Trend Micro has reported a serious security vulnerability in its Apex One platform, identified as CVE-2026-34926. This flaw allows for a directory path traversal, which means attackers could potentially access files and directories outside the intended scope. The company has confirmed that this vulnerability is being actively exploited in the wild, with at least one confirmed incident. Organizations using the Apex One platform are at risk, which makes it crucial for them to act quickly. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning regarding this vulnerability, urging affected users to take immediate action to protect their systems.
TrendAI has addressed a serious vulnerability in its Apex One security software, identified as CVE-2026-34926. This flaw is a directory traversal issue that could be exploited by attackers to gain unauthorized access to files on the system. The vulnerability specifically affects the on-premise version of Apex One, which is used by various organizations for endpoint security. Given that this vulnerability has been exploited in the wild, it poses a significant risk to users who have not yet applied the necessary updates. Companies using Apex One should prioritize applying the latest patches to safeguard their systems against potential breaches.
Microsoft has addressed a significant vulnerability in its BitLocker encryption feature, identified as YellowKey and tracked under the CVE-2026-45585 designation. This security flaw, which has a CVSS score of 6.8, allows attackers to bypass key protections, potentially exposing sensitive data on affected systems. The issue was publicly disclosed last week, prompting Microsoft to issue a mitigation to protect users. This vulnerability primarily affects Windows operating systems that utilize BitLocker for disk encryption. Given that BitLocker is widely used by businesses and individuals to secure data, the implications of this flaw are serious, making it crucial for users to implement the provided mitigation as soon as possible.
Microsoft has recently disclosed a zero-day vulnerability known as YellowKey that affects Windows BitLocker, which is used for encrypting drives. This vulnerability allows unauthorized access to protected drives, posing a significant risk to users' sensitive data. While Microsoft has not specified which particular versions of Windows are impacted, the potential for exploitation raises concerns for many users and organizations relying on BitLocker for data protection. Microsoft has provided mitigation strategies to help users safeguard their systems until a more permanent fix is available. It is crucial for users to implement these mitigations to prevent unauthorized access to their data.
On July 23, 2025, Luxembourg experienced a major telecom outage that lasted over three hours, affecting landline, 4G, 5G, and emergency services. The disruption was reportedly caused by a zero-day vulnerability in Huawei enterprise routers. This flaw allowed attackers to exploit the system, leading to widespread communication failures across the country. The incident raised concerns about the security of telecom infrastructure and the potential risks associated with undisclosed vulnerabilities in widely used equipment. The implications of this outage are significant, as it not only disrupted everyday communications but also emergency services, highlighting the critical need for robust cybersecurity measures in telecommunications.
Hackread – Cybersecurity News, Data Breaches, AI and More
At Pwn2Own Berlin 2026, cybersecurity researchers showcased 47 different zero-day exploits, targeting well-known enterprise software and artificial intelligence platforms. This event, which is part of an ongoing competition to identify security vulnerabilities, underscores the persistent risks facing organizations that rely on these technologies. Major software vendors are particularly affected, as these exploits could potentially allow attackers to gain unauthorized access or control over systems. The findings stress the need for companies to prioritize security updates and vulnerability management to protect sensitive data and maintain system integrity. The significant payout of $1.3 million for these discoveries further emphasizes the financial incentive for researchers to identify and report such vulnerabilities.
A newly discovered zero-day vulnerability in Microsoft Exchange, tracked as CVE-2026-42897, poses a significant risk as it allows attackers to exploit cross-site scripting (XSS) to compromise Outlook Web Access (OWA) mailboxes. This vulnerability is reportedly under active attack, meaning that malicious actors are currently trying to exploit it in the wild. Organizations using Microsoft Exchange should be particularly vigilant, as the absence of an available patch leaves their systems exposed. Without immediate remediation, users could face unauthorized access to sensitive email communications. Companies are advised to implement security measures, such as input validation and monitoring for suspicious activity, until an official patch is released.
At the recent Pwn2Own event in Berlin, security researchers identified 47 zero-day vulnerabilities in various software and systems, earning a total of $1.3 million in rewards for their findings. These vulnerabilities could potentially allow attackers to exploit systems and gain unauthorized access to sensitive information. The discoveries underscore the ongoing need for companies to enhance their security measures and patch their systems promptly to mitigate risks. This event serves as a reminder of the vulnerabilities that exist in widely used software and the importance of proactive security research. As these zero-days are disclosed, affected vendors will need to act quickly to protect their users.
