Security Insights

Breaches, ransomware and regulation — analysed the day they break, with the practical lessons your team can act on. Free to read, no account required.

A close-up photoreal shot of a server rack in a dimly lit enterprise data center, with a single rack unit emitting a fai
Vulnerabilities
5 min read
30 Jun 2026

CVE-2026-46817: Unauthenticated Attackers Are Actively Exploiting Oracle E-Business Suite Payments

A CVSS 9.8 flaw in Oracle's Payments module lets remote attackers seize full control of EBS instances — no credentials required — and exploitation is already underway.

Photoreal editorial scene: a software developer sitting at a dual-monitor workstation in a dimly lit open-plan office, f
Vulnerabilities
5 min read
29 Jun 2026

CVE-2026-12957: Amazon Q Developer Flaw Let a Cloned Repo Steal AWS Credentials

A high-severity vulnerability in Amazon's AI coding assistant allowed a hostile repository to hijack ambient AWS credentials the moment a developer clicked 'trust workspace.' Amazon has shipped a patch.

Photoreal editorial scene: a dimly lit industrial server room inside a large manufacturing facility, rows of humming rac
Vulnerabilities
5 min read
27 Jun 2026

Web Shells Deployed on PTC Windchill PLM Systems as Attackers Exploit Critical Deserialization Flaw

A CVSS 9.3 vulnerability in PTC Windchill and FlexPLM — software trusted by defense contractors, aerospace primes, and automotive manufacturers — is under active exploitation, with attackers establishing persistent backdoors inside some of the most sensitive engineering environments on earth.

A dimly lit enterprise network operations center at night, rows of physical server racks and blinking network switches i
Vulnerabilities
4 min read
25 Jun 2026

Cisco Catalyst SD-WAN Zero-Day Exploited for Two Months Before Disclosure

CVE-2026-20245 gave attackers root on enterprise WAN gear while defenders had no patch to apply — and possibly no idea the intrusion was happening.

A photoreal close-up editorial photograph of a rack-mounted industrial network device with serial ports and ethernet con
Vulnerabilities
4 min read
24 Jun 2026

CISA Adds Lantronix EDS5000 Code Injection Bug to Known Exploited Vulnerabilities List

CVE-2025-67038 scores a 9.8 CVSS and is already being exploited in the wild. Federal agencies have until June 26, 2026 to patch — a deadline that tells you nothing about how fast attackers are moving right now.

A photoreal close-up of a film strip partially unwinding from a damaged reel on a dark server room floor, with dramatic
Vulnerabilities
5 min read
24 Jun 2026

PixelSmash: Critical FFmpeg Flaw Puts Media Servers and Cloud Pipelines at Risk

A heap out-of-bounds write in FFmpeg's MagicYUV decoder — CVE-2026-8461 — can crash applications or hand attackers remote code execution via a 50 KB video file.

A photoreal close-up of a glowing computer screen in a darkened server room showing lines of YAML pipeline code, with a
Vulnerabilities
5 min read
23 Jun 2026

GitHub Hardens actions/checkout to Kill 'Pwn Request' Attacks Dead

A new default in actions/checkout v7, announced June 18, automatically blocks unreviewed fork code from running inside privileged workflows — closing an exploit path that attackers had used for years to steal secrets and poison packages.

A photoreal editorial scene of a modern open-plan office at dusk, warm overhead lights, several professionals wearing wi
Vulnerabilities
6 min read
22 Jun 2026

Four Security Stories You Shouldn't Ignore: Beats Eavesdropping, a GCP Privilege-Escalation Flaw, and a Threat Actor Who Lived Inside a Network for a Decade

Apple quietly patched a Bluetooth vulnerability in Beats firmware, Google Cloud's Config Connector carries an unpatched privilege-escalation bug, and the threat group Velvet Ant spent roughly ten years undetected inside a target network. Here is what defenders need to know — and do — right now.

A photoreal close-up of a physical server rack in a dimly lit data center, with a single open padlock resting on a cable
Vulnerabilities
5 min read
20 Jun 2026

Gravity SMTP Vulnerability CVE-2026-4020 Is Being Actively Exploited — Patch and Rotate Now

An unauthenticated information-disclosure flaw in the popular WordPress mailer plugin is already under active attack, putting API keys, OAuth tokens, and SMTP credentials at risk on up to 100,000 websites.

A close-up macro photograph of a modern mobile processor chip on a circuit board, with a thin beam of ultraviolet light
Vulnerabilities
5 min read
20 Jun 2026

usbliter8: Researchers Crack Apple A12 and A13 SecureROM in an Exploit That Cannot Be Patched

A working tethered exploit from Paradigm Shift reaches code burned into the chip at fabrication — and no software update on earth can fix it.

A pair of sleek white wireless earbuds resting on a dark matte surface, soft blue Bluetooth signal waves glowing faintly
Vulnerabilities
4 min read
19 Jun 2026

Beats Studio Buds Firmware Patch Closes Bluetooth Flaw That Could Turn Earbuds Into a Listening Device

A CVSS 8.8 authorization bug in the Airoha Bluetooth audio SDK let any attacker within radio range pair with Studio Buds without the owner's knowledge — and potentially capture microphone audio.

A photoreal editorial scene of a server rack in a dimly lit data center, with a single amber warning light casting a glo
Vulnerabilities
4 min read
18 Jun 2026

F5 Patches Two Critical NGINX Flaws That Allow Unauthenticated Remote Code Execution

A use-after-free in NGINX's HTTP/3 module earns a CVSS v4 score of 9.2 — and any deployment with QUIC enabled should treat the patch as same-day work.

Ready to Reduce Your Human Cyber Risk?

Sign up and start training your team in minutes. No sales calls, no demos — just pick a plan and go. Phishing simulations, video courses, and certificates from day one.

train2secure analytics dashboard showing training completion stats and user progress