Advisories
Critical Supply Chain Attack targeting TanStack affecting multiple NPM & PyPi Packages
Another TeamPCP NPM supply-chain attack hitting TanStack and worming to other dependencies across NPM and other package managers, affecting over 200 affected versions of widely distributed packages.
May 11, 2026 - 3 Min Read
Critical Vulnerability in PaloAlto PAN-OS Authentication Portal (CVE-2026-0300)
On May 6th, Palo Alto Networks announced CVE-2026-0300, an authentication bypass vulnerability in their PAN-OS which allows an unauthenticated attacker to bypass authentication and remotely execute code as root on PAN-OS PA-Series and VM-Series firewalls.
May 5, 2026 - 4 Min Read
Critical Vulnerability in Apache HTTP Server Disclosed (CVE-2026-23918)
On May 4th, 2026 Apache released an advisory regarding a flaw that under certain conditions, could allow unauthenticated remote code execution (RCE) in Apache HTTP Server version 2.4.66. Tracked as CVE-2026-23918, the vulnerability stems from a memory corruption bug within the version’s implementation.
May 5, 2026 - 3 Min Read
Critical Vulnerability in Progress MOVEit Automation (CVE-2026-4670)
On April 30th, Progress Software published an alert bulletin regarding a critical vulnerability in their widely used file share product MOVEit Automation. The flaw, tracked as CVE-2026-4670, could allow unauthenticated, remote attackers access to affected systems.
Apr 30, 2026 - 2 Min Read
Critical Vulnerability in cPanel and WHM Under Active Exploitation (CVE-2026-41940)
On April 29th, cPanel published an emergency advisory concerning CVE-2026-41940, a security issue in “various authentication paths” in all supported versions of the cPanel software. cPanel provided security updates along with their public advisory. Well known hosting providers have confirmed that an exploit is already being used in-the-wild and some have taken the extreme step to firewall off access to the software until security patches could be deployed. Additionally, a few hours after the official cPanel advisory security researchers published a blog with details to produce proof-of-concept exploit code.
Apr 29, 2026 - 5 Min Read
Critical Remote Code Execution Vulnerability in FortiClient EMS Under Active Exploitation (CVE-2026-21643)
On April 13th, CISA added a critical remote code execution vulnerability in FortiClient Enterprise Management Server to its Known Exploited Vulnerability (KEV) database. The vulnerability is being tracked as CVE-2026-21643 and is under active exploitation.
Apr 13, 2026 - 3 Min Read
Critical Auth Bypass Vulnerability in FortiClient EMS Under Active Exploitation (CVE-2026-35616)
On April 6th, CISA added a critical remote code execution vulnerability in FortiClient Enterprise Management Server to its Known Exploited Vulnerability (KEV) database. The vulnerability is being tracked as CVE-2026-35616 and is under active exploitation.
Apr 6, 2026 - 3 Min Read
Critical Vulnerabilities in Progress ShareFile (CVE-2026-2699, CVE-2026-2701)
On April 2nd, 2026, the cybersecurity research company watchTowr publicly disclosed a proof-of-concept exploit for two critical vulnerabilities (CVE-2026-2699 and CVE-2026-2701) affecting Progress ShareFile. When chained together, these vulnerabilities allow an unauthenticated attacker to bypass authentication and achieve remote code execution (RCE) on targeted systems.
Apr 2, 2026 - 4 Min Read
Critical Supply Chain Attack of NPM Package Axios
On March 30th, An NPM supply chain attack was performed on the widely used NPM package Axios. Axios is one of the most ubiquitous JavaScript libraries. The attack involves a malicious cross-platform Remote Access Trojan (RAT) to macOS, Windows, and Linux systems.
Mar 30, 2026 - 2 Min Read
Critical Vulnerability Under Active Exploitation in F5 BIG-IP APM (CVE-2025-53521)
On March 28th, F5 published an advisory updating the severity of a previously reported vulnerability in BIG-IP APM (CVE-2025-53521) to a CVSS score of 9.8. Initially classified as a denial-of-service (DoS) vulnerability, it was discovered that the bug was instead being actively used for remote code execution (RCE). BIG-IP devices are commonly deployed on network perimeters, so successful compromise can provide threat actors initial access into an organization’s network.
Mar 30, 2026 - 2 Min Read