Patch/Configuration Management

Most Recent

Related Videos

patch presented in the form of binary code

Identity

Actively exploited BeyondTrust RCE bug exposes identity infrastructure

Steve ZurierFebruary 13, 2026

Exploited BeyondTrust RCE (CVE-2026-1731) shows patch gaps in privileged access tools.

Vulnerability Management

Critical vulnerability in WPvivid backup plugin allows remote code execution

SC StaffFebruary 13, 2026

The vulnerability, tracked as CVE-2026-1357 with a severity score of 9.8, impacts all versions of the plugin up to 0.9.123.

(Credit: Rafael Henrique – stock.adobe.com)

Vulnerability Management

Unstructured.io flaw enables path traversal by email attachment

Laura FrenchFebruary 13, 2026

A malicious attachment could cause files to be written to sensitive locations, leading to RCE.

Vulnerability Management

Exposure to critical BeyondTrust flaw remains widespread

SC StaffFebruary 12, 2026

More than 190,000 exposed and trackable web properties were discovered by Censys to be vulnerable to a recently addressed critical flaw impacting BeyondTrust's Remote Support and Privileged Remote Access offerings, which could be leveraged for operating system command execution, Cybernews reports.

Security Operations

Telnet vulnerability: traffic drop suggests advance warning

SC StaffFebruary 12, 2026

On January 14, six days before the public advisories for CVE-2026-24061 were released, Telnet sessions plummeted by 65% within an hour and 83% within two hours.

Close up shot of Apple iPhone, Apple announces iOS 26 during its WWDC 2025.

Application security

Apple fixes zero-day that exploited OS bug in open-source code

Steve ZurierFebruary 12, 2026

Apple patches exploited zero-day in open-source component across iOS, macOS, watchOS.

Cybersecurity Alert Critical System Vulnerability Detected

Vulnerability Management

Microsoft patches critical Notepad vulnerability allowing code execution

SC StaffFebruary 12, 2026

This flaw allowed attackers to trick users into clicking specially crafted Markdown links, leading to the execution of local or remote programs without triggering standard Windows security warnings.

Holographic digital shield with warning sign hovers over glowing circuit board. Cybersecurity threat detection system uses futuristic tech for network protection. Data safety alert.

Security Operations

Published CVEs could hit record-breaking 50,000-plus in 2026

Stephen WeigandFebruary 12, 2026

FIRST forecasts 50K-plus CVEs in 2026 could strain security teams and planning.

Patch/Configuration Management

Related Videos

A couple simple steps companies can take to protect their systems from ransomware

Actively exploited BeyondTrust RCE bug exposes identity infrastructure

Critical vulnerability in WPvivid backup plugin allows remote code execution

Unstructured.io flaw enables path traversal by email attachment

Exposure to critical BeyondTrust flaw remains widespread

Telnet vulnerability: traffic drop suggests advance warning

Apple fixes zero-day that exploited OS bug in open-source code

Microsoft patches critical Notepad vulnerability allowing code execution

Published CVEs could hit record-breaking 50,000-plus in 2026

Fast Five

Selected by the SC Media Editorial team every Tuesday.