ONE Sentinel

CRITICAL: CISA orders feds to patch Windows flaw exploited as zero-day

Bleeping Computer•THREATS2 months

CISA Urges Immediate Patching of Critical Windows Zero-Day Vulnerability

CRITICAL: CISA Adds Actively Exploited ConnectWise and Windows Flaws to KEV

CISA Flags Critical Flaws in ConnectWise and Windows for Immediate Attention

CRITICAL: LiteLLM CVE-2026-42208 SQL Injection Exploited within 36 Hours of Disclosure

Critical SQL Injection in LiteLLM Exploited Within 36 Hours

CRITICAL: Hackers are exploiting a critical LiteLLM pre-auth SQLi flaw

Bleeping Computer•THREATS2 months

Critical SQL Injection Flaw in LiteLLM Exploited by Hackers

CRITICAL: Researchers Discover Critical GitHub CVE-2026-3854 RCE Flaw Exploitable via Single Git Push

Critical GitHub RCE Vulnerability CVE-2026-3854 Uncovered

CRITICAL: VECT 2.0 Ransomware Irreversibly Destroys Files Over 131KB on Windows, Linux, ESXi

VECT 2.0 Ransomware Acts as a Destructive Wiper Across Multiple Platforms

CRITICAL: Critical Unpatched Flaw Leaves Hugging Face LeRobot Open to Unauthenticated RCE

Critical RCE Flaw in Hugging Face's LeRobot Exposes Systems to Attack

CRITICAL: Microsoft Patches Entra ID Role Flaw That Enabled Service Principal Takeover

Microsoft Fixes Critical Entra ID Role Flaw Allowing Service Principal Takeover

CRITICAL: PyPI package with 1.1M monthly downloads hacked to push infostealer

Bleeping Computer•THREATS2 months

PyPI Package Compromised to Distribute Infostealer

CRITICAL: PhantomCore Exploits TrueConf Vulnerabilities to Breach Russian Networks

PhantomCore Exploits TrueConf Vulnerabilities in Russian Networks

CRITICAL: CISA Adds 4 Exploited Flaws to KEV, Sets May 2026 Federal Deadline

CISA Highlights Critical Exploited Flaws in Popular Products

CRITICAL: FIRESTARTER Backdoor Hit Federal Cisco Firepower Device, Survives Security Patches

FIRESTARTER Backdoor Compromises Federal Cisco Firepower Device