Alert

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has asked federal agencies to protect their systems by Sunday from a serious Splunk Enterprise flaw that is being used in attacks. Tracked as CVE-2026-20253, this security flaw impacts Splunk Enterprise (versions 10.2.0 to 10.2.3 and 10.0.0 to 10.0.6). It lets remote …

Cisco has revealed critical security flaws in its Identity Services Engine (ISE). These flaws could let attackers run harmful code from afar and get sensitive information, which is a big risk for business networks. The flaw, noted as CVE-2026-20181 and CVE-2026-20190, were shared in advisory ID cisco-sa-ise-multi-G5WP8vv on June 17, …

F5 has shared a security warning about serious flaws in NGINX. These issues could let attackers run any code and cause denial-of-service (DoS) attacks in affected systems. The notice, published on June 17, 2026, points out important problems affecting NGINX Open Source, NGINX Plus, and related products like NGINX Gateway …

A new Android banking trojan called Rokarolla is hitting 217 banking and cryptocurrency apps with a wide range of 137 commands. The harmful software spreads through bad websites pretending to offer the Google Chrome or TikTok app and can gain full control over a hacked device. Its abilities include stealing …

Cisco on Monday told customers about a new SD-WAN product flaw used in attacks. The flaw, called CVE-2026-20262, is a medium-severity issue that lets files be written anywhere in the Catalyst SD-WAN Manager. “This file could later be used to elevate to root,” Cisco explained, adding, “To exploit this vulnerability, …

A critical security flaw has affected the open-source security community. Recently, complete details and working exploit code were shared online. This critical Wazuh  flaw lets verified endpoints change central log systems directly. So, any company testing this new platform must take urgent action. If not, they risk major damage to …

Palo Alto Networks Unit 42 has given an urgent alert about the active use of CVE-2026-0257. This is a serious security hole that allows bypassing authentication in the GlobalProtect portal and gateway parts of PAN-OS software. The flaw lets unauthenticated remote attackers bypass security measures and start unauthorized VPN connections …

Google has released a big security update for Chrome on desktops. Version 149.0.7827.114/.115 is now out for Windows and Mac. Linux gets version 149.0.7827.114. The update will keep going in the next days and weeks. This update fixes 28 security flaws. Some of these are very serious. They might let …

A security notice has revealed serious flaws in some Dahua products. Network admins need to fix these issues fast. The official DHCC-SA-202606-001 alert points out three major problems with different IP cameras (IPC), PTZ cameras (SD), network video recorders (NVR), and other special devices. If not fixed, these risky flaws …

A security expert shared a new Microsoft Defender vulnerability called “RoguePlanet” only hours after Microsoft fixed two earlier problems in June 2026 Patch Tuesday. The researcher named Nightmare Eclipse says a new flaw affects fully updated Windows 10 and Windows 11 devices. It lets attackers open a command prompt with SYSTEM …