Two malicious axios releases published to npm delivered a RAT dropper that executes silently at install time. Source code, cloud credentials, SSH keys, and pipeline secrets on affected systems should be considered exposed.
Read more about Emerging Threat: Axios npm Supply Chain Attack Drops Remote Access Trojan (RAT)A critical unauthenticated remote code execution vulnerability in F5’s BIG-IP Access Policy Manager allows attackers to execute arbitrary code on internet-facing appliances without any credentials or user interaction. Organizations running affected BIG-IP APM versions that have not yet patched, should treat their systems as potentially compromised.
Read more about Emerging Threat: F5 BIG-IP Access Policy Manager Remote Code Execution (CVE-2025-53521)Citrix has patched two vulnerabilities in NetScaler ADC and NetScaler Gateway — a critical memory overread (CVE-2026-3055) that lets unauthenticated attackers leak session tokens from SAML IDP-configured appliances, and a high-severity race condition (CVE-2026-4368) that can expose one user’s authenticated session to another. Given the rapid exploitation history of prior NetScaler memory-read flaws, organizations running affected on-premises builds should prioritize patching immediately
Read more about Citrix NetScaler ADC and Gateway Vulnerabilities (CVE-2026-3055 & CVE-2026-4368)A maximum-severity path traversal in the Ubiquiti UniFi Network Application allows unauthenticated attackers to read and manipulate files on the underlying host, enabling full account takeover of the controller managing an organization’s switches, access points, and gateways.
Read more about Emerging Threat: Ubiquiti UniFi Network Application Path Traversal (CVE-2026-22557)CVE-2026-32746 is an emerging critical buffer overflow in GNU Inetutils telnetd. It allows pre-authentication remote code execution during Telnet option negotiation.
Read more about Emerging Threat: GNU Inetutils telnetd LINEMODE SLC Buffer Overflow (CVE-2026-32746)CVE-2026-23813 and CVE-2026-23814 are critical vulnerabilities affecting HPE Aruba Networking AOS-CX, the network operating system used by Aruba CX-series campus and data center switches.
Read more about Emerging Threat: HPE Aruba AOS-CX Pre-Auth RCE (CVE-2026-23813 / CVE-2026-23814)CVE-2026-21262 is an elevation of privilege vulnerability affecting Microsoft SQL Server. The issue is caused by improper access control within SQL Server components, allowing an authenticated attacker to elevate privileges over a network.
Read more about Emerging Threat: Microsoft SQL Server Elevation of Privilege Vulnerability (CVE-2026-21262)Two critical Cisco Secure Firewall Management Center flaws let unauthenticated remote attackers gain root on on-prem deployments through authentication bypass or Java deserialization.
Read more about Emerging Threat: Cisco Secure Firewall Management Center Root Compromise (CVE-2026-20079, CVE-2026-20131)The latest CyCognito updates focus on improving posture visibility, expanding user learning in-app, and streamlining asset and issue review.
Read more about What’s New in CyCognito: February 2026 Platform EnhancementsRecent enhancements include new asset management permissions, Asset List productivity improvements and additional API capabilities for realm freshness and issue lifecycle control.
Read more about What’s New in CyCognito: October 2025 Platform Enhancements