https://www.intelfusions.com/news/windows-search-uri-handler-ntlm-coercion-no-cve-no-fix-huntress-2026 IntelFusions en 2026-06-06T18:13:15.313Z Unpatched by Design: Huntress Details a No-CVE NTLM Coercion in the Windows Search URI Handler https://www.intelfusions.com/news/pan-os-globalprotect-cve-2026-0257-active-exploitation-auth-bypass-2026 IntelFusions en 2026-06-06T18:05:46.255Z PAN-OS GlobalProtect Authentication Bypass CVE-2026-0257 Under Active Exploitation After Public PoC https://www.intelfusions.com/news/checkpoint-tds-click-hijacking-software-impersonation-sessiongate-remusstealer-2026 IntelFusions en 2026-06-06T18:05:15.313Z Inside a Click-Hijacking Malware Ecosystem: Check Point Maps Fake Dev-Tool Sites, a TDS, and the SessionGate / RemusStealer / AnimateClipper Payloads https://www.intelfusions.com/news/gamaredon-fsb-matryoshka-gammaphish-gammaworm-gammaload-gammasteel-sekoia-2026 IntelFusions en 2026-06-06T17:58:46.255Z FSB's Matryoshka: Sekoia Unpacks Gamaredon's GammaPhish, GammaWorm, GammaLoad, and GammaSteel Toolchain Against Ukraine https://www.intelfusions.com/news/dirty-frag-linux-kernel-cve-2026-43284-43500-fortinet-2026 IntelFusions en 2026-06-06T17:57:15.313Z "Dirty Frag": Fortinet PSIRT Triages a Chained Linux Kernel Privilege-Escalation Pair (CVE-2026-43284, CVE-2026-43500) https://www.intelfusions.com/news/cloudsek-unauthenticated-mcp-server-ssrf-lfi-aws-credential-theft-2026 IntelFusions en 2026-06-06T17:51:46.255Z Unauthenticated MCP Server Chained to SSRF, LFI, and AWS Credential Theft: CloudSEK Case Study https://www.intelfusions.com/news/copy-fail-cve-2026-31431-linux-kernel-page-cache-lpe IntelFusions en 2026-06-06T14:39:06.089Z Copy Fail (CVE-2026-31431) Hands Local Root Across Every Major Linux Distribution Since 2017 https://www.intelfusions.com/news/pan-os-captive-portal-cve-2026-0300-cl-sta-1132 IntelFusions en 2026-06-06T12:39:06.089Z PAN-OS Captive Portal Zero-Day CVE-2026-0300 Under Limited Exploitation by Suspected State-Sponsored Cluster CL-STA-1132 https://www.intelfusions.com/news/cisco-catalyst-sd-wan-cve-2026-20182-active-exploitation-webshells-2026 IntelFusions en 2026-06-06T10:39:06.089Z Cisco Catalyst SD-WAN Under Active Attack as CVE-2026-20182 Auth Bypass Joins a PoC-Driven Webshell Wave https://www.intelfusions.com/news/unit42-18-genai-browser-extensions-stealing-prompts IntelFusions en 2026-06-06T08:39:06.089Z Unit 42 Finds 18 Malicious GenAI Browser Extensions Stealing Emails, ChatGPT Prompts, and Credentials https://www.intelfusions.com/news/cloud-atlas-powercloud-ssh-tunneling-russia-belarus-2026 IntelFusions en 2026-06-06T05:39:06.089Z Cloud Atlas Returns With New PowerCloud Payload and SSH Tunneling Against Russian and Belarusian Government Targets https://www.intelfusions.com/news/screening-serpens-iran-apt-miniupdate-minijunk-rats-espionage-2026 IntelFusions en 2026-06-06T02:39:06.089Z Iran-Nexus Screening Serpens Deploys Six New RATs in Espionage Surge Tied to Middle East Conflict https://www.intelfusions.com/news/ahnlab-endpoint-ransomware-babuk-derived-windows-esxi-nas-2026 IntelFusions en 2026-06-05T23:39:06.089Z AhnLab Dissects EndPoint Ransomware, a Babuk Derived Strain Targeting Windows, ESXi, and NAS https://www.intelfusions.com/news/mr-rot13-cpanel-cve-2026-41940-exploitation IntelFusions en 2026-06-05T20:39:06.089Z XLab Links Mr_Rot13 Group to Mass Exploitation of cPanel Auth Bypass CVE-2026-41940 https://www.intelfusions.com/news/unit42-operation-flutterbridge-fluttershell-macos-backdoor IntelFusions en 2026-06-05T16:39:06.089Z Unit 42 Tracks Operation FlutterBridge: New macOS Backdoor FlutterShell Hijacks Chrome via Google Ads https://www.intelfusions.com/news/xrdp-cve-2025-68670-preauth-stack-overflow IntelFusions en 2026-06-05T12:39:06.089Z Kaspersky Discloses CVE-2025-68670, a Pre-Auth Stack Overflow in the xrdp Remote Desktop Server