KnowledgeDeliver flaw exploited as a zero-day to install web shells

Hackers exploited a critical zero-day vulnerability in a server running the KnowledgeDeliver learning management system (LMS) to deploy the Godzilla web shell.
The Hacker News

AI Chatbot Recommendations Redirect Users to Cryptojacking Malware Sites

Microsoft uncovered 150+ AI-assisted cryptojacking domains using fake software downloads to deploy persistent malware.
How-To Geek on MSN

You’re wasting your time on Windows—these 3 PowerShell scripts save me hours every week

Stop doing manually what your PC has been able to automate since forever.

15 Best Sci-Fi Actors Of All Time, Ranked

Leading blockbuster sci-fi franchises and helping to define the genre as we know it, these are the greatest sci-fi actors of ...
MUO on MSN

I built this tiny offline internet and now I can get answers during an outage

It started as a reference hub for bad internet days, but I turned it into a tiny local website, wiki, library, and offline ...
SecurityWeek

Hackers Exploited KnowledgeDeliver Zero-Day for Web Shell Deployment

CVE-2026-5426, a hardcoded ASP.NET machineKey in KnowledgeDeliver, was exploited as a zero-day in ViewState deserialization ...
Microsoft

From edge appliance to enterprise compromise: Multi-stage Linux intrusion via F5 and Confluence

A multi-stage attack on Linux devices began with an exposed F5 BIG-IP edge appliance and pivoted to an internal Confluence ...
Decrypt

Shai-Hulud: What to Know About the Malware Spreading Through Software Pipelines

The Shai-Hulud supply-chain malware campaign is exploiting the automated systems developers trust to publish software safely.