FCC moves to block new foreign-made consumer routers from the U.S. market
The FCC has moved to block new foreign-made consumer routers from entering the U.S. market after adding them to its Covered List. The agency said…
TeamPCP backdoored LiteLLM on PyPI after the Trivy compromise
LiteLLM was hit by the growing TeamPCP supply chain campaign on March 24, 2026, when attackers published two malicious PyPI versions, 1.82.7 and 1.82.8. Berri…
Critical FortiClient EMS flaw is under active attack, and exposed servers need patching now
A critical Fortinet FortiClient EMS vulnerability is now being exploited in the wild. Fortinet’s own advisory says CVE-2026-21643 is an unauthenticated SQL injection flaw in…
Databricks is investigating an alleged TeamPCP-related compromise, but no confirmed breach is public yet
Databricks is reportedly investigating whether its platform was affected by the wider TeamPCP supply chain campaign, but no public evidence currently confirms a Databricks compromise.…
Critical n8n flaw can let attackers reach remote code execution through Merge node SQL mode
A critical n8n vulnerability can let an authenticated attacker move from workflow editing rights to remote code execution on the host server. GitHub’s advisory for…
Critical Grafana flaws can lead to remote code execution and server crashes
Grafana users need to patch quickly. Grafana Labs has released security fixes for two newly disclosed vulnerabilities, including one critical bug that can lead to…
Vim bug lets attackers run commands when a user opens a crafted file
A newly disclosed Vim vulnerability can let an attacker run arbitrary operating system commands if a target opens a malicious file in a vulnerable version…
CanisterWorm is hitting Docker, Kubernetes, and Redis to spread and steal secrets
CanisterWorm is a self-propagating malware campaign tied to TeamPCP, a financially motivated threat group that has targeted exposed cloud services since late 2025. Security researchers…
Jira Work Management stored XSS bug could open the door to wider Atlassian compromise
A stored XSS flaw in Jira Work Management could let a lower-tier admin plant malicious JavaScript in a custom priority’s icon URL, then wait for…
BlankGrabber hides behind a fake certificate trick to deliver stealer malware
BlankGrabber, a Python-based stealer, now uses a fake certificate-decoding chain to hide its delivery process on Windows systems. Splunk’s Threat Research Team says the loader…
November 21, 2025
1 comment 
