A critical vulnerability in Progress Kemp LoadMaster is currently facing active exploitation attempts, raising significant concerns for organizations relying on this popular load balancing solution. According to the Threat Response Unit at eSentire, threat actors are actively scanning for and attempting to exploit CVE-2026-8037, a severe OS command injection flaw that could enable attackers to execute arbitrary commands without requiring authentication. This pre-authentication vulnerability presents a
Progress Kemp LoadMaster Pre-Auth RCE Flaw Faces Active Exploitation Attempts
Share
You might also like
Progress Kemp LoadMaster Flaw Could Let Attackers Run Root Commands Pre-Auth
A newly discovered critical vulnerability in Progress Kemp LoadMaster has sent shockwaves through the cybersecurity community, presenting a severe risk to organizations relying on this popular application delivery controller. The flaw, which allows unauthenticated attackers to execute arbitrary…
Critical Check Point VPN Flaw Exploited to Bypass Passwords in IKEv1 Setups
Security researchers have identified a critical vulnerability in Check Point VPN solutions that is currently being exploited in the wild. The flaw enables attackers to bypass authentication mechanisms completely, potentially exposing organizations to unauthorized network access. This revelation…
New Mistic Backdoor Linked to KongTuke in ClickFix and ModeloRAT Campaigns
Security researchers have uncovered a new stealthy backdoor, dubbed Mistic, that has been actively deployed in sophisticated cyberattacks targeting multiple industries. The discovery, made by Symantec and Carbon Black's Threat Hunter Team, reveals an alarming threat landscape where financial…
Surviving the Mythos Era: Richard Bejtlich on the Case for NDR
In today's increasingly complex threat…
Cisco Catalyst SD-WAN Zero-Day CVE-2026-20245 Exploited to Gain Root Access
Critical Vulnerability in Cisco SD-WAN Exploited Prior to Public Disclosure Security researchers at Google-owned Mandiant have uncovered concerning evidence that a high-severity vulnerability in Cisco Catalyst SD-WAN was actively exploited in the wild months before its public disclosure. The…
Meta Blocks NSO Group's New WhatsApp Phishing Attack, Files Contempt Order
Meta has escalated its ongoing legal battle with Israeli spyware vendor NSO Group, announcing the detection and blocking of new spear-phishing attempts targeting WhatsApp users. The tech giant is now pursuing a federal court contempt order against NSO, alleging violations of a permanent injunction…
Comments (0)
Leave a Comment
No comments yet. Be the first to comment!