Lucas Oliveira

LeakBase arrest is a warning to review stolen credential exposure now | 2026 The reported arrest of the alleged LeakBase administrator in Russia is the kind of...

Lucas Oliveira

Research

CVE-2026-4681: PTC warns of imminent Windchill and FlexPLM RCE risk CVE-2026-4681 deserves immediate attention because PTC is signaling urgency before full patc...

Lucas Oliveira

Research

CVE-2026-21992: Oracle emergency patch for pre-auth RCE | 2026 CVE-2026-21992 puts two high-value Oracle products in the spotlight for the wrong reason. Oracle...

Lucas Oliveira

Research

Poisoned Trivy scanner led to malicious LiteLLM releases on PyPI | 2026 The LiteLLM incident is what modern software supply-chain compromise looks like when one...

Lucas Oliveira

Research

CVE-2026-3055: Citrix warns NetScaler SAML deployments face critical memory leak risk | 2026 CVE-2026-3055 puts Citrix NetScaler ADC and NetScaler Gateway defen...

Lucas Oliveira

Research

CVE-2026-20131: Interlock hit Cisco FMC before disclosure | 2026 CVE-2026-20131 is the kind of firewall-management flaw defenders dread: an unauthenticated bug...

Lucas Oliveira

Research

AsyncRAT: SEO Poisoning Hits Software Downloads | 2026 Executive Summary In March 2026, NCC Group and FOX-IT disclosed that an unknown threat actor had been run...

Lucas Oliveira

Research

ClayRat: Android spyware operation collapses after arrest | 2026 Executive Summary ClayRat is an Android spyware operation that targeted users in Russia and app...

Lucas Oliveira

Research

CVE-2025-32975: Quest KACE SMA auth bypass exploited in the wild Executive Summary Since March 2026, the critical CVE-2025-32975 vulnerability in Quest KACE Sys...

Lucas Oliveira

Research