Geek-Guy.com

Tag: recently

Exploits, Global Security News, Network Security

PAN-OS GlobalProtect Authentication Bypass (CVE-2026-0257) Under Active Exploitation

Palo Alto Networks has warned that a recently disclosed medium-severity security flaw impacting PAN-OS and Prisma Access has come under active exploitation in the wild. The vulnerability, tracked as CVE-2026-0257 (CVSS score: 7.8), refers to a case of authentication bypass that could be exploited by bad actors to set up VPN connections. “Authentication bypass vulnerabilities…

Read more →

AI, Data Security, Global Security News

Dell’s Partner Program Shifts to Strategic Customer Outcomes

Dell Technologies recently introduced new enhancements to its partner program, including rebates and incentives to enhance customer outcomes. Launching in August 2026, the partner program refresh centers on differentiated rebates for strategic solutions; focuses accounts on incentives; and recognizes impact from advisory and systems integrator co-sell. During Dell Technologies World 2026, Channel Insider spoke with…

Read more →

AI, china, Compliance, Europe, Global Security News, Network Security, Risk Management

DeepSeek’s steep V4-Pro price cut escalates AI pricing war

Chinese AI startup DeepSeek has announced a steep price cut for its recently launched flagship AI model, V4-Pro. The company has reduced pricing for the model by 75%, just a month after unveiling the V4 generation, which includes V4 Pro and V4 Flash. Earlier, usage costs ranged from $0.0145 for one million tokens (cache hit)…

Read more →

AI, Exploits, Global Security News

Ghost CMS CVE-2026-26980 Exploited to Hijack 700+ Sites for ClickFix Attacks

Threat actors are exploiting a recently disclosed critical security flaw in Ghost CMS to inject malicious JavaScript code with an aim to fuel ClickFix attacks. According to QiAnXin XLab, the activity involves the exploitation of CVE-2026-26980 (CVSS score: 9.4), an SQL injection vulnerability in Ghost’s Content API that could allow an unauthenticated attacker to read…

Read more →

Cybersecurity, Exploits, Global Security News

Drupal Core SQL Injection Bug Actively Exploited, Added to CISA KEV

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a recently patched critical security flaw impacting Drupal Core to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. The vulnerability in question is CVE-2026-9082 (CVSS score: 6.5), an SQL injection vulnerability affecting all supported versions of Drupal Core. “Drupal Core

Read more →

Global Security News

MiniPlasma Windows 0-Day Enables SYSTEM Privilege Escalation on Fully Patched Systems

Chaotic Eclipse, the security researcher behind the recently disclosed Windows flaws, YellowKey and GreenPlasma, has released a proof-of-concept (PoC) for a Windows privilege escalation zero-day flaw that grants attackers SYSTEM privileges on fully patched Windows systems. Codenamed MiniPlasma, the vulnerability impacts “cldflt.sys,” which refers to the Windows Cloud Files Mini Filter Driver,

Read more →

AI, Cybersecurity, Global Security News

Former CISA nominee Sean Plankey named US CEO of defense startup

Sean Plankey, most recently the nominee for director of the Cybersecurity and Infrastructure Security Agency, is joining defense technology company UFORCE as its U.S. chief executive officer. The London-based company created out of nine Ukrainian-based firms announced Plankey’s move Monday less than a month after he withdrew his nomination amid difficulties overcoming objections from senators…

Read more →

AI, Endpoint, Exploits, Global Security News

PraisonAI CVE-2026-44338 Auth Bypass Targeted Within Hours of Disclosure

Threat actors have been observed attempting to exploit a recently disclosed security vulnerability in PraisonAI, an open-source multi-agent orchestration framework, within four hours of public disclosure. The vulnerability in question is CVE-2026-44338 (CVSS score: 7.3), a case of missing authentication that exposes sensitive endpoints to anyone, potentially allowing an attacker to invoke the

