Skip to content
OceanLotus Hits Vietnam Investors With SPECTRALVIPER in FireAnt Attack

OceanLotus Hits Vietnam Investors With SPECTRALVIPER in FireAnt Attack

The Vietnam-aligned threat actor known as OceanLotus has been attributed to two distinct campaigns that targeted domestic entities and stock investors with a backdoor known as SPECTRALVIPER. The campaigns involve a prolonged cyber espionage operation… 

GitHub to Disable npm Install Scripts by Default to Stop Supply Chain Attacks

GitHub to Disable npm Install Scripts by Default to Stop Supply Chain Attacks

Ravie LakshmananJun 11, 2026Developer Security / Software Supply Chain GitHub has announced what it said are “breaking changes” coming to npm version 12, one of which turns off install scripts by default to combat software… 

China-Linked JDY Botnet Expands to 1,500+ Devices for Cyber Reconnaissance

China-Linked JDY Botnet Expands to 1,500+ Devices for Cyber Reconnaissance

Cybersecurity researchers have warned of a “resurgence and expansion” of JDY, a covert network associated with China-nexus state-sponsored threat actors. “The JDY botnet comprises over 1,500 SOHO [small office and home office] and IoT devices… 

Ivanti, Fortinet, and SAP Release Patches for Multiple Critical Vulnerabilities

Ivanti, Fortinet, and SAP Release Patches for Multiple Critical Vulnerabilities

Ravie LakshmananJun 10, 2026Vulnerability / Patch Management Fortinet, Ivanti, and SAP have released security updates to address multiple critical security vulnerabilities that could result in arbitrary code execution and information disclosure. The security flaw patched… 

Unpatched Langflow Flaw CVE-2026-5027 Exploited for Unauthenticated RCE

Unpatched Langflow Flaw CVE-2026-5027 Exploited for Unauthenticated RCE

Ravie LakshmananJun 10, 2026Vulnerability / Open Source A high-severity unpatched security flaw in Langflow, an open-source low-code platform to build artificial intelligence (AI) applications, has come under active exploitation in the wild, according to findings… 

CISA Adds Cisco, Chrome, and Arista Flaws to KEV Catalog Amid Active Exploitation

CISA Adds Cisco, Chrome, and Arista Flaws to KEV Catalog Amid Active Exploitation

Ravie LakshmananJun 10, 2026Vulnerability / Network Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added three new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, following reports of active exploitation. The list… 

Microsoft Patches Record 206 Flaws, Including Three Zero-Days and Critical RCE Bugs

Microsoft Patches Record 206 Flaws, Including Three Zero-Days and Critical RCE Bugs

Microsoft on Tuesday released fixes for a record 206 security vulnerabilities impacting its software portfolio, including three flaws that have been publicly disclosed at the time of release. Of the 206 flaws, 39 are rated… 

ServiceNow Flaw Exploited to Gain Unauthorized Access to Customer Instances

ServiceNow Flaw Exploited to Gain Unauthorized Access to Customer Instances

Ravie LakshmananJun 10, 2026Cyber Attack / Vulnerability ServiceNow has warned about a security incident in which unknown threat actors exploited a flaw to obtain deeper unauthorized access to susceptible instances. “On June 5, 2026, ServiceNow…