Checkmarx Jenkins Plugin Hijacked — Supply Chain Attack Hits CI/CD Pipelines
Checkmarx Jenkins AST plugin compromised in supply chain attack, CVE-2026-7482 Ollama Bleeding Llama flaw, SailPoint GitHub breach
Posts tagged: Daily-Brief
PAN-OS CVE-2026-0300 Zero-Day Exploited Since April 9 — Polish ICS Breaches and Linux Dirty Frag
CVE-2026-0300 PAN-OS zero-day RCE exploited by state actors, Polish water plant ICS breaches, Linux Dirty Frag root exploit — May 8 2026
PAN-OS User-ID Zero-Day CVE-2026-0300 Exploited Since April 9 — CISA CI Fortify and MuddyWater False Flags
CVE-2026-0300 PAN-OS User-ID RCE zero-day exploited since April 9, CISA CI Fortify initiative, MuddyWater Chaos ransomware false flag
PAN-OS Zero-Day CVE-2026-0300 Exploited — DAEMON Tools Supply Chain, Canvas LMS Breach, CloudZ OTP Theft
CVE-2026-0300 PAN-OS zero-day exploited in the wild, DAEMON Tools supply-chain backdoor, Canvas LMS 280M record breach claim, CloudZ RAT steals OTPs via Phone …
UAT-8302 China-Nexus APT Exposed — Cisco Acquires Astrix — DigiCert Certificate Revocation
UAT-8302 APT targets governments with NetDraft and VSHELL, Cisco acquires Astrix Security for NHI, DigiCert revokes certs after portal breach
CVE-2026-31431 Linux Kernel Zero-Day Exploited — CISA KEV, cPanel Mass Compromise, Defender Certificate Chaos
CVE-2026-31431 Linux kernel zero-day hits CISA KEV with public PoC. 40K cPanel servers compromised. Defender false-positives break TLS.
SonicWall Firewall Bypass Flaws, FBI Cargo Hijacking Warning, and BlackCat Insider Threat Sentencing
SonicWall NGFW bypass vulnerabilities, FBI $725M cargo theft warning, BlackCat insiders sentenced, CVE-2026-41940 cPanel zero-day, TeamPCP supply chain attack
CVE-2026-41940: cPanel Auth Bypass Exploited Since February — SAP Supply Chain and Linux Kernel Flaws
CVE-2026-41940 cPanel zero-day exploited since February, SAP npm supply-chain attack, Linux Copy Fail CVE-2026-31431, GitHub RCE CVE-2026-3854
CISA Mandates Patch for Windows Shell Zero-Day CVE-2026-32202 — GitHub RCE and LiteLLM SQLi Also in Play
CVE-2026-32202 Windows Shell zero-day confirmed exploited; CVE-2026-3854 GitHub RCE; CVE-2026-42208 LiteLLM SQLi hit in 36 hours.
ShinyHunters Breaches ADT and Medtronic — 14.5M Records at Stake, Plus CVE-2026-32202 Exploited in the Wild
ShinyHunters breaches ADT (5.5M) and Medtronic (9M records). CVE-2026-32202 Windows Shell flaw exploited in the wild. UNC6692 Teams malware campaign.