Read more →

AI, Exploits, Global Security News

cPanel CVE-2026-41940 Under Active Exploitation to Deploy Filemanager Backdoor

A threat actor named Mr_Rot13 has been attributed to the exploitation of a recently disclosed critical cPanel flaw to deploy a backdoor codenamed Filemanager on compromised environments. The attack exploits CVE-2026-41940, a vulnerability impacting cPanel and WebHost Manager (WHM) that could result in an authentication bypass and allow remote attackers to gain elevated control of…

Read more →

AI, Data Breaches, Exploits, Global Security News, Network Security, Risk Management

Palo Alto Networks Firewall Zero-Day Exploited in Active Attacks 

Palo Alto Networks recently disclosed a firewall vulnerability that is already being exploited in the wild. The flaw affects the PAN-OS User-ID Authentication Portal and could allow unauthenticated attackers to remotely execute code with root privileges on vulnerable devices. This vulnerability “… allows an unauthenticated attacker to execute arbitrary code with root privileges on the…

Read more →

AI, Global Security News

Your AI Agents Are Already Inside the Perimeter. Do You Know What They’re Doing?

Analysts recently confirmed what identity security teams have quietly feared: AI agents are being deployed faster than enterprises can govern them. In their inaugural Market Guide for Guardian Agents, Gartner states that “enterprise adoption of AI agents is accelerating, outpacing maturity of governance policy controls.” Enterprise leaders can request access to the Gartner Market Guide…

Read more →

AI, Apps, Compliance, Cybersecurity, Data Breaches, Global Security News, Network Security, Risk Management

Train like you fight: Why cyber operations teams need no-notice drills

St. Michael’s Hospital in Toronto recently executed a full Code Orange simulation: A mass casualty emergency protocol requiring the activation of every clinical and operational team across the hospital. As a Level 1 trauma centre, it conducts large-scale exercises involving teams across the entire hospital: Emergency, surgery, communications, administration. The exercise is not a compliance…

Read more →

Cybersecurity, Exploits, Global Security News

CISA Adds Actively Exploited Linux Root Access Bug CVE-2026-31431 to KEV

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added a recently disclosed security flaw impacting various Linux distributions to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild. The vulnerability, tracked as CVE-2026-31431 (CVSS score: 7.8), is a case of local privilege escalation (LPE) flaw that could allow…

Read more →

AI, Compliance, Exploits, Global Security News

Everyone’s building AI agents. Almost nobody’s ready for what they do to identity.

Anthropic recently announced that it would not release Mythos, its most powerful AI model, to the public. The model discovered thousands of previously unknown software vulnerabilities — flaws that had sat undetected in major operating systems and web browsers for as long as nearly three decades. Anthropic said the model was too dangerous to deploy…

Read more →

AI, Exploits, Global Security News

Three Microsoft Defender Zero-Days Actively Exploited; Two Still Unpatched

Huntress is warning that threat actors are exploiting three recently disclosed security flaws in Microsoft Defender to gain elevated privileges in compromised systems. The activity involves the exploitation of three vulnerabilities that are codenamed BlueHammer (requires GitHub sign-in), RedSun, and UnDefend, all of which were released as zero-days by a researcher known as Chaotic Eclipse (

Read more →

APAC, Cybersecurity, Exploits, Global Security News

Apache ActiveMQ CVE-2026-34197 Added to CISA KEV Amid Active Exploitation

A recently disclosed high-severity security flaw in Apache ActiveMQ Classic has come under active exploitation in the wild, per the U.S. Cybersecurity and Infrastructure Security Agency (CISA). To that end, the agency has added the vulnerability, tracked as CVE-2026-34197 (CVSS score: 8.8), to its Known Exploited Vulnerabilities (KEV) catalog, requiring Federal Civilian

Read more →

Exploits, Global Security News

Actively Exploited nginx-ui Flaw (CVE-2026-33032) Enables Full Nginx Server Takeover

A recently disclosed critical security flaw impacting nginx-ui, an open-source, web-based Nginx management tool, has come under active exploitation in the wild. The vulnerability in question is CVE-2026-33032 (CVSS score: 9.8), an authentication bypass vulnerability that enables threat actors to seize control of the Nginx service. It has been codenamed MCPwn by Pluto Security. “

