Cisco has confirmed that a serious zero-day vulnerability allowing remote code execution is being actively exploited in its Secure Email Gateway and Secure Email and Web Manager appliances. The CVE-2025-20393 flaw lets unauthorized attackers run arbitrary root commands by sending specific HTTP requests to the Spam Quarantine feature. Cisco aware …

Palo Alto Networks fixed a vulnerability that could let attackers to disable firewall protections in DoS attacks. CVE-2026-0227 is a security issue impacting next-gen firewalls using PAN-OS 10.1 or later and Prisma Access configurations when the GlobalProtect gateway or portal is active. The cybersecurity company reports that most cloud-based Prisma …

A dangerous malware loader dubbed CastleLoader poses a serious risk to US government agencies and critical infrastructure. First detected in early 2025, it has been used to gain initial access in coordinated attacks on federal agencies, IT firms, logistics companies, and essential infrastructure in North America and Europe. Security researchers …