Episode 80 — 11 Jun 2026
1. Path traversal flaw in AI dev platform Langflow exploited in attacks
Source: Bleeping Computer
Attackers are actively exploiting CVE-2026-5027, a high-severity path traversal vulnerability in the AI development platform Langflow, to write arbitrary files on exposed servers. Langflow is an open-source visual platform for building AI applications, AI agents,...
2. Microsoft patches Exchange Server zero-day exploited in attacks
Source: Bleeping Computer
Microsoft has patched an actively exploited Exchange Server vulnerability that allows threat actors to execute arbitrary JavaScript code in cross-site scripting (XSS) attacks targeting Outlook Web Access users. This high-severity spoofing vulnerability ( CVE-2026-42897 )...
3. Microsoft patches YellowKey, GreenPlasma, MiniPlasma zero-days
Source: Bleeping Computer
On Tuesday, Microsoft patched two zero-day vulnerabilities that let attackers gain SYSTEM privileges on fully patched Windows systems, and a third one that grants access to BitLocker-protected drives. All three security flaws were disclosed last month by a security researcher...
4. The ‘Miasma’ worm source code briefly leaked on GitHub
Source: Bleeping Computer
The Miasma credential-stealing attack framework, which has recently targeted open-source ecosystems through supply-chain attacks, was briefly open-sourced on GitHub. Miasma appears to be an evolution of the earlier Shai-Hulud worm, which was previously leaked on GitHub and...
5. Who Runs the Ransomware Group ‘The Gentlemen?’
Source: Krebs on Security
A cybercrime group known as The Gentlemen has emerged as the second most active ransomware gang by victim count, rapidly attracting a talented pool of hackers through an aggressive recruitment strategy that promises affiliates 90 percent of any ransom paid by victims. This...
6. CISA Adds Cisco, Chrome, and Arista Flaws to KEV Catalog Amid Active Exploitation
Source: The Hacker News
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added three new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, following reports of active exploitation. The list of vulnerabilities is as follows - CVE-2026-20245 (CVSS score:...
7. Veeam Backup & Replication RCE Flaw Lets Domain Users Run Remote Code
Source: The Hacker News
Veeam has released security patches to address a critical flaw in its Backup & Replication software that could result in remote code execution. Tracked as CVE-2026-44963, the vulnerability carries a CVSS score of 9.4 out of a maximum of 10.0. "A vulnerability allowing remote...
8. ServiceNow Flaw Exploited to Gain Unauthorized Access to Customer Instances
Source: The Hacker News
ServiceNow has warned about a security incident in which unknown threat actors exploited a flaw to obtain deeper unauthorized access to susceptible instances. "On June 5, 2026, ServiceNow applied a security update to hosted customer instances," the company revealed in an...