A security researcher known as Chaotic Eclipse has disclosed a serious zero-day vulnerability in Windows called MiniPlasma, which allows attackers to gain SYSTEM privileges on fully updated Windows 11 systems. This flaw, affecting the 'cldflt.sys' file, was believed to have been patched back in 2020 under the CVE-2020-17103 designation, but it appears that the fix was either incomplete or not properly implemented. The existence of a proof-of-concept exploit for this vulnerability raises significant concerns for users and organizations, as it could allow malicious actors to escalate their privileges and potentially take control of affected systems. This issue affects all patched versions of Windows 11, meaning a wide range of users are at risk. Companies should prioritize reviewing their security protocols and consider additional monitoring to mitigate potential exploitation.
The Pwn2Own Berlin 2026 hacking competition recently wrapped up, with security researchers successfully exploiting 47 zero-day vulnerabilities, earning a total of $1,298,250 in rewards. This event showcases the capabilities of ethical hackers who identify and report security flaws before malicious actors can exploit them. The zero-days affected various software and systems, indicating that numerous products may be at risk if these vulnerabilities are not addressed. This situation emphasizes the ongoing need for companies to remain vigilant and proactive in their cybersecurity efforts to protect users and sensitive data. The findings from this contest could lead to important updates and patches, helping to secure software against potential attacks.
A cybersecurity researcher has disclosed a serious vulnerability in Windows, known as 'MiniPlasma', which allows attackers to escalate their privileges to SYSTEM level on fully patched systems. This zero-day exploit poses a significant risk because it can enable unauthorized access to sensitive data and system controls. Users of Windows systems, particularly those in corporate environments, should be on high alert as this exploit can potentially be used in cyberattacks. The researcher has also released a proof-of-concept (PoC) for the exploit, which can facilitate its misuse by malicious actors. This situation underscores the need for immediate attention to system security measures and vigilance against potential exploitation.
Last week, Cisco released a patch for a zero-day vulnerability affecting its SD-WAN product. This flaw could allow attackers to gain unauthorized access to the network and potentially disrupt services. Meanwhile, a previously unpatched vulnerability in Microsoft Exchange Server has been actively exploited by attackers, putting many organizations at risk. These incidents highlight the ongoing challenges companies face in securing their systems against evolving threats. It’s crucial for affected users to apply the latest patches and take proactive measures to protect their networks.
Pwn2Own Berlin 2026 concluded with DEVCORE emerging as the standout performer, successfully identifying 47 unique zero-day vulnerabilities during the event. Over three days, researchers earned a total of $1.29 million in rewards for their discoveries, showcasing the event's focus on security challenges across various platforms and applications. This year's competition not only highlighted the skills of participants but also underscored the ongoing need for robust cybersecurity measures in software development. With the number of zero-day vulnerabilities found, it emphasizes the vulnerabilities present in widely used systems and applications, prompting companies to reassess their security protocols. The event took place in conjunction with OffensiveCon, further connecting the research community with industry professionals.
CVE-2026-42897: Microsoft confirms active exploitation of Exchange Server zero-day
Security Affairs
Actively Exploited
Microsoft has confirmed that a new zero-day vulnerability in Exchange Server, identified as CVE-2026-42897, is being actively exploited by attackers. This vulnerability has a CVSS score of 8.1, indicating a high level of severity. It stems from improper handling of user input during web page generation, which can lead to cross-site scripting (XSS) attacks. Organizations using affected versions of Exchange Server are at risk, as attackers could exploit this flaw to execute malicious scripts in the context of users' browsers. Microsoft urges users to take immediate action to protect their systems and data from potential breaches.
Cisco has released a patch for a serious security vulnerability (CVE-2026-20182) affecting its Catalyst SD-WAN solutions. This flaw allows attackers to bypass authentication in both the Catalyst SD-WAN Controller and the Catalyst SD-WAN Manager, which are critical components for managing SD-WAN deployments. The vulnerability has been actively exploited by a sophisticated cyber threat actor, putting both on-premises and cloud users at risk. Organizations using these Cisco products should prioritize applying the patch to safeguard their networks from potential breaches. Failure to address this vulnerability could lead to unauthorized access and significant security incidents.