Vendors
-
Critical RCE and two DoS flaws patched in Apex Central on-premise
Trend Micro issued updates for Apex Central on-premise after a Tenable technical analysis detailed CVE-2025-69258, a critical RCE with CVSS 9.8, and two DoS flaws that can be triggered via MsgReceiver.exe on TCP port 20001.
-
Cisco issues updates for ISE XML parsing flaw CVE-2026-20029 and Snort 3 bugs
Cisco issued updates on Jan 8, 2026 to fix a medium severity XML parsing flaw in Identity Services Engine CVE-2026-20029 with a public proof of concept. The company also patched two Snort 3 DCE/RPC vulnerabilities.
-
ownCloud urges users to enable MFA after credential theft reports
ownCloud urged users to enable multi-factor authentication after attackers used credentials stolen by infostealer malware to access self-hosted file sharing instances. The advisory recommends MFA, password resets, session invalidation, and log review.
-
Phishing actors spoof internal addresses by abusing complex email routing, Microsoft warns
Microsoft warned that phishing actors exploit complex mail routing and misconfigured spoof protections to send emails appearing internal, and that more than 13 million messages tied to the Tycoon 2FA kit were blocked in October 2025.
-
Command injection in legacy D-Link DSL routers tracked as CVE-2026-0625 and actively exploited
A security advisory warns of an active command injection vulnerability, CVE-2026-0625, in several end-of-life D-Link DSL routers. Vendors recommend retiring affected models and replacing them with supported devices.
-
Unpatched TOTOLINK EX200 firmware flaw can start unauthenticated root telnet
A CERT/CC advisory disclosed CVE-2025-65606 in the TOTOLINK EX200 that can trigger an unauthenticated root telnet service. The vendor has not issued a patch and the product appears unsupported.
-
Palo Alto Networks in talks to buy Israeli cybersecurity startup Koi for about $400 million
Palo Alto Networks is reported to be in talks to buy Israeli startup Koi for about $400 million. Koi, founded in 2024 and backed with $48 million, offers an AI driven supply chain security platform that protects over 500,000 endpoints.
-
Cisco in advanced talks to buy Axonius for $2 billions
Cisco is in advanced talks to acquire Israeli cybersecurity firm Axonius for $2 billion, according to a Calcalist report. Axonius was previously valued at $2.6 billion and has raised about $700 million.
-
Critical n8n flaw CVE-2025-68668 allows authenticated command execution on host
A critical sandbox bypass in the n8n Python Code Node, tracked as CVE-2025-68668 and rated CVSS 9.9, allows authenticated workflow authors to execute OS commands on hosts. The issue is fixed in n8n 2.0.0.
-
AI agents flagged as new insider threat in 2026 by Palo Alto report
A Palo Alto Networks predictions report warns AI agents are a new insider threat in 2026 as Gartner forecasts 40 percent of enterprise apps will adopt task specific agents. The report highlights privilege risk, prompt injection and defensive uses.
