Attention: You are using an outdated browser, device or you do not have the latest version of JavaScript downloaded and so this website may not work as expected. Please download the latest software or switch device to avoid further issues.
| 28 May 2026 | |
| Written by Gabi Gerber | |
| Attacks & Threats |
| Security Operation Center, Hacking Topics |
Microsoft rolled out an out-of-band patch for a remote code execution vulnerability in SharePoint Server that any authenticated attacker can potentially exploit without requiring administrator or other elevated privileges.
Microsoft assigned the bug, tracked as CVE-2026-45659, a severity rating of 8.8 on the 10-point CVSS scale. The company described the vulnerability as one that attackers are less likely to exploit even though it involves low attack complexity, no user interaction, and minimal privileges. More here
Two new models from Chinese firms compete with top US mainstream and frontier models. Should cyber-defenders be worried? More...
An "agentic threat actor" successfully exploited a Langflow flaw to steal data from a production database server and enc… More...
Does life feel Orwellian sometimes? One researcher has a solution for you: graphic tees that confuse the neural networks… More...
Threat actors can easily steal one-time passwords sent by text when they conduct a SIM swap attack. This can lead to acc… More...
A leaked GitHub token underscores what most organizations get wrong: Treating secrets management as a tooling problem ra… More...
Two new models from Chinese firms compete with top US mainstream and frontier models. Should cyber-defenders be worried? More...
An "agentic threat actor" successfully exploited a Langflow flaw to steal data from a production database server and enc… More...
Does life feel Orwellian sometimes? One researcher has a solution for you: graphic tees that confuse the neural networks… More...
Threat actors can easily steal one-time passwords sent by text when they conduct a SIM swap attack. This can lead to acc… More...
A leaked GitHub token underscores what most organizations get wrong: Treating secrets management as a tooling problem ra… More...