#kev — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #kev, aggregated by home.social.
-
Photo of the Day 28th May 2026.
https://madcam.co.uk/2026/05/28/photo-of-the-day-28th-may-2026/
-
VIKI SNIFFER analyzed 72,953 CVEs in the latest OSINT cycle.
Key findings:
47,064 CVEs still have no CVSS
64 MITRE ATT&CK techniques identified
Strong growth in:
T1071 — Application Layer Protocol
T1055 — Process Injection
T1003.005 — Cached Credentials
T1020 — Automated Exfiltrationhttps://jaroslawkuchta.substack.com/p/tlpamber-viki-sniffer-threat-brief?r=8gt0a0
#CyberSecurity #ThreatIntelligence #SOC #BlueTeam #MITREATTACK #ExposureManagement #CTEM #ThreatHunting #OSINT #CVE #KEV #InfoSec #IdentitySecurity #LLMSecurity #OpenAPI #MCP #DetectionEngineering
-
VIKI SNIFFER analyzed 72,953 CVEs in the latest OSINT cycle.
Key findings:
47,064 CVEs still have no CVSS
64 MITRE ATT&CK techniques identified
Strong growth in:
T1071 — Application Layer Protocol
T1055 — Process Injection
T1003.005 — Cached Credentials
T1020 — Automated Exfiltrationhttps://jaroslawkuchta.substack.com/p/tlpamber-viki-sniffer-threat-brief?r=8gt0a0
#CyberSecurity #ThreatIntelligence #SOC #BlueTeam #MITREATTACK #ExposureManagement #CTEM #ThreatHunting #OSINT #CVE #KEV #InfoSec #IdentitySecurity #LLMSecurity #OpenAPI #MCP #DetectionEngineering
-
CISA Opens KEV Nominations to Bolster Vulnerability Intelligence
CISA is now accepting nominations for its Known Exploited Vulnerabilities catalog, empowering public reporting to strengthen the nation's cybersecurity posture by quickly identifying and mitigating exploited vulnerabilities. By submitting through the new KEV nomination form, you're helping to keep federal,…
#VulnerabilityDisclosure #KnownExploitedVulnerabilities #Kev #Cisa #VulnerabilityIntelligence
-
📰 CISA Adds Seven New Vulnerabilities to 'Must-Patch' KEV Catalog
📢 CISA has added 7 new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog. Federal agencies are required to patch under BOD 22-01. All orgs are urged to prioritize these fixes to defend against active threats. #CISA #KEV #PatchNow ...
🌐 cyber[.]netsecops[.]io
-
📰 CISA Opens KEV Catalog to Public Submissions to Speed Up Threat Response
CISA is now crowdsourcing threat intelligence! 🌐 The agency has launched a new public submission process for its Known Exploited Vulnerabilities (KEV) catalog, allowing anyone to report actively exploited vulns. 🛡️ #CISA #KEV #Cybersecurity #InfoSec
🌐 cyber[.]netsecops[.]io
-
https://www.europesays.com/ie/495789/ 2 New Microsoft Defender Zero-Days Exploited—Patch Now Rolling Out #CISA #CVE202641091 #CVE202645498 #DefenderZeroDayAttacks #Éire #IE #Ireland #Kev #MicrosoftDefender #MicrosoftDefenderEmergencyUpdate #MicrosoftDefenderZeroDayExploitConfirmed #Technology #ZeroDay
-
Апрельский «В тренде VM»: уязвимость в Microsoft SharePoint
Хабр, привет! На связи Александр Леонов, ведущий эксперт PT Expert Security Center и дежурный по самым опасным уязвимостям месяца. Мы с командой аналитиков Positive Technologies регулярно исследуем информацию об уязвимостях из баз и бюллетеней безопасности вендоров, социальных сетей, блогов, телеграм-каналов, баз эксплойтов, публичных репозиториев кода и выявляем во всем этом многообразии сведений трендовые уязвимости. Это те уязвимости, которые либо уже эксплуатируются вживую, либо будут эксплуатироваться в ближайшее время. С прошлого дайджеста мы добавили еще одну трендовую уязвимость. Подробности о ней читайте под катом. Читать
https://habr.com/ru/companies/pt/articles/1028828/
#vm #cvss #kev #max_patrol_vm #sharepoint #уязвимости_и_их_эксплуатация #microsoft_office #debugs #cve
-
Апрельский «В тренде VM»: уязвимость в Microsoft SharePoint
