Langflow RCE Exploited to Deploy Monero Miner on Exposed AI App Endpoints
Threat actors are actively exploiting CVE-2026-33017, a critical unauthenticated remote code execution vulnerability in Langflow (CVSS 9.3), to deploy a Monero cryptocurrency…
Threat actors are actively exploiting CVE-2026-33017, a critical unauthenticated remote code execution vulnerability in Langflow (CVSS 9.3), to deploy a Monero cryptocurrency…
A public proof-of-concept (PoC) has been released for CVE-2026-55200, a critical vulnerability in the libssh2 client-side SSH library. The flaw, with a…
OpenSSH is a suite of secure networking utilities that was backdoored by Velvet Ant to log credentials and commands, with a hidden…
Attackers hijacked over 400 packages in the Arch User Repository (AUR) by adopting orphaned projects and modifying build scripts to deploy a…
OpenSSH Server was installed on a Windows workstation by the attacker to enable key-based SSH access and reverse tunnels, providing a backdoor…
Dropbear SSH is a lightweight SSH server used by AryStinger for persistence on infected routers, listening on port 2332. It allows remote…