CISA: VMware ESXi flaw now exploited in ransomware attacks (2026-02-04 17:38 UTC)
Kurz: CISA confirmed on Wednesday that ransomware gangs have begun exploiting a high-severity VMware ESXi sandbox escape vulnerability that was previously used in zero-day attacks. […]
CISA warns of five-year-old GitLab flaw exploited in attacks (2026-02-04 15:42 UTC)
Kurz: The U.S. Cybersecurity and Infrastructure Security Agency (CISA) ordered government agencies to patch their systems against a five-year-old GitLab vulnerability that is actively being exploited in attacks. […]
The Double-Edged Sword of Non-Human Identities (2026-02-04 15:05 UTC)
Kurz: Leaked non-human identities like API keys and tokens are becoming a major breach driver in cloud environments. Flare shows how exposed machine credentials quietly grant attackers long-term access to enterprise systems. […]
Microsoft Develops Scanner to Detect Backdoors in Open-Weight Large Language Models (2026-02-04 17:52 UTC)
Kurz: Microsoft on Wednesday said it built a lightweight scanner that it said can detect backdoors in open-weight large language models (LLMs) and improve the overall trust in artificial intelligence (AI) systems. The tech giant’s AI Security tea…
Kurz: Threat hunters have disclosed details of a new, stealthy malware campaign dubbed DEAD#VAX that employs a mix of “disciplined tradecraft and clever abuse of legitimate system features” to bypass traditional detection mechanisms and deploy a …
Kurz: Threat actors affiliated with China have been attributed to a fresh set of cyber espionage campaigns targeting government and law enforcement agencies across Southeast Asia throughout 2025. Check Point Research is tracking the previously un…