vulnerability-management

Vulnerability-related breach exposes RCI Hospitality Holdings’ contractor data

• data-security
• vulnerability-management

Vulnerability-related breach exposes RCI Hospitality Holdings’ contractor data

SC Staff April 15, 2026

Major U.S. adult nightclub and sports bar operator RCI Hospitality Holdings had the personal information of "numerous"...

Read More Read more about Vulnerability-related breach exposes RCI Hospitality Holdings’ contractor data

Active exploitation of old Microsoft bugs prompt CISA catalog inclusion

• patchconfiguration-management
• vulnerability-management

Active exploitation of old Microsoft bugs prompt CISA catalog inclusion

SC Staff April 14, 2026

The Cybersecurity and Infrastructure Security Agency has updated its Known Exploited Vulnerabilities catalog to include four old...

Read More Read more about Active exploitation of old Microsoft bugs prompt CISA catalog inclusion

Zuckbot, Rockstar, Klaude, Browsers Galore, Microsoft 365, ATC, Kieran Human and more – Kieran Human – SWN #572

• aiml
• third-party-code
• vulnerability-management

Zuckbot, Rockstar, Klaude, Browsers Galore, Microsoft 365, ATC, Kieran Human and more – Kieran Human – SWN #572

Doug White April 14, 2026

Read More Read more about Zuckbot, Rockstar, Klaude, Browsers Galore, Microsoft 365, ATC, Kieran Human and more – Kieran Human – SWN #572

Critical wolfSSL vulnerability allows forged certificates

• application-security
• Encryption
• patchconfiguration-management
• vulnerability-management

Critical wolfSSL vulnerability allows forged certificates

SC Staff April 14, 2026

The vulnerability, discovered by Nicholas Carlini, is a cryptographic validation flaw affecting multiple signature algorithms in wolfSSL,...

Read More Read more about Critical wolfSSL vulnerability allows forged certificates

ShowDoc vulnerability actively exploited

• patchconfiguration-management
• vulnerability-management

ShowDoc vulnerability actively exploited

SC Staff April 14, 2026

The vulnerability, identified as CVE-2025-0520 with a CVSS score of 9.4, allows for unrestricted file uploads due...

Read More Read more about ShowDoc vulnerability actively exploited

Juniper releases patches for multiple Junos OS bugs

• patchconfiguration-management
• vulnerability-management

Juniper releases patches for multiple Junos OS bugs

SC Staff April 13, 2026

SecurityWeek reports that Jupiter Networks, a networking hardware and software company, has issued patches for around 30...

Read More Read more about Juniper releases patches for multiple Junos OS bugs

Marimo vulnerability exploited within hours of disclosure

• patchconfiguration-management
• vulnerability-management

Marimo vulnerability exploited within hours of disclosure

SC Staff April 13, 2026

The vulnerability, identified as CVE-2026-39987 with a CVSS score of 9.3, affected all Marimo versions prior to...

Read More Read more about Marimo vulnerability exploited within hours of disclosure

Staypuft, Claude, One Pixel, deepfakes, Raccoon, BOFH, Satoshi Nakamoto, Josh Marpet. – SWN #571

• aiml
• Privacy
• vulnerability-management

Staypuft, Claude, One Pixel, deepfakes, Raccoon, BOFH, Satoshi Nakamoto, Josh Marpet. – SWN #571

Doug White April 10, 2026

Read More Read more about Staypuft, Claude, One Pixel, deepfakes, Raccoon, BOFH, Satoshi Nakamoto, Josh Marpet. – SWN #571

EngageLab SDK bug threatened expansive Android crypto wallet compromise

• application-security
• vulnerability-management

EngageLab SDK bug threatened expansive Android crypto wallet compromise

SC Staff April 10, 2026

Popular third-party Android software development kit EngageLab SDK has been impacted by an already addressed intent redirection...

Read More Read more about EngageLab SDK bug threatened expansive Android crypto wallet compromise

Bessent, Powell met privately with top bankers over impact of Claude Mythos on cybersecurity 

• ai-benefitsrisks
• generative-ai
• vulnerability-management

Bessent, Powell met privately with top bankers over impact of Claude Mythos on cybersecurity 

Steve Zurier April 10, 2026

Security pros say companies that spend less money than most large banks on cyber should take this...

Read More Read more about Bessent, Powell met privately with top bankers over impact of Claude Mythos on cybersecurity