Critical Nginx UI auth bypass flaw now actively exploited in the wild

A critical vulnerability in Nginx UI with Model Context Protocol (MCP) support is now being exploited in the wild for full ...
SecurityWeek

Splunk Enterprise Update Patches Code Execution Vulnerability

Splunk has released patches that resolve high- and medium-severity vulnerabilities in Splunk Enterprise and MCP Server.

Dangerous Fake Microsoft Windows Update Confirmed—Do Not Download

As security researchers warn about a dangerous Microsoft Windows update that isn’t legitimate, users must pay close attention ...

WordPress plugin suite hacked to push malware to thousands of sites

More than 30 WordPress plugins in the EssentialPlugin package have been compromised with malicious code that allows ...

Microsoft Issues Massive Windows Patch for 160+ Bugs, Including Two Zero-Days

Microsoft’s April 2026 Patch Tuesday fixes 165 vulnerabilities, including two zero-days, in one of the company’s largest ...

Cybersecurity basics are important for sophisticated lawyers and firms too (and everyone else)

John Bandler of Bandler Law Firm PLLC discusses the importance of attorneys, law firms and organizations knowing ...

FBI offers urgent guidance on securing home routers after disrupting Russian intelligence hacking network

The FBI says Russian GRU hackers exploited vulnerable home and office routers in the U.S. and offers tips to protect your ...
WinBuzzer

Microsoft April Update Forces BitLocker Recovery on Servers

Microsoft has confirmed that its April 2026 KB5082063 update triggers BitLocker recovery on Windows Server 2025 and Windows ...