Lucas Oliveira

Cisco patches another SD-WAN zero-day after limited exploitation Cisco has disclosed yet another actively exploited weakness in its SD-WAN stack, and the import...

Lucas Oliveira

Research

YellowKey fix lands in June baseline: patch BitLocker fleets now Microsoft has now closed the patch gap for CVE-2026-45585, the public BitLocker bypass widely r...

Lucas Oliveira

Research

PAN-OS GlobalProtect auth bypass is now an incident response problem Palo Alto Networks has confirmed active exploitation of CVE-2026-0257, an authentication by...

Lucas Oliveira

Research

Red Hat npm compromise proves provenance alone is not enough Red Hat has confirmed that multiple packages published under the @redhat-cloud-services npm namespa...

Lucas Oliveira

Research

Exchange CVE-2026-42897 patches land after active OWA exploitation Microsoft has now shipped the June 2026 Exchange security updates for CVE-2026-42897, ending...

Lucas Oliveira

Research

Veeam CVE-2026-44963 puts domain-joined backup servers at RCE risk Veeam has patched CVE-2026-44963, a critical [vulnerability](https://invaders.ie/resources/gl...

Lucas Oliveira

Research

Oracle PeopleSoft alert follows breach claims at 100+ organizations Claims of mass compromise across Oracle PeopleSoft environments were already serious on June...

Lucas Oliveira

Research

Chrome Zero-Day CVE-2026-11645 Enters KEV After Google Ships Emergency V8 Patch Google has patched an actively exploited [zero-day](https://invaders.ie/resource...

Lucas Oliveira

Research

Cisco CUCM SSRF bug turns WebDialer exposure into a path toward root Cisco's latest Unified Communications Manager advisory deserves attention because it turns...

Lucas Oliveira

Research