Read more →

AI, APAC, Apps, Cybersecurity, Global Security News

Report: AI Shifts IT Roles as Demands and Complexity Rise

SolarWinds recently released its 2026 IT Trends Report: The Human Side of Autonomous IT, examining how AI is reshaping IT roles. Instead of simply managing systems, IT teams are now expected to interpret AI-driven insights, design automated workflows, and govern increasingly autonomous environments. The shift is creating a paradox: while AI reduces manual effort, it…

Read more →

AI, Global Security News, Risk Management

Analysis of 216M Security Findings Shows a 4x Increase In Critical Risk (2026 Report)

OX Security recently analyzed 216 million security findings across 250 organizations over a 90-day period. The primary takeaway: while raw alert volume grew by 52% year-over-year, prioritized critical risk grew by nearly 400%. The surge in AI-assisted development is creating a “velocity gap” where the density of high-impact vulnerabilities is scaling faster than

Read more →

AI, Global Security News, Network Security

Nutanix Debuts NKP Metal for Bare-Metal Kubernetes Environments

Nutanix has recently announced the introduction of NKP Metal, extending the Nutanix operating model and Nutanix Kubernetes Platform (NKP) solution to support Kubernetes deployments directly on bare-metal infrastructure.  Why organizations deploying Kubernetes workloads require unique performance capabilities According to Nutanix, running Kubernetes on bare metal delivers performance and flexibility that many modern workloads require, particularly…

Read more →

AI, APAC, Compliance, Endpoint, Global Security News, Network Security, Risk Management

The noisy tenants: Engineering fairness in multi-tenant SIEM solutions

I recently had the opportunity to review five popular SIEM solutions as part of a judging panel for a Security award. While each platform had its own unique flair, their core promises were remarkably consistent: 24/7/365 SOC monitoring: Round-the-clock coverage backed by global experts to validate and prioritize alerts. Proactive threat hunting: Active searches for…

Read more →

Global Security News

Beyond the billion-dollar banking oversight: How process intelligence can surface vital warning signs

GUEST OPINION: When one of Australia’s Big Four financial institutions recently self-reported over $1 billion in potentially fraudulent loans, the industry’s focus immediately turned to the sophistication of the bad actors. But for those of us looking at the mechanics of global banking, the more pressing question isn’t how the documents were doctored, it’s how…

Read more →

AI, Apps, Cybersecurity, Endpoint, Exploits, Global Security News, Network Security, Risk Management

Bitdefender Launches Internal Attack Surface Assessment

Bitdefender recently announced the launch of Bitdefender Attack Surface Assessment to help enterprises discover hidden cybersecurity risks. Complimentary evaluation shines spotlight on hidden risk The assessment is a complimentary evaluation that helps organizations identify and reduce hidden internal cyber risk from unnecessary user access to applications, tools, and operating system utilities commonly exploited in modern…

Read more →

APAC, Global Security News

CIS Benchmarks March 2026 Update

The following CIS Benchmarks and CIS Build Kits have been updated or recently released. The Center for Internet Security has highlighted the major updates below. Each Benchmark and Build Kit includes a changelog that references all changes. Updated CIS Benchmarks overview CIS Microsoft Windows 11 Enterprise Benchmark v5.0.0 CIS Oracle Cloud Infrastructure Foundations Benchmark v3.1.0…

Read more →

AI, Exploits, Global Security News, Risk Management

Exabeam Extends Behavior Detection and Response Analytics

Exabeam has recently announced the expansion of Exabeam Agent Behavior Analytics (ABA), extending behavior detection and response to OpenAI ChatGPT and Microsoft Copilot. Capabilities close the visibility gap in AI usage The expansion applies behavior profiling and analytics to the digital workforce, as organizations don’t have direct visibility into how employees are using AI assistants,…

