Critical Apache HTTP/2 Flaw (CVE-2026-23918) Enables DoS and Potential RCE
What's new: A critical vulnerability in Apache HTTP Server, tracked as CVE-2026-23918 (CVSS score: 8.8), has been identified. This flaw,...
Year: 2026
China-Linked UAT-8302 Targets Governments Using Shared APT Malware Across Regions
What's new: A China-linked advanced persistent threat (APT) group, tracked as UAT-8302, has been targeting government entities in South America...
SOC 2 Pre-Audit Readiness: How NSAuditor AI Enterprise Edition Strengthens Technical Controls
Achieving SOC 2 compliance is a major milestone for SaaS companies, cloud service providers, and any organization that handles customer...
Phishing Campaign Hits 80+ Orgs Using SimpleHelp and ScreenConnect RMM Tools
What's new: An active phishing campaign, codenamed VENOMOUS#HELPER, has targeted over 80 organizations, primarily in the U.S., using compromised Remote...
Progress Patches Critical MOVEit Automation Bug Enabling Authentication Bypass
What's new: Progress Software has released patches for two vulnerabilities in MOVEit Automation, including a critical authentication bypass vulnerability (CVE-2026-4670,...
