MUST READ

Iran-Linked Handala Breached a California Water Utility. It Could Have Done Worse, and It Knows That.

 | 

U.S. CISA adds Ivanti Sentry flaw to its Known Exploited Vulnerabilities catalog and urges patching by June 14

 | 

Oracle PeopleSoft RCE Flaw Used as Zero-Day in Ongoing ShinyHunters Campaign

 | 

21,786 Home Cameras, No Password, No Warning

 | 

CVE-2026-10520 Exploited: Ivanti Sentry Gateways Compromised Shortly After Patch Release

 | 

OnyxC2 Malware-as-a-Service Offers Enterprise-Grade Data Theft

 | 

Chaotic Eclipse Strikes Again: New Zero-Day Unlocks BitLocker in Four Hours of Research

 | 

Fortinet patched a new critical FortiSandbox flaw

 | 

JDY Botnet Evolves After KV Takedown, Targets Military Networks

 | 

Russian APTs Still Exploiting Patched WinRAR Flaw CVE-2025-8088

 | 

U.S. CISA adds Cisco Catalyst SD-WAN, Arista Extensible Operating System (EOS), and Google Chromium V8 flaws to its Known Exploited Vulnerabilities catalog

 | 

Chaotic Eclipse Unveils RoguePlanet Exploit Targeting Fully Patched Windows

 | 

“AI Worms”, researchers demonstrate autonomous malware capable of adapting to any online device

 | 

France's Government Messaging App Tchap Got Breached

 | 

Microsoft Releases Record-Breaking Patch Tuesday With 208 CVEs

 | 

Critical Veeam RCE Flaw Lets Low-Privilege Users Take Over Backup Servers

 | 

Miasma Worm Compromises 73 Microsoft GitHub Repositories

 | 

Google fixes the fifth actively exploited Chrome zero-day of 2026

 | 

U.S. CISA adds BerriAI LiteLLM and Check Point Security Gateway flaws to its Known Exploited Vulnerabilities catalog

 | 

CVE-2026-23111: Linux nf_tables Flaw Enables Root Exploits

 | 

Ivanti Sentry

Pierluigi Paganini June 12, 2026
U.S. CISA adds Ivanti Sentry flaw to its Known Exploited Vulnerabilities catalog and urges patching by June 14

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Ivanti Sentry flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Ivanti Sentry flaw, tracked as CVE-2026-10520 (CVSS score of 10.0), to its Known Exploited Vulnerabilities (KEV) catalog. Ivanti Sentry is a secure gateway appliance that sits between an organization’s internal […]

Pierluigi Paganini August 24, 2023
Researchers released PoC exploit for Ivanti Sentry flaw CVE-2023-38035

Proof-of-concept exploit code for critical Ivanti Sentry authentication bypass flaw CVE-2023-38035 has been released. Researchers released a proof-of-concept (PoC) exploit code for critical Ivanti Sentry authentication bypass vulnerability CVE-2023-38035 (CVSS score 9.8). This week the software company Ivanti released urgent security patches to address the critical-severity vulnerability CVE-2023-38035 impacting the Ivanti Sentry (formerly MobileIron Sentry) product. […]

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

Iran-Linked Handala Breached a California Water Utility. It Could Have Done Worse, and It Knows That.

Uncategorized / June 12, 2026

U.S. CISA adds Ivanti Sentry flaw to its Known Exploited Vulnerabilities catalog and urges patching by June 14

Security / June 12, 2026

Oracle PeopleSoft RCE Flaw Used as Zero-Day in Ongoing ShinyHunters Campaign

Cyber Crime / June 12, 2026

21,786 Home Cameras, No Password, No Warning

Hacking / June 12, 2026

CVE-2026-10520 Exploited: Ivanti Sentry Gateways Compromised Shortly After Patch Release

Hacking / June 11, 2026