Read more →

AI, Global Security News, Government & Policy, Risk Management

Report: Many Orgs Still Rely on Traditional OS Deployment Workflows

Recently, Recast surveyed IT professionals to attempt to understand where organizations stand with ConfigMgr, Intune, and OS Deployment. With Microsoft Deployment Toolkit (MDT) retiring in January 2026, cloud-only isn’t enough for the industry, and SysAdmins are actively seeking tools to make their jobs easier. Recast says replacement planning for MDT is crucial in 2026 IT…

Read more →

AI, Endpoint, Global Security News

TeamViewer unveils AI-driven Tia Reporting at Gartner Digital Workplace Summit

TeamViewer recently introduced Tia Reporting at Gartner Digital Workplace Summit. The new conversational AI capability within TeamViewer DEX accelerates IT decision-making by generating real‑time dashboards from simple natural‑language prompts. TeamViewer marked the launch with the first activation of the new global brand campaign, Fix it before they feel it, which highlights its leading value proposition in Autonomous Endpoint Management (AEM)…

Read more →

AI, Exploits, Global Security News

Citrix NetScaler Under Active Recon for CVE-2026-3055 (CVSS 9.3) Memory Overread Bug

A recently disclosed critical security flaw impacting Citrix NetScaler ADC and NetScaler Gateway is witnessing active reconnaissance activity, according to Defused Cyber and watchTowr. The vulnerability, CVE-2026-3055 (CVSS score: 9.3), refers to a case of insufficient input validation leading to memory overread, which an attacker could exploit to leak potentially sensitive information. Per

Read more →

AI, APAC, Apps, Compliance, Global Security News, Network Security

Nutanix Debuts New Agentic AI Solution

Nutanix, a hybrid multicloud computing company, recently launched a new agentic AI solution to help customers boost agentic AI adoption for business transformation. Nutanix brings AI factory enablement stack to market The full software stack, Nutanix Agentic AI, is designed to help infrastructure and platform teams build and operate AI factories, while providing shared access…

Read more →

AI, Compliance, Global Security News, Risk Management

Sectigo Unveils Multi-Tenant Certificate Management Platform

Sectigo has recently announced a new multi-tenant partner platform purpose-built to enable MSPs, MSSPs, VARs, and distributors to scale and monetize certificate management operations. Unlocking high-margin recurring revenue streams The Sectigo Partner Platform (SPP) will enable partners to build a portfolio of certificate lifecycle management (CLM) services to reduce operational risk caused by mismanaged or…

Read more →

AI, Cybersecurity, Exploits, Global Security News, Government & Policy, malware, Network Security, Risk Management

Washington is right: Cybercrime is organized crime. Now we need to shut down the business model

The recently released executive order targeting cybercrime, fraud, and predatory schemes uses language the federal government has often avoided. Now, for the first time, the Trump administration is echoing what the cybersecurity industry has been shouting for years: cyber-enabled fraud is a product of transnational organized crime. That distinction matters because organized crime requires an…

Read more →

AI, Compliance, Endpoint, Global Security News, Risk Management

SurePath AI Announces New MCP Policy Controls

Security and governance platform SurePath AI recently announced MCP Policy Controls to provide real-time controls over which MCP servers and tools are allowed to be used. MCP presents a new attack surface and security challenges These new controls are designed to assist organizations in adopting MCP, ensuring safety, visibility, and safeguards from day one. MCP…

Read more →

AI, Exploits, Global Security News, Network Security, Risk Management

Cisco flags ongoing exploitation of two recently patched Catalyst SD-WAN flaws

Cisco warns that two recently patched Catalyst SD-WAN flaws, CVE-2026-20128 and CVE-2026-20122, are already being actively exploited in the wild. Cisco warned customers that threat actors are actively exploiting two recently patched Catalyst SD-WAN vulnerabilities, CVE-2026-20128 and CVE-2026-20122. The networking giant urged organizations to apply the latest security updates to reduce the risk of compromise.…

Read more →

Cybersecurity, Exploits, Global Security News

CISA Adds Actively Exploited VMware Aria Operations Flaw CVE-2026-22719 to KEV Catalog

