Secure Bulletin Navigating the cyber sea with knowledge
Home > Tag > CISA
#CISA

CISA Adds Apache ActiveMQ CVE-2026-34197 to KEV Catalog as Active Exploitation Surges

18 April 2026  |  dark6  |  Vulnerability

CISA has added CVE-2026-34197, a high-severity (CVSS 8.8) deserialization flaw in Apache ActiveMQ Classic, to its Known Exploited Vulnerabilities catalog after active exploitation was detected within 48 hours...

>> read more

Google Patches Actively Exploited Chrome Zero-Day CVE-2026-5281 — CISA Deadline Hits Today

15 April 2026  |  dark6  |  Vulnerability

Google has patched a high-severity use-after-free zero-day in Chrome's WebGPU implementation (CVE-2026-5281) that is actively exploited in the wild. CISA set a mandatory federal remediation deadline of April...

>> read more

Fortinet Issues Emergency Patch for Actively Exploited FortiClient EMS Zero-Day CVE-2026-35616

13 April 2026  |  dark6  |  Vulnerability

A critical zero-day vulnerability (CVE-2026-35616, CVSS 9.1) in Fortinet FortiClient EMS was exploited in the wild before Fortinet published its advisory. The pre-authentication flaw allows remote code execution...

>> read more

CISA Warning: Iranian-Affiliated Hackers Targeting US Critical Infrastructure PLCs to Cause Disruption

12 April 2026  |  dark6  |  Cybercrime

CISA has issued an urgent advisory (AA26-097A) warning that Iranian-affiliated APT actors have been actively targeting internet-exposed Programmable Logic Controllers across U.S. critical infrastructure since at least March...

>> read more

Russia’s APT28 Deploys New PRISMEX Malware in Espionage Campaign Targeting Ukraine and NATO Allies

12 April 2026  |  dark6  |  Malware

Russia-linked APT28 (Fancy Bear) has launched a new spear-phishing espionage campaign deploying PRISMEX, a previously undocumented malware suite combining steganography, COM hijacking, and cloud-based C2 infrastructure. Targets span...

>> read more

Google Patches Actively Exploited Chrome Zero-Day CVE-2026-5281 — Update Now

12 April 2026  |  dark6  |  Vulnerability

Google has confirmed that CVE-2026-5281, a high-severity use-after-free vulnerability in Chrome's Dawn WebGPU implementation, is being actively exploited in the wild. CISA has added the flaw to its...

>> read more

Critical vulnerabilities in Oracle WebLogic Server and Mitel MiCollab, CISA warns

7 January 2025  |  securebulletin.com  |  Vulnerability

The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning regarding critical vulnerabilities in Oracle WebLogic Server and Mitel MiCollab systems that are currently being exploited...

>> read more

Alert: CISA warns of three actively exploited vulnerabilities

10 September 2024  |  dark6  |  Vulnerability

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning regarding three critical vulnerabilities that are currently being exploited in the wild. These vulnerabilities affect widely used...

>> read more