npm Malware Spreads Automatically, Cisco SD-WAN Exploited in 2023 Zero-Day Vulnerability

Post Views: 19

Self-Spreading npm Malware Targets Developers in New Supply Chain Attack

A recent supply chain attack has been uncovered, targeting developers with 19 typosquatting npm packages published on npmjs.com. These packages steal credentials, infect projects, and propagate themselves across developer environments.

Cisco SD-WAN Zero-Day Exploited Since 2023

A highly sophisticated cyber threat actor has been exploiting a zero-day authentication bypass vulnerability (CVE-2026-20127) in Cisco Catalyst SD-WAN Controller and Cisco Catalyst SD-WAN Manager since 2023. Cisco has announced the vulnerability and warned users to take immediate action.

CISA Flags Exploited FileZen Command Injection Bug

The Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2026-25108, an OS command injection vulnerability in Soliton Systems’ FileZen secure file transfer solution, to its Known Exploited Vulnerabilities (KEV) catalog. The vendor has confirmed active exploitation and urged users to patch the vulnerability immediately.

SolarWinds Serv-U Hit by Four Critical RCE-Level Vulnerabilities

SolarWinds has fixed four critical vulnerabilities in its popular Serv-U file transfer solution, which is used by businesses and organizations of all sizes. If exploited, the flaws may allow attackers to create a system admin user and/or execute code as a privileged account.

Airline Brands Become Launchpads for Phishing, Crypto Fraud

Criminal groups continue to use airline brands as a launchpad for phishing and crypto fraud attacks, taking advantage of peak travel booking cycles, loyalty programs, and high-value transactions.

Microsoft Extends Security Patching for Three Windows Products

Microsoft is extending security patching for three Windows products released in 2016, with deadlines beginning in October 2026. Windows 10 Enterprise LTSB 2016 and Windows 10 IoT Enterprise 2016 LTSB will reach end of support on October 13, 2026, followed by Windows Server 2016 on January 12, 2027.

International Operation Dismantles Fraud Network, €400,000 Seized

A coordinated international operation supported by Eurojust dismantled a fraudulent call center operating from three offices and targeting citizens throughout Europe. Authorities arrested 11 suspects and seized more than €400,000 in cash.

Teenagers Charged Over Public Bike Service Breach

Two South Korean teenagers have been charged in connection with a cyberattack that compromised the personal data of 4.62 million users of Seoul’s public bike service, Ttareungyi. The compromised data included user IDs, mobile phone numbers, addresses, dates of birth, gender, and weight.

Ex-L3Harris Executive Sentenced to 87 Months for Selling Stolen Cyber-Exploit Trade Secrets

Peter Williams, a former executive of Trenchant, L3Harris’ cyber division, has been sentenced to 87 months in prison for stealing and selling sensitive cyber-exploit trade secrets to a Russian broker.

NATO Greenlights iPhone and iPad for Classified Information Handling

Apple has confirmed that the iPhone and iPad have been approved for use with classified information in NATO restricted environments. The devices will no longer require special software or settings to handle NATO restricted-level information.

Microsoft Taps ASUS and Dell for Windows 365 Cloud PC Strategy

Microsoft is adding two new Windows 365 Cloud PC devices, the ASUS NUC 16 for Windows 365 and the Dell Pro Desktop for Windows 365, expanding hardware options for its cloud-based desktop service.

Meta Tightens Grip on Scam Advertisers

Meta is stepping up the fight against scams on its platforms by filing multiple lawsuits targeting companies and individuals who used deceptive tactics to run scam ads.