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a recently disclosed security flaw impacting Broadcom VMware Aria Operations to its Known Exploited Vulnerabilities (KEV) catalog, citing active exploitation in the wild. The high-severity vulnerability, CVE-2026-22719 (CVSS score: 8.1), has been described as a case of command injection that could allow an

Read more →

AI, Global Security News

Open-Source CyberStrikeAI Deployed in AI-Driven FortiGate Attacks Across 55 Countries

The threat actor behind the recently disclosed artificial intelligence (AI)-assisted campaign targeting Fortinet FortiGate appliances leveraged an open-source, AI-native security testing platform called CyberStrikeAI to execute the attacks. The new findings come from Team Cymru, which detected its use following an analysis of the IP address (“212.11.64[.]250”) that was used by the suspected

Read more →

AI, Exploits, Global Security News, Russia

APT28 Tied to CVE-2026-21513 MSHTML 0-Day Exploited Before Feb 2026 Patch Tuesday

A recently disclosed security flaw patched by Microsoft may have been exploited by the Russia-linked state-sponsored threat actor known as APT28, according to new findings from Akamai. The vulnerability in question is CVE-2026-21513 (CVSS score: 8.8), a high-severity security feature bypass affecting the MSHTML Framework. “Protection mechanism failure in MSHTML Framework allows an unauthorized

Read more →

Cybersecurity, Exploits, Global Security News

CISA Confirms Active Exploitation of FileZen CVE-2026-25108 Vulnerability

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a recently disclosed vulnerability in FileZen to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerability, tracked as CVE-2026-25108 (CVSS v4 score: 8.7), is a case of operating system (OS) command injection that could allow an authenticated user to execute

Read more →

AI, Cybersecurity, Global Security News, Network Security, Risk Management

Asimily Expands Channel Enablement With New Partner Tier

Provider of the Next Generation Exposure Management Platform for IoT, OT, and IoMT environments, Asimily, has recently announced the next generation of its global partner strategy, introducing a new partner tier to accelerate high-performing strategic partners and expand enablement across connected ecosystems. Partner program updates include ‘In Flight’ tier The new tier will be called…

Read more →

AI, Cybersecurity, Global Security News, Risk Management

Exabeam Report: AI Key Driver in Cybersecurity Spend

Intelligence and automation enterprise, Exabeam, recently unveiled new findings from its multinational report, From Adoption to Accountability: The New Economics of AI in Cybersecurity. The survey obtained responses from 750 IT decision-makers responsible for security in organizations with 500+ employees across 12 countries. Cybersecurity budgets on the rise as AI alignment struggles to keep up…

Read more →

Exploits, Global Security News

BeyondTrust Flaw Used for Web Shells, Backdoors, and Data Exfiltration

Threat actors have been observed exploiting a recently disclosed critical security flaw impacting BeyondTrust Remote Support (RS) and Privileged Remote Access (PRA) products to conduct a wide range of malicious actions, including deploying VShell and  The vulnerability, tracked as CVE-2026-1731 (CVSS score: 9.9), allows attackers to execute operating system commands in the context of the

Read more →

AI, Global Security News, Risk Management

Genetec Adds Investigation Capabilities in Security Center SaaS

Genetec, Inc. recently debuted new investigation capabilities in the Genetec Security Center SaaS to assist enterprises in faster incident resolution and to help them return to daily operations more quickly – even if investigations span multiple sites, systems, and camera vendors. Investigation experience promises efficiency in complex security environments This new investigation experience, delivered by…

Read more →

AI, Apps, china, Exploits, Global Security News, Network Security, Risk Management

Notepad++ author says fixes make update mechanism ‘effectively unexploitable’

The recently compromised update mechanism for the popular open source text editor Notepad ++ has been hardened so it’s now ‘effectively unexploitable’, says the application’s author. Don Ho made the claim this week after the release of version 8.9.2 of Notepad++, which includes a double-lock verification that any download of the tool from this point…

