Bleeping Computer

Critical BeyondTrust RCE flaw now exploited in attacks, patch now

A critical pre-authentication remote code execution vulnerability in BeyondTrust Remote Support and Privileged Remote Access appliances is now being exploited in attacks after a PoC was published ...
CSOonline

Ivanti patches two actively exploited critical vulnerabilities in EPMM

The code injection flaws allow for unauthenticated remote code execution on Ivanti Endpoint Manager Mobile deployments, but also endanger connected Ivanti Sentry mobile traffic gateways. IT software ...
Bleeping Computer

CISA warns of SmarterMail RCE flaw used in ransomware attacks

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is warning that ransomware actors are exploiting CVE-2026-24423, a critical vulnerability in SmarterMail that allows remote code ...
Infosecurity-magazine.com

New Zero-Click Flaw in Claude Desktop Extensions, Anthropic Declines Fix

A single Google Calendar event can silently compromise a system running Claude Desktop Extensions, according to security researchers at browser security provider LayerX. In a new report published on ...
GCN

Oracle cloud infrastructure selected to advance modernization of a federal health agency’s systems

Recently, the United States federal government took a major initiative to laverage innovatives technologies within numerous critical healthcare service lines. ...