Ivanti Sentry RCE Exploited — CISA's 3-Day Patch Mandate
Ivanti Sentry RCE under active exploitation with CISA's new 3-day patch mandate. ShinyHunters hit Oracle PeopleSoft CVE-2026-35273.
Posts tagged: Cybersecurity
Microsoft's Record 206-Patch Tuesday — 3 Exploited Zero-Days
Microsoft patches 206 flaws with 3 exploited zero-days including CVE-2026-42897. Ivanti Sentry CVSS 10.0 RCE and Langflow CVE-2026-5027 also exploited.
Microsoft's Record 206-Flaw Patch Tuesday — 4 Zero-Days
Microsoft patches 206 flaws including 3 zero-days, then a 4th drops hours later. PAN-OS CVE-2026-0257 exploited. ServiceNow 59-day exposure window.
Check Point VPN Zero-Day CVE-2026-50751 — Qilin Exploits
CVE-2026-50751 Check Point VPN IKEv1 auth bypass exploited by Qilin ransomware. Plus Chrome's fifth zero-day and a UniFi unauthenticated root chain.
Cisco ISE Read-Only Audit — Run It Yourself in 5 Minutes
Step-by-step quickstart for the read-only Cisco ISE audit tool — install uv, clone the repo, fill the form, get a downloadable PDF report with findings and …
Post-Incident Forensics vs Live Response — When to Use Which
Live response captures volatile evidence from a running system. Post-incident forensics captures the disk after the fact. They answer different questions and …
SolarWinds Serv-U Zero-Day Exploited — Patch Now
SolarWinds Serv-U zero-day exploited via unauthenticated POST. C0XMO botnet targets DD-WRT routers. Meta AI tool hijacks 20K Instagram accounts.
Containment Decisions Under Pressure — Why Network Isolation Isn't Always Right
Containment is a trade-off, not a reflex. When network isolation is wrong, when pulling the plug destroys your case, and the decision matrix for choosing the …
Building an Incident Response Playbook from Zero
A practical template for writing an incident response playbook from scratch — what to include, how to map it to NIST 800-61, roles and RACI, comms templates, …
Cisco SD-WAN Zero-Day CVE-2026-20245 — Exploited, No Patch
CVE-2026-20245 gives root on Cisco SD-WAN with no patch available. Plus IronWorm hits 36 npm packages and Five Eyes warns on Chinese recruiter ops.