Read more →

AI, APAC, china, Compliance, Endpoint, Exploits, Global Security News, malware, Network Security, Risk Management

CVE-2026-22769: Critical Dell RecoveryPoint Zero-Day Exploited in the Wild

SOC Prime has recently covered a wave of actively exploited zero-days across major ecosystems, including Apple’s CVE-2026-20700 and Microsoft’s CVE-2026-20805, alongside a fresh Chrome zero-day case. But the avalanche of threats keeps marching into 2026. Recently, researchers from Mandiant and Google Threat Intelligence Group (GTIG) detailed the active exploitation of CVE-2026-22769, a maximum-severity hardcoded-credential vulnerability…

Read more →

AI, APAC, china, Cybersecurity, Funding, Global Security News, Network Security, Risk Management, Russia

Why ‘secure-by-design’ systems are non-negotiable in the AI era

Moody’s recently reported that global investment in data centers will surpass $3 trillion over the next five years, driven by AI capacity growth and hyperscaler demand. As big tech companies, banks, and institutional investors pour capital into these projects, data center developers and their financial sponsors must prioritze cybersecurity. Moody’s said that data center investments…

Read more →

AI, Exploits, Global Security News

Hackers probe, exploit newly patched BeyondTrust RCE flaw (CVE-2026-1731)

Attackers are exploiting a recently patched critical vulnerability (CVE-2026-1731) in internet-facing BeyondTrust Remote Support and Privileged Remote Access instances. “Attackers are abusing get_portal_info to extract the x-ns-company value before establishing a WebSocket channel,” Ryan Dewhurst, Head of Threat Intelligence at watchTowr, confirmed on Thursday. Rapid7 researchers published a technical analysis and proof-of-concept (PoC) exploit for…

Read more →

AI, Exploits, Global Security News

Researchers Observe In-the-Wild Exploitation of BeyondTrust CVSS 9.9 Vulnerability

Threat actors have started to exploit a recently disclosed critical security flaw impacting BeyondTrust Remote Support (RS) and Privileged Remote Access (PRA) products, according to watchTowr. “Overnight we observed first in-the-wild exploitation of BeyondTrust across our global sensors,” Ryan Dewhurst, head of threat intelligence at watchTowr, said in a post on X. “Attackers are abusing

Read more →

AI, Apps, Cloud Security, Cybersecurity, Data Breaches, Endpoint, Exploits, Global Security News, malware, Network Security, News, Risk Management, Threats

Bing Ads Abused to Deliver Azure-Hosted Tech Support Scams

A recently identified scam campaign is using Bing search advertisements and Microsoft Azure infrastructure to redirect users to fraudulent tech support pages, demonstrating how legitimate platforms can be misused for social engineering activity.  “The tech support scam campaign had a significant initial impact, affecting users across 48 different organizations in the U.S. within a short…

Read more →

AI, Apps, Cybersecurity, Data Breaches, Exploits, Global Security News, Network Security, News, Risk Management, Threats

Ingress-Nginx Vulnerability Enables Code Execution in Kubernetes

A recently disclosed vulnerability in ingress-nginx may allow authenticated attackers to execute code and access Kubernetes Secrets in affected clusters.  The vulnerability could “… lead to arbitrary code execution in the context of the ingress-nginx controller, and disclosure of Secrets accessible to the controller,” said Kubernetes researchers. Inside the Ingress-Nginx Security Vulnerability Ingress controllers sit…

Read more →

AI, Global Security News, LTE, Marketing, News, shop, X

Boycotting Etsy? Explore Etsy Alternatives to Create an Independent Shop

Etsy—a leading online marketplace for artists, makers, and other creative retailers—has recently come under fire for its decision to increase its transaction fee from 5 percent to 6.5 percent. The company announced the increase in its Q4 2021 earnings report and said that it expects to “invest most of the incremental revenue from this fee […]

The post Boycotting Etsy? Explore Etsy Alternatives to Create an Independent Shop appeared first on Small Business Computing.

Read more →