Хабр, привет! На связи Александр Леонов, ведущий эксперт PT Expert Security Center и дежурный по самым опасным уязвимостям месяца. Мы с командой аналитиков Positive Technologies регулярно исследуем информацию об уязвимостях из баз и бюллетеней безопасности вендоров, социальных сетей, блогов, телеграм-каналов, баз эксплойтов, публичных репозиториев кода и выявляем во всем этом многообразии сведений трендовые уязвимости. Это те уязвимости, которые либо уже эксплуатируются вживую, либо будут эксплуатироваться в ближайшее время. С прошлого дайджеста мы добавили еще одну трендовую уязвимость. Подробности о ней читайте под катом. Читать
https://habr.com/ru/companies/pt/articles/1028828/
#vm #cvss #kev #max_patrol_vm #sharepoint #уязвимости_и_их_эксплуатация #microsoft_office #debugs #cve
-
Апрельский «В тренде VM»: уязвимость в Microsoft SharePoint
Хабр, привет! На связи Александр Леонов, ведущий эксперт PT Expert Security Center и дежурный по самым опасным уязвимостям месяца. Мы с командой аналитиков Positive Technologies регулярно исследуем информацию об уязвимостях из баз и бюллетеней безопасности вендоров, социальных сетей, блогов, телеграм-каналов, баз эксплойтов, публичных репозиториев кода и выявляем во всем этом многообразии сведений трендовые уязвимости. Это те уязвимости, которые либо уже эксплуатируются вживую, либо будут эксплуатироваться в ближайшее время. С прошлого дайджеста мы добавили еще одну трендовую уязвимость. Подробности о ней читайте под катом. Читать
https://habr.com/ru/companies/pt/articles/1028828/
#vm #cvss #kev #max_patrol_vm #sharepoint #уязвимости_и_их_эксплуатация #microsoft_office #debugs #cve
-
Апрельский «В тренде VM»: уязвимость в Microsoft SharePoint
Хабр, привет! На связи Александр Леонов, ведущий эксперт PT Expert Security Center и дежурный по самым опасным уязвимостям месяца. Мы с командой аналитиков Positive Technologies регулярно исследуем информацию об уязвимостях из баз и бюллетеней безопасности вендоров, социальных сетей, блогов, телеграм-каналов, баз эксплойтов, публичных репозиториев кода и выявляем во всем этом многообразии сведений трендовые уязвимости. Это те уязвимости, которые либо уже эксплуатируются вживую, либо будут эксплуатироваться в ближайшее время. С прошлого дайджеста мы добавили еще одну трендовую уязвимость. Подробности о ней читайте под катом. Читать
https://habr.com/ru/companies/pt/articles/1028828/
#vm #cvss #kev #max_patrol_vm #sharepoint #уязвимости_и_их_эксплуатация #microsoft_office #debugs #cve
-
Does anyone know if what CISA is putting out post-Jen is worth looking or is just like the rest of the anal flem this administration produces? I mean, for realz inside knowledge?
https://thehackernews.com/2026/04/cisa-adds-8-exploited-flaws-to-kev-sets.html
-
Does anyone know if what CISA is putting out post-Jen is worth looking or is just like the rest of the anal flem this administration produces? I mean, for realz inside knowledge?
https://thehackernews.com/2026/04/cisa-adds-8-exploited-flaws-to-kev-sets.html
-
Does anyone know if what CISA is putting out post-Jen is worth looking or is just like the rest of the anal flem this administration produces? I mean, for realz inside knowledge?
https://thehackernews.com/2026/04/cisa-adds-8-exploited-flaws-to-kev-sets.html
-
Does anyone know if what CISA is putting out post-Jen is worth looking or is just like the rest of the anal flem this administration produces? I mean, for realz inside knowledge?
https://thehackernews.com/2026/04/cisa-adds-8-exploited-flaws-to-kev-sets.html
-
Does anyone know if what CISA is putting out post-Jen is worth looking or is just like the rest of the anal flem this administration produces? I mean, for realz inside knowledge?
https://thehackernews.com/2026/04/cisa-adds-8-exploited-flaws-to-kev-sets.html
-
📰 CISA Mandates Urgent Patching for Eight Actively Exploited Flaws in Cisco, JetBrains, and More
🚨 CISA adds 8 actively exploited vulnerabilities to its KEV catalog! Flaws in Cisco, PaperCut, & JetBrains products require urgent patching. Federal agencies are mandated to remediate, and all orgs are strongly urged to act now. #KEV #CyberSecurity...
