Skip to content
MiniPlasma Windows 0-Day Enables SYSTEM Privilege Escalation on Fully Patched Systems

MiniPlasma Windows 0-Day Enables SYSTEM Privilege Escalation on Fully Patched Systems

Ravie LakshmananMay 18, 2026Zero Day / Vulnerability Chaotic Eclipse, the security researcher behind the recently disclosed Windows flaws, YellowKey and GreenPlasma, has released a proof-of-concept (PoC) for a Windows privilege escalation zero-day flaw that grants… 

Read More »MiniPlasma Windows 0-Day Enables SYSTEM Privilege Escalation on Fully Patched Systems
NGINX CVE-2026-42945 Exploited in the Wild, Causing Worker Crashes and Possible RCE

NGINX CVE-2026-42945 Exploited in the Wild, Causing Worker Crashes and Possible RCE

Ravie LakshmananMay 17, 2026Server Security / Vulnerability A newly disclosed security flaw impacting NGINX Plus and NGINX Open has come under active exploitation in the wild, days after its public disclosure, according to VulnCheck. The… 

Read More »NGINX CVE-2026-42945 Exploited in the Wild, Causing Worker Crashes and Possible RCE
This lifetime office suite puts docs, spreadsheets, slides, and email in one place

This $25 lifetime office suite puts docs, spreadsheets, slides, and email in one place

TL;DR: Handle documents, spreadsheets, presentations, and email in one place with MobiOffice Premium for a lifetime price of $24.97 (MSRP $119.97) for a limited time. Switching between multiple apps just to finish basic work gets old fast —… 

Read More »This $25 lifetime office suite puts docs, spreadsheets, slides, and email in one place
Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt

Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt

Ravie LakshmananMay 17, 2026Data Breach / Cybercrime Grafana has disclosed that an “unauthorized party” obtained a token that granted them the ability to access the company’s GitHub environment and download its codebase. “Our investigation has… 

Read More »Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt
Funnel Builder Flaw Under Active Exploitation Enables WooCommerce Checkout Skimming

Funnel Builder Flaw Under Active Exploitation Enables WooCommerce Checkout Skimming

Ravie LakshmananMay 16, 2026Vulnerability / Website Security A critical security vulnerability impacting the Funnel Builder plugin for WordPress has come under active exploitation in the wild to inject malicious JavaScript code into WooCommerce checkout pages… 

Read More »Funnel Builder Flaw Under Active Exploitation Enables WooCommerce Checkout Skimming
This project management tool keeps tasks, docs, and sprints in one place for up to 10 users for life

This $99 project management tool keeps tasks, docs, and sprints in one place for up to 10 users for life

TL;DR: Lyra Project Management is an all-in-one team workspace with unlimited projects and lifetime access for up to 10 users, now only $99 (reg. $1,054). Most project management setups involve at least two or three tools that… 

Read More »This $99 project management tool keeps tasks, docs, and sprints in one place for up to 10 users for life