Episode 58 — 16 May 2026
1. Microsoft warns of Exchange zero-day flaw exploited in attacks
Source: Bleeping Computer
On Thursday, Microsoft shared mitigations for a high-severity Exchange Server vulnerability exploited in attacks that allow threat actors to execute arbitrary code via cross-site scripting (XSS) while targeting Outlook on the web users. Microsoft describes this security flaw...
2. Funnel Builder WordPress plugin bug exploited to steal credit cards
Source: Bleeping Computer
A critical vulnerability in the Funnel Builder plugin for WordPress is being actively exploited to inject malicious JavaScript snippets into WooCommerce checkout pages. The flaw has not received an official identifier and can be leveraged without authentication. It affects...
3. Hackers exploit auth bypass flaw in Burst Statistics WordPress plugin
Source: Bleeping Computer
Hackers are leveraging a critical authentication bypass vulnerability in the WordPress plugin Burst Statistics to obtain admin-level access to websites. Burst Statistics is a privacy-focused analytics plugin active on 200,000 WordPress sites and marketed as a lightweight...
4. CISA Adds Cisco SD-WAN CVE-2026-20182 to KEV After Admin Access Exploits
Source: The Hacker News
The U.S.Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a newly disclosed vulnerability impacting Cisco Catalyst SD-WAN Controller to its Known Exploited Vulnerabilities (KEV) catalog, requiring Federal Civilian Executive Branch (FCEB) agencies to...
5. Popular node-ipc npm package compromised to steal credentials
Source: Bleeping Computer
Hackers have injected credential-stealing malware into newly published versions of node-ipc, a popular inter-process communication package, in a new supply chain attack targeting npm. The node-ipc package is a Node.js module that enables various processes to communicate...
6. Turla Turns Kazuar Backdoor Into Modular P2P Botnet for Persistent Access
Source: The Hacker News
The Russian state-sponsored hacking group known as Turla has transformed its custom backdoor Kazuar into a modular peer-to-peer (P2P) botnet that's engineered for stealth and persistent access to compromised hosts. Turla, per the U.S. Cybersecurity and Infrastructure Security...
7. PraisonAI CVE-2026-44338 Auth Bypass Targeted Within Hours of Disclosure
Source: The Hacker News
Threat actors have been observed attempting to exploit a recently disclosed security vulnerability in PraisonAI, an open-source multi-agent orchestration framework, within four hours of its public disclosure. The vulnerability in question is CVE-2026-44338 (CVSS score: 7.3),...
8. On-Prem Microsoft Exchange Server CVE-2026-42897 Exploited via Crafted Email
Source: The Hacker News
Microsoft has disclosed a new security vulnerability impacting on-premise versions of Exchange Server that it said has come under active exploitation in the wild. The vulnerability, tracked as CVE-2026-42897 (CVSS score: 8.1), has been described as a spoofing bug stemming...