-
📰 CISA Mandates Urgent Patching for Eight Actively Exploited Flaws in Cisco, JetBrains, and More
🚨 CISA adds 8 actively exploited vulnerabilities to its KEV catalog! Flaws in Cisco, PaperCut, & JetBrains products require urgent patching. Federal agencies are mandated to remediate, and all orgs are strongly urged to act now. #KEV #CyberSecurity...
-
New KEV added 🚨
CVE-2026-34197 (Apache ActiveMQ)
• Active exploitation confirmed
• High-risk entry point
KEV = patch now, not later💬 How fast is your patch cycle?
Follow @technadu -
New KEV added 🚨
CVE-2026-34197 (Apache ActiveMQ)
• Active exploitation confirmed
• High-risk entry point
KEV = patch now, not later💬 How fast is your patch cycle?
Follow @technadu -
New KEV added 🚨
CVE-2026-34197 (Apache ActiveMQ)
• Active exploitation confirmed
• High-risk entry point
KEV = patch now, not later💬 How fast is your patch cycle?
Follow @technadu -
New KEV added 🚨
CVE-2026-34197 (Apache ActiveMQ)
• Active exploitation confirmed
• High-risk entry point
KEV = patch now, not later💬 How fast is your patch cycle?
Follow @technadu -
CISA adds CVE-2026-1340 (Ivanti EPMM) to KEV ⚠️
Active exploitation confirmed
Known vulns = real attack surface
Are KEVs in your patch priority?💬 Engage
🔔 Follow TechNadu -
CISA adds CVE-2026-1340 (Ivanti EPMM) to KEV ⚠️
Active exploitation confirmed
Known vulns = real attack surface
Are KEVs in your patch priority?💬 Engage
🔔 Follow TechNadu -
CISA adds CVE-2026-1340 (Ivanti EPMM) to KEV ⚠️
Active exploitation confirmed
Known vulns = real attack surface
Are KEVs in your patch priority?💬 Engage
🔔 Follow TechNadu -
CISA adds CVE-2026-1340 (Ivanti EPMM) to KEV ⚠️
Active exploitation confirmed
Known vulns = real attack surface
Are KEVs in your patch priority?💬 Engage
🔔 Follow TechNadu -
CISA KEV heute updated (08.04., 17:27 UTC) – frische Einträge droppen. ZDI Upcoming: 7 neue CANs (Oracle x2, OriginLab, Linux, BlueZ etc., CVSS 7+). Keine Published seit Proteus-0-Days. Details KEV: https://github.com/cisagov/kev-data/commits/develop Patched? #infosec #ZeroDay #KEV
-
📰 CISA KEV Alert: Actively Exploited Flaws in Langflow AI Framework and Trivy Scanner
📢 CISA KEV UPDATE: Two flaws now under active exploitation! A critical RCE in Langflow AI framework (CVE-2026-33017) and a supply-chain attack via Trivy scanner (CVE-2026-33634). Patch now! ⚠️ #KEV #CyberSecurity #RCE
-
📰 CISA KEV Alert: Actively Exploited Flaws in Langflow AI Framework and Trivy Scanner
📢 CISA KEV UPDATE: Two flaws now under active exploitation! A critical RCE in Langflow AI framework (CVE-2026-33017) and a supply-chain attack via Trivy scanner (CVE-2026-33634). Patch now! ⚠️ #KEV #CyberSecurity #RCE
-
CISA adds CVE-2026-33634 (Trivy) to KEV - active exploitation confirmed.
If it’s in KEV, it’s already a threat.
💬 Is KEV your top patch priority?
🔔 Follow TechNadu -
CISA adds CVE-2026-33634 (Trivy) to KEV - active exploitation confirmed.
