Morning Overview on MSN

CISA added the actively exploited Windows Netlogon flaw to its must-patch catalog, ordering federal agencies to fix domain controllers now

Federal agencies running Windows domain controllers face a hard deadline after the Cybersecurity and Infrastructure Security ...
SecurityWeek

Critical Vulnerability in HP VoIP Phones Enables Enterprise Network Breaches

A stack-based buffer overflow vulnerability in HP VoIP phones allows remote attackers to execute arbitrary code with root ...
CSO Online

HP Poly VoIP vulnerability sets the stage for executive voice deepfakes

The remote code execution flaw enables root access and voice attacks on HP Poly VoIP phones, including eavesdropping and the ...
SecurityWeek

Critical Windows Netlogon Vulnerability in Attackers’ Crosshairs

Hackers are exploiting a critical-severity Windows Netlogon vulnerability (CVE-2026-41089) for remote code execution.
Bleeping Computer

Ivanti Avalanche impacted by critical pre-auth stack buffer overflows

Two stack-based buffer overflows collectively tracked as CVE-2