CYBER Threat Intelligence Reports
LATEST CTIs
Actively Exploited VMware Aria Operations RCE (CVE-2026-22719)
A high-severity vulnerability in VMware Aria Operations has been added to the Known Exploited Vulnerabilities Catalog, indicating evidence of exploitation in real-world attacks. The vulnerability,…
Read more >
CVE-2026-20127 & CVE-2022-20775: Active Exploitation of Cisco SD-WAN Systems
A coordinated global campaign targeting Cisco SD-WAN environments has been identified by CISA, NSA, and international partners. Threat actors are actively exploiting a chain of…
Read more >
CVE-2025-49113 & CVE-2025-68461: Actively Exploited Roundcube Webmail Vulnerabilities
Two critical vulnerabilities affecting Roundcube Webmail, a widely deployed web-based email client (commonly bundled with cPanel), have been confirmed as actively exploited in the wild.…
Read more >
CVE-2026-20140: Splunk Enterprise for Windows Local Privilege Escalation
Splunk disclosed a high-severity local privilege escalation (LPE) vulnerability affecting Splunk Enterprise for Windows. An attacker with low-privileged local access may be able to escalate…
Read more >
CVE-2026-22769: Critical Dell RecoverPoint Hardcoded Credential Vulnerability
A critical vulnerability, CVE-2026-22769 (CVSS 10.0), has been identified in Dell RecoverPoint for Virtual Machines, a widely used enterprise backup and disaster recovery solution for…
Read more >
Google Chrome Zero-Day Under Exploitation (CVE-2026-2441)
CVE-2026-2441 is a high-severity use-after-free vulnerability in Google Chrome that is actively exploited in the wild. This marks the first Chrome zero-day patched in 2026.…
Read more >
