ScanForge Security Digest 2627-02

200 items
46 critical19 high10 news

This week's security digest includes 0 actively exploited vulnerabilities (CISA KEV), 46 critical CVEs, and 19 high-severity CVEs. Review the details below and prioritize patching for any affected systems.

Critical

46

High Severity

19
8.9 urllib3 2 CVEs CVE-2026-44432, CVE-2026-21441
8.9 A vulnerability 2 CVEs CVE-2025-40949, CVE-2026-22924
8.8 In the Linux kernel, the following vulnerability 7 CVEs CVE-2026-53281, CVE-2026-53277, CVE-2026-53275, CVE-2026-53266 +3

+1 more products affected

Security News

10
FortiBleed credential-theft campaign linked to Lynx ransomware Bleeping Computer

The massive FortiBleed credential theft campaign has been linked to the INC and Lynx ransomware operations, suggesting t

Kubota says hackers had month-long access to network systems Bleeping Computer

Kubota North America Corporation disclosed that hackers had access to some of its network systems for more than a month

Crafty Phishing Campaigns Auto-Adapt to Victim's Device, OS Dark Reading

Attackers fingerprint victims through user-agent data to deliver OS-specific payloads, increasing compromise rates and c

New ChocoPoC malware targets researchers via trojanized PoC exploits Bleeping Computer

Multiple weaponized proof-of-concept (PoC) exploits on GitHub were found delivering a Python-based remote access trojan

And the Winner in Dominant Malware Delivery? ClickFix Dark Reading

Researchers say the highly effective social engineering technique is no longer the exception for malware attacks — it's

Unpatched Argo CD Repo-Server Flaw Could Let Attackers Take Over Kubernetes Clusters The Hacker News

Argo CD, a widely used tool for deploying software to Kubernetes, has an unpatched flaw in its repo-server component tha

19-Year-Old Scattered Spider Suspect Extradited to Face U.S. Hacking Charges The Hacker News

A teenager accused of belonging to the hacking group Scattered Spider has been extradited from Finland to face U.S. char

Microsoft Adds New Teams Controls to Block Unauthorized AI Bots From Meetings SecurityWeek

Microsoft's new Teams admin policy requires organizer approval for external AI bots, giving organizations greater visibi

Content aggregated from NIST/NVD, CISA, CERT/CC, and public security news sources. External articles are linked to their original source.