Indicators of Compromise

The Hacker News 📡 RSS May 8

Linux Kernel Dirty Frag LPE Exploit Enables Root Access Across Major Distributions

CVEs: CVE-2026-31431

The Hacker News →

SANS ISC 📡 RSS May 8

ISC Stormcast For Friday, May 8th, 2026 https://isc.sans.edu/podcastdetail/9924, (Fri, May 8th)

SANS ISC →

CSO Online 📡 RSS May 8

Palo Alto Networks firewall flaw has been exploited for several weeks

CVEs: CVE-2026-0300

CSO Online →

CSO Online 📡 RSS May 7

Ollama vulnerability highlights danger of AI frameworks with unrestricted access

CVEs: CVE-2026-7482

CSO Online →

Security Affairs 📡 RSS May 7

Nation-state actors exploit Palo Alto PAN-OS zero-day for weeks

CVEs: CVE-2026-0300

Security Affairs →

Security Affairs 📡 RSS May 7

U.S. CISA adds a flaw in Ivanti Endpoint Manager Mobile (EPMM) to its Known Exploited Vulnerabilities catalog

CVEs: CVE-2026-6973

Security Affairs →

The Hacker News 📡 RSS May 7

Ivanti EPMM CVE-2026-6973 RCE Under Active Exploitation Grants Admin-Level Access

CVEs: CVE-2026-6973

IPs: 12.6.1.1 12.7.0.1 12.8.0.1

The Hacker News →

The Hacker News 📡 RSS May 7

PAN-OS RCE Exploit Under Active Use Enabling Root Access and Espionage

CVEs: CVE-2026-0300

The Hacker News →

GBHackers 📡 RSS May 7

CISA Issues Warning Over Palo Alto PAN-OS Flaw Enabling Root-Level Access

CVEs: CVE-2026-0300

GBHackers →

CISA Advisories 📡 RSS May 7

CISA Adds One Known Exploited Vulnerability to Catalog

CVEs: CVE-2026-6973

CISA Advisories →

Help Net Security 📡 RSS May 7

State-sponsored hackers likely behind zero-day attacks on Palo Alto firewalls

CVEs: CVE-2026-0300

Help Net Security →

Security Affairs 📡 RSS May 7

From Android TVs to routers: the xlabs_v1 Mirai-based botnet built for DDoS attacks

Domains: hunt.io

Security Affairs →

GBHackers 📡 RSS May 7

Redis Security Flaws Expose Servers to Remote Code Execution Risks

CVEs: CVE-2026-23479 CVE-2026-25243 CVE-2026-25588 CVE-2026-25589 CVE-2026-23631

GBHackers →

Security Affairs 📡 RSS May 7

U.S. CISA adds a flaw in Palo Alto Networks PAN-OS to its Known Exploited Vulnerabilities catalog

CVEs: CVE-2026-0300

Security Affairs →

GBHackers 📡 RSS May 7

Cisco Network Flaw Exposes Devices to Remote Denial-of-Service Exploits

CVEs: CVE-2026-20188

GBHackers →

SANS ISC 📡 RSS May 7

ISC Stormcast For Thursday, May 7th, 2026 https://isc.sans.edu/podcastdetail/9922, (Thu, May 7th)

SANS ISC →

Unit 42 📡 RSS May 7

Threat Brief: Exploitation of PAN-OS Captive Portal Zero-Day for Unauthenticated Remote Code Execution

CVEs: CVE-2026-0300

Unit 42 →

The Record 📡 RSS May 6

Palo Alto warns of critical software bug used in firewall attacks

CVEs: CVE-2026-0300

The Record →

The Hacker News 📡 RSS May 6

Mirai-Based xlabs_v1 Botnet Exploits ADB to Hijack IoT Devices for DDoS Attacks

Domains: hunt.io

The Hacker News →

Cloudflare Blog 📡 RSS May 6

When DNSSEC goes wrong: how we responded to the .de TLD outage

IPs: 1.1.1.1

Cloudflare Blog →