MUST READ

A Fake UK Visa Site Left 100,000 Passports Wide Open

 | 

U.S. CISA adds LiteSpeed cPanel Plugin flaw to its Known Exploited Vulnerabilities catalog

 | 

19.6 Billion Files Are Sitting Open on the Internet. No Password Required

 | 

Romanian Hacker Gets Nearly 5 Years in US Prison Over Network Intrusion

 | 

The LA Metro Attack Wasn't Hacktivism. It Was a State Operation With a Costume On.

 | 

How cybersecurity firms took down Glassworm botnet in one shot

 | 

Dutch Government just said no to an American firm buying the keys to their digital State

 | 

Microsoft SharePoint Has a New RCE Flaw. If You Haven't Patched Yet, Go Do That.

 | 

The Hidden Ransomware Economy Running on Exposed Databases

 | 

Malware Found in Laravel-Lang Composer Packages After Git Tag Poisoning Attack

 | 

Nimbus Manticore Expanded Attacks With AI-Assisted Malware and Fake Zoom Installers

 | 

Lazarus APT unveils fileless remote access Trojan designed to evade detection

 | 

Third-Party Cyberattack Impacts Patient Information at The Oncology Institute

 | 

Ghost CMS flaw abused to push ClickFix attacks on hundreds of sites

 | 

340 Million OnlyFans Profiles Allegedly Rebuilt from Leaks

 | 

Zero-Click WhatsApp Account Takeover Hits iPhone Users Running iOS 16. No Linked Devices, No Warning

 | 

Dutch authorities dismantle hosting network allegedly used for cyberattacks and disinformation

 | 

FBI director Kash Patel’s brand website taken offline after malware reports

 | 

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 98

 | 

Security Affairs newsletter Round 578 by Pierluigi Paganini – INTERNATIONAL EDITION

 | 

CVE-2026-48172

Pierluigi Paganini May 28, 2026
U.S. CISA adds LiteSpeed cPanel Plugin flaw to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds LiteSpeed cPanel Plugin flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the LiteSpeed cPanel Plugin flaw CVE-2026-48172 to its Known Exploited Vulnerabilities (KEV) catalog. CVE-2026-48172 (CVSS score of 10.0) affects the LiteSpeed User-End cPanel plugin before version 2.4.5 and allows […]

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

A Fake UK Visa Site Left 100,000 Passports Wide Open

Security / May 28, 2026

U.S. CISA adds LiteSpeed cPanel Plugin flaw to its Known Exploited Vulnerabilities catalog

Hacking / May 28, 2026

19.6 Billion Files Are Sitting Open on the Internet. No Password Required

Security / May 28, 2026

Romanian Hacker Gets Nearly 5 Years in US Prison Over Network Intrusion

Cyber Crime / May 27, 2026

The LA Metro Attack Wasn't Hacktivism. It Was a State Operation With a Costume On.

Hacktivism / May 27, 2026