Overview
Description
Statistics
- 13 Posts
Fediverse
Apache ActiveMQ CVE-2026-34197 Added to CISA KEV Amid Active Exploitation
https://thehackernews.com/2026/04/apache-activemq-cve-2026-34197-added-to.html
Read on HackerWorkspace: https://hackerworkspace.com/article/apache-activemq-cve-2026-34197-added-to-cisa-kev-amid-active-exploitation
⚠️ CRITICAL: CVE-2026-34197 is a remote code execution vuln in Apache ActiveMQ. No patch or confirmed exploitation yet. Monitor vendor advisories & apply security best practices. Details: https://radar.offseq.com/threat/recent-apache-activemq-vulnerability-exploited-in--98176e07 #OffSeq #ApacheActiveMQ #Vuln #Infosec
New KEV added 🚨
CVE-2026-34197 (Apache ActiveMQ)
• Active exploitation confirmed
• High-risk entry point
KEV = patch now, not later
💬 How fast is your patch cycle?
Follow @technadu
Bluesky
Overview
- 0xJacky
- nginx-ui
Description
Statistics
- 11 Posts
- 5 Interactions
Fediverse
⚠️ CRITICAL: Actively Exploited nginx-ui Flaw (CVE-2026-33032) Enables Full Nginx Server Takeover
CVE-2026-33032 is a critical authentication bypass in nginx-ui that allows unauthenticated attackers to modify Nginx configurations and take over the service completely. An estimated 2,689 vulnerable instances remain exposed globally and active exploitation is confirmed in the wild. Any unpatched n…
📰 Critical Auth Bypass in nginx-ui (CVE-2026-33032) Actively Exploited for Full Nginx Takeover
🚨 CRITICAL FLAW: nginx-ui is being actively exploited via an auth bypass (CVE-2026-33032, CVSS 9.8). Unauthenticated attackers can gain full RCE. Patch to version 2.3.4+ immediately! #nginx #CyberSecurity #Vulnerability
nginx-ui CVE-2026-33032: the /mcp endpoint had auth, /mcp_message didn't. One missing check = full server takeover. As tools rush to add MCP support, expect more of these gaps. - https://thehackernews.com/2026/04/critical-nginx-ui-vulnerability-cve.html
Bluesky
Overview
- marimo-team
- marimo
Description
Statistics
- 3 Posts
- 6 Interactions
Fediverse
CVE-2026-39987: Marimo RCE Zero-Day Exploited Within 10 Hours of Disclosure — 662 Attacks Recorded
#CyberSecurity
https://securebulletin.com/cve-2026-39987-marimo-rce-zero-day-exploited-within-10-hours-of-disclosure-662-attacks-recorded/
Marimo is a Python notebook used in AI toolchains. It was exploited 9 hours 41 minutes after CVE-2026-39987 disclosure. Sysdig published the telemetry. Full remote takeover, no login required. The patch shipped with the advisory. Most shops do not have weekend on-call for a Python notebook. By Sunday morning the command-and-control traffic was already 14 hours deep. Patch window is shorter than one night of sleep. On-call SLA is the new budget line.
CVE-2026-39987 update: How attackers weaponized marimo to deploy a blockchain botnet via HuggingFace | Sysdig
Read on HackerWorkspace: https://hackerworkspace.com/article/cve-2026-39987-update-how-attackers-weaponized-marimo-to-deploy-a-blockchain-botnet-via-huggingface-sysdig
Description
Statistics
- 4 Posts
- 2 Interactions
Fediverse
🚨 Cyber Dreigingsradar 17 april 2026
Dreigingsniveau VERHOOGD (72/100)
• 35 nieuwe incidenten in NL/BE (24u)
• CVE-2025-43300 (CVSS 10.0) actief misbruikt
• CVE-2023-33538 aanvallen op TP-Link routers
Vandaag in het nieuws:
• EU leeftijdsverificatie app binnen 2 min gehackt
• Gelekte Windows zero days actief misbruikt
• Kritieke RCE in Cisco ISE
Actie: patch netwerkapparatuur + test backup-herstel.
Bekijk de volledige Dreigingsradar:
https://www.digiweerbaar.nl/cyber-dreigingsradar
Bluesky
Overview
- Microsoft
- Microsoft Defender Antimalware Platform
Description
Statistics
- 3 Posts
Bluesky
Overview
- Microsoft
- Windows 10 Version 1607
Description
Statistics
- 2 Posts
Bluesky
Overview
Description
Statistics
- 2 Posts
Bluesky
Overview
- Fortinet
- FortiSandbox
Description
Statistics
- 3 Posts
Fediverse
📰 Fortinet Patches Critical Authentication Bypass and RCE Flaws in FortiSandbox
Fortinet patches two critical (CVSS 9.1) flaws in FortiSandbox. 🚨 CVE-2026-39813 (auth bypass) & CVE-2026-39808 (RCE) can be exploited by an unauthenticated attacker. Patch immediately! #Fortinet #Vulnerability #CyberSecurity
Bluesky
Overview
- Fortinet
- FortiSandbox
Description
Statistics
- 3 Posts
Fediverse
📰 Fortinet Patches Critical Authentication Bypass and RCE Flaws in FortiSandbox
Fortinet patches two critical (CVSS 9.1) flaws in FortiSandbox. 🚨 CVE-2026-39813 (auth bypass) & CVE-2026-39808 (RCE) can be exploited by an unauthenticated attacker. Patch immediately! #Fortinet #Vulnerability #CyberSecurity
Bluesky
Description
Statistics
- 1 Post
- 1 Interaction
Fediverse
Antiker Fehler in MS Excel wird angegriffen
Kaum zu glauben, aber wahr: Die Sicherheitslücke CVE-2009-0238 vom Februar 2009, gegen die längst ein Update vorliegt, wird offenbar gerade aktiv in Angriffen ausgenutzt. Jedenfalls ist sie am 2026-04-14 in den KEV Katalog der CISA aufgenommen worden; die US-Behörden müssen innerhalb von zwei Wochen ihre Systeme aktualisieren. Betroffen sind
Microsoft Office Excel 2000 SP3, 2002 SP3, 2003 SP3, 2007 SP1
Excel Viewer 2003 Gold und SP3
Excel Viewer
Compatibility Pack für Word, Excel, und PowerPoint 2007 Dateiformate SP1
Excel in Microsoft Office 2004 und 2008 for Mac
Ein Angreifer kann die volle Kontrolle über den
https://www.pc-fluesterer.info/wordpress/2026/04/16/antiker-fehler-in-ms-excel-wird-angegriffen/
#Empfehlung #Hintergrund #Warnung #cybercrime #exploits #Microsoft #office #sicherheit #unplugMicrosoft