Critical flaw in BeyondTrust Remote Support sees early signs of exploitation

The vulnerability is a variant of a CVE linked to the 2024 hack of the U.S. Treasury Department, according to researchers.

Microsoft: Critical Windows Admin Center Flaw Allows Privilege Escalation

A high-severity Windows Admin Center vulnerability (CVE-2026-26119) could allow privilege escalation in enterprise ...

CISA gives feds 3 days to patch actively exploited BeyondTrust flaw

CISA ordered U.S. government agencies on Friday to secure their BeyondTrust Remote Support instances against an actively ...
CSO Online

VMware fixes command injection flaw in Aria Operations

Two other flaws were patched by the virtualization vendor, impacting Cloud Foundation, Telco Cloud Platform, and Telco Cloud Infrastructure as well.
Fox News

Windows update flaw could be a hidden gateway to zombie vulnerabilities

Researchers have discovered a new way hackers could use to exploit Windows devices. They have found a vulnerability in your PC’s operating system that could let threat actors downgrade it to an older ...

Critical Apple Flaw Exploited in ‘Sophisticated’ Attacks, Company Urges Rapid Patching

Apple urges users to update after patching CVE-2026-20700, a zero-day flaw exploited in sophisticated targeted attacks across multiple devices.
Bleeping Computer

Facebook discloses FreeType 2 flaw exploited in attacks

Facebook is warning that a FreeType vulnerability in all versions up to 2.13 can lead to arbitrary code execution, with reports that the flaw has been exploited in attacks. FreeType is a popular ...