If it’s in KEV, it’s already a threat.
💬 Is KEV your top patch priority?
🔔 Follow TechNadu -
CISA adds CVE-2026-33634 (Trivy) to KEV - active exploitation confirmed.
If it’s in KEV, it’s already a threat.
💬 Is KEV your top patch priority?
🔔 Follow TechNadu -
CISA adds CVE-2026-33634 (Trivy) to KEV - active exploitation confirmed.
If it’s in KEV, it’s already a threat.
💬 Is KEV your top patch priority?
🔔 Follow TechNadu -
📰 CISA KEV Catalog Updated: Federal Agencies Must Patch Exploited Flaws in Apple, Laravel, Craft CMS
📢 CISA KEV UPDATE: Actively exploited flaws in Apple visionOS (CVE-2026-28217), Laravel (CVE-2024-4671), & Craft CMS (CVE-2026-25487) added to catalog. Federal agencies must patch by April 12. All orgs urged to patch NOW! ⚠️ #KEV #CISA
-
gcve-eu-kev updated — a CISA KEV and ENISA CNW/EUVD to GCVE BCP-07 converter.
It now also includes a generic RSS/Atom exporter for any GCVE KEV BCP-07 feed.
#cybersecurity #gcve #kev #cve #vulnerability #vulnerabilitymanagement
🔗 https://github.com/gcve-eu/gcve-eu-kev
🔗 https://gcve.eu/bcp/gcve-bcp-07/ -
gcve-eu-kev updated — a CISA KEV and ENISA CNW/EUVD to GCVE BCP-07 converter.
It now also includes a generic RSS/Atom exporter for any GCVE KEV BCP-07 feed.
#cybersecurity #gcve #kev #cve #vulnerability #vulnerabilitymanagement
🔗 https://github.com/gcve-eu/gcve-eu-kev
🔗 https://gcve.eu/bcp/gcve-bcp-07/ -
gcve-eu-kev updated — a CISA KEV and ENISA CNW/EUVD to GCVE BCP-07 converter.
It now also includes a generic RSS/Atom exporter for any GCVE KEV BCP-07 feed.
#cybersecurity #gcve #kev #cve #vulnerability #vulnerabilitymanagement
🔗 https://github.com/gcve-eu/gcve-eu-kev
🔗 https://gcve.eu/bcp/gcve-bcp-07/ -
gcve-eu-kev updated — a CISA KEV and ENISA CNW/EUVD to GCVE BCP-07 converter.
It now also includes a generic RSS/Atom exporter for any GCVE KEV BCP-07 feed.
#cybersecurity #gcve #kev #cve #vulnerability #vulnerabilitymanagement
🔗 https://github.com/gcve-eu/gcve-eu-kev
🔗 https://gcve.eu/bcp/gcve-bcp-07/ -
gcve-eu-kev updated — a CISA KEV and ENISA CNW/EUVD to GCVE BCP-07 converter.
It now also includes a generic RSS/Atom exporter for any GCVE KEV BCP-07 feed.
#cybersecurity #gcve #kev #cve #vulnerability #vulnerabilitymanagement
🔗 https://github.com/gcve-eu/gcve-eu-kev
🔗 https://gcve.eu/bcp/gcve-bcp-07/ -
CISA flips the switch: Ivanti EPM (CVE-2026-1603) is under active exploit. A low-complexity XSS allows total authentication bypass with zero user interaction. If your EPM is internet-facing, the "Master Key" is compromised. Get the Strategic Arsenal now. #CyberSecurity #Ivanti #KEV
-
CISA flips the switch: Ivanti EPM (CVE-2026-1603) is under active exploit. A low-complexity XSS allows total authentication bypass with zero user interaction. If your EPM is internet-facing, the "Master Key" is compromised. Get the Strategic Arsenal now. #CyberSecurity #Ivanti #KEV
-
CISA added 3 exploited vulnerabilities to the KEV catalog:
• Omnissa Workspace ONE – SSRF
• SolarWinds Web Help Desk – Deserialization flaw
• Ivanti Endpoint Manager – Auth bypass
KEV flaws remain top attack vectors.Follow TechNadu for infosec updates.
