NetmanageIT CTO Corner

Critical Nginx UI auth bypass flaw now actively exploited in the wild

Critical Nginx UI auth bypass flaw now actively exploited in the wild

BleepingComputer

New AgingFly malware used in attacks on Ukraine govt, hospitals

New AgingFly malware used in attacks on Ukraine govt, hospitals

BleepingComputer

WordPress plugin suite hacked to push malware to thousands of sites

WordPress plugin suite hacked to push malware to thousands of sites

BleepingComputer

Signed software abused to deploy antivirus-killing scripts

Signed software abused to deploy antivirus-killing scripts

BleepingComputer

n8n Webhooks Abused Since October 2025 to Deliver Malware via Phishing Emails

n8n Webhooks Abused Since October 2025 to Deliver Malware via Phishing Emails

Microsoft pays $2.3M for cloud and AI flaws at Zero Day Quest

Microsoft pays $2.3M for cloud and AI flaws at Zero Day Quest

BleepingComputer

CISA flags Windows Task Host vulnerability as exploited in attacks

CISA flags Windows Task Host vulnerability as exploited in attacks

BleepingComputer

Rolling Networks: Securing the Transportation Sector

Rolling Networks: Securing the Transportation Sector

BleepingComputer

Critical nginx-ui Vulnerability CVE-2026-33032 Allows Unauthenticated Nginx Takeover

Critical nginx-ui Vulnerability CVE-2026-33032 Allows Unauthenticated Nginx Takeover

April Patch Tuesday Fixes Critical Flaws Across SAP, Adobe, Microsoft, Fortinet, and More

April Patch Tuesday Fixes Critical Flaws Across SAP, Adobe, Microsoft, Fortinet, and More

Microsoft: April updates trigger BitLocker key prompts on some servers

BleepingComputer

Deterministic + Agentic AI: The Architecture Exposure Validation Requires

Deterministic + Agentic AI: The Architecture Exposure Validation Requires

Microsoft fixes bug behind Windows Server 2025 automatic upgrades

Microsoft fixes bug behind Windows Server 2025 automatic upgrades

BleepingComputer

Microsoft Issues Patches for SharePoint Zero-Day and 168 Other Vulnerabilities

Microsoft Issues Patches for SharePoint Zero-Day and 168 Other Vulnerabilities

OpenAI Launches GPT-5.4-Cyber with Expanded Access for Security Teams

OpenAI Launches GPT-5.4-Cyber with Expanded Access for Security Teams

Microsoft adds Windows protections for malicious Remote Desktop files

Microsoft adds Windows protections for malicious Remote Desktop files

BleepingComputer

Crypto-exchange Kraken extorted by hackers after insider breach

Crypto-exchange Kraken extorted by hackers after insider breach

BleepingComputer

Over 100 Chrome extensions in Web Store target users accounts and data

Over 100 Chrome extensions in Web Store target users accounts and data

BleepingComputer

Microsoft releases Windows 10 KB5082200 extended security update

Microsoft releases Windows 10 KB5082200 extended security update

BleepingComputer

McGraw-Hill confirms data breach following extortion threat

McGraw-Hill confirms data breach following extortion threat

BleepingComputer

Windows 11 cumulative updates KB5083769 & KB5082052 released

Windows 11 cumulative updates KB5083769 & KB5082052 released

BleepingComputer

Microsoft April 2026 Patch Tuesday fixes 167 flaws, 2 zero-days

Microsoft April 2026 Patch Tuesday fixes 167 flaws, 2 zero-days

BleepingComputer

Fake Ledger Live app on Apple’s App Store stole $9.5M in crypto

Fake Ledger Live app on Apple’s App Store stole $9.5M in crypto

BleepingComputer

New PHP Composer Flaws Enable Arbitrary Command Execution

New PHP Composer Flaws Enable Arbitrary Command Execution

Microsoft rolls out fast-track to reinstate Windows hardware dev accounts

Microsoft rolls out fast-track to reinstate Windows hardware dev accounts

BleepingComputer