Software Vulnerabilities

Critical IBM API Connect Flaw Enables Authentication Bypass and Remote Access

Jan 1, 2026

•

5 min read

Critical IBM API Connect Flaw Enables Authentication Bypass and Remote Access

CVSS score of 9.8 indicates near-maximum severity

Software Vulnerabilities

MongoDB High-Severity Flaw Enables Unauthenticated Memory Disclosure

Dec 27, 2025

•

5 min read

MongoDB High-Severity Flaw Enables Unauthenticated Memory Disclosure

Affects MongoDB versions from 3.6 through 8.2

Software Vulnerabilities

Malicious npm Package Masquerades as WhatsApp API, Enables Full Account Takeover

Dec 22, 2025

•

5 min read

Malicious npm Package Masquerades as WhatsApp API, Enables Full Account Takeover

Over 56,000 downloads since May 2025

Software Vulnerabilities

Docker Opens 1,000+ Hardened Container Images to Developers

Dec 20, 2025

•

5 min read

Docker Opens 1,000+ Hardened Container Images to Developers

Images are continuously scanned and designed to minimize CVEs

Nation State

Russia-Aligned Phishing Campaign Abuses Microsoft Device Code Authentication for Account Takeovers

Dec 20, 2025

•

5 min read

Russia-Aligned Phishing Campaign Abuses Microsoft Device Code Authentication for Account Takeovers

Targets government, academia, and transportation

Software Vulnerabilities

Cracked Software Sites Abused to Deliver Evolving CountLoader Malware

Dec 20, 2025

•

4 min read

Cracked Software Sites Abused to Deliver Evolving CountLoader Malware

Highlights ongoing risks of pirated software

AI Vulnerability

Cyber-Enabled Cargo Theft Is Reshaping the Transportation Threat Landscape

Dec 17, 2025

•

5 min read

Cyber-Enabled Cargo Theft Is Reshaping the Transportation Threat Landscape

Cargo theft losses now exceed $35 billion annually in the US

Software Vulnerabilities

JumpCloud Remote Assist Flaw Enables Local Privilege Escalation on Windows

Dec 16, 2025

•

5 min read

JumpCloud Remote Assist Flaw Enables Local Privilege Escalation on Windows

Tracked as CVE-2025-34352 with CVSS 8.5

Software Vulnerabilities

Atlassian Patches Critical Third-Party Vulnerabilities Across Core Products

Dec 15, 2025

•

5 min read

Atlassian Patches Critical Third-Party Vulnerabilities Across Core Products

Atlassian patched ~30 third-party vulnerabilities in December 2025

Software Vulnerabilities

Active Exploitation Targets Gladinet CentreStack Cryptographic Flaw

Dec 14, 2025

•

5 min read

Active Exploitation Targets Gladinet CentreStack Cryptographic Flaw

At least nine organizations confirmed impacted

Software Vulnerabilities

Actively Exploited Gogs Zero-Day Enables Widespread Server Compromise

Dec 14, 2025

•

5 min read

Actively Exploited Gogs Zero-Day Enables Widespread Server Compromise

More than 700 compromised instances identified online

Software Vulnerabilities

Notepad++ Updater Hijack Enables Supply Chain Attacks Against East Asian Organizations

Dec 13, 2025

•

5 min read

Notepad++ Updater Hijack Enables Supply Chain Attacks Against East Asian Organizations

Attacks targeted telecom and financial services organizations

Software Vulnerabilities

CISA Warns of Active Exploitation of Critical GeoServer XXE Vulnerability

Dec 13, 2025

•

5 min read

CISA Warns of Active Exploitation of Critical GeoServer XXE Vulnerability

Third GeoServer vulnerability exploited this year

Hardware

IBM Patches Over 100 Vulnerabilities, Including Multiple Critical Third-Party Flaws

Dec 11, 2025

•

5 min read

IBM Patches Over 100 Vulnerabilities, Including Multiple Critical Third-Party Flaws

Customers are strongly encouraged to apply updates immediately

Software Vulnerabilities

Chrome Issues Emergency Patch for Actively Exploited Zero-Day

Dec 11, 2025

•

5 min read

Chrome Issues Emergency Patch for Actively Exploited Zero-Day

No CVE or technical details have been assigned yet

Software Vulnerabilities

Malicious VS Code Extensions Steal Developer Data

Dec 9, 2025

•

5 min read

Malicious VS Code Extensions Steal Developer Data

Malware captured screenshots, cookies, WiFi passwords, clipboard data, and more

AI Vulnerability

IDEsaster: 30+ Vulnerabilities Expose AI IDEs to Data Theft and Code Execution

Dec 7, 2025

•

5 min read

IDEsaster: 30+ Vulnerabilities Expose AI IDEs to Data Theft and Code Execution

30+ vulnerabilities discovered in AI-powered IDEs

Software Vulnerabilities

Cloudflare Outage Linked to Emergency React2Shell Mitigations

Dec 5, 2025

•

5 min read

Cloudflare Outage Linked to Emergency React2Shell Mitigations

Organizations urged to patch React environments immediately

Software Vulnerabilities

React2Shell: Critical React Vulnerability Already Under Active Exploitation

Dec 5, 2025

•

5 min read

React2Shell: Critical React Vulnerability Already Under Active Exploitation

React 19 servers using a recently introduced server feature are directly exposed

Software Vulnerabilities

React Native ‘Metro4Shell’ Exploited in the Wild, Putting Exposed Development Servers at Risk

WinRAR Vulnerability Actively Exploited by State-Sponsored and Criminal Groups

Meta Begins Addressing WhatsApp Device Fingerprinting Risks Linked to Spyware Targeting

Coordinated Holiday Campaign Targets Adobe ColdFusion Servers Worldwide

Critical IBM API Connect Flaw Enables Authentication Bypass and Remote Access

MongoDB High-Severity Flaw Enables Unauthenticated Memory Disclosure

Malicious npm Package Masquerades as WhatsApp API, Enables Full Account Takeover

Docker Opens 1,000+ Hardened Container Images to Developers

Russia-Aligned Phishing Campaign Abuses Microsoft Device Code Authentication for Account Takeovers

Cracked Software Sites Abused to Deliver Evolving CountLoader Malware

Cyber-Enabled Cargo Theft Is Reshaping the Transportation Threat Landscape

JumpCloud Remote Assist Flaw Enables Local Privilege Escalation on Windows

Atlassian Patches Critical Third-Party Vulnerabilities Across Core Products

Active Exploitation Targets Gladinet CentreStack Cryptographic Flaw

Actively Exploited Gogs Zero-Day Enables Widespread Server Compromise

Notepad++ Updater Hijack Enables Supply Chain Attacks Against East Asian Organizations

CISA Warns of Active Exploitation of Critical GeoServer XXE Vulnerability

IBM Patches Over 100 Vulnerabilities, Including Multiple Critical Third-Party Flaws

Chrome Issues Emergency Patch for Actively Exploited Zero-Day

Malicious VS Code Extensions Steal Developer Data

IDEsaster: 30+ Vulnerabilities Expose AI IDEs to Data Theft and Code Execution

Cloudflare Outage Linked to Emergency React2Shell Mitigations

React2Shell: Critical React Vulnerability Already Under Active Exploitation

STAY CONNECTED