Technology ❯ Cybersecurity ❯ Threat Actors

Exploitation Techniques

Remote Code Execution PowerShell Attacks Cryptocurrency Mining Spyware Attacks PHP Webshells Proof-of-Concepts Persistent Threats Malicious Links Ransomware Post-Compromise Activity Privilege Escalation Access Control ARP Spoofing Persistence Social Engineering Attacks OS Command Injection Authentication Bypass Data Exfiltration Living-off-the-land Techniques Command Injection Low-complexity Attacks State-Sponsored Groups Reverse Engineering Credential Abuse Active Directory Zero-Click Exploits

Attackers Exploit Critical Langflow RCE Within 20 Hours of Disclosure

Researchers warn the advisory enabled exploits faster than typical patch cycles.

CISA Adds Three Actively Exploited Flaws to KEV, Sets Fast Federal Patching Deadlines

Cisco Patches Two CVSS 10 Flaws in Secure Firewall Management Center

FreeScout Zero-Click Flaw (CVE-2026-28289) Enables Full Server Takeover

BeyondTrust Pre-Auth RCE Is Now Being Exploited in the Wild

Active Attacks Hit SolarWinds Web Help Desk, Abusing Zoho ManageEngine and Velociraptor

BeyondTrust Patches Critical Pre-Auth RCE in Remote Access Tools

Hackers Actively Exploit 'Metro4Shell' CVE-2025-11953 in React Native Metro Servers

SmarterMail Admin-Reset Flaw Under Active Exploitation Days After Patch

CISA Orders Federal Agencies to Patch Actively Exploited MongoDB ‘MongoBleed’ Flaw

Fortinet SSO Bypass Actively Exploited as CISA Sets Dec. 23 Fix Deadline

‘HashJack’ Exposes AI Browser Weakness as Microsoft and Perplexity Patch, Google Declines

Fortinet Confirms Second FortiWeb Flaw Under Active Attack as CISA Demands Rapid Fixes

Check Point Reveals Microsoft Teams Flaws That Enabled Fake Chats, Alerts, and Calls

Microsoft Uncovers ‘SesameOp’ Backdoor Using OpenAI Assistants API for Stealthy C2

CISA Adds Two Actively Exploited DELMIA Apriso Flaws to KEV

Active Attacks Target Adobe Commerce With 'SessionReaper' Exploit

Cisco SNMP Zero‑Day Fueled ‘Operation Zero Disco’ Rootkit Attacks on Older Switches

CISA Discloses Malware Behind Ivanti EPMM Zero-Day Intrusions, Publishes IOCs and Detection Rules

CISA Adds Actively Exploited DELMIA Apriso Flaw to KEV With Oct. 2 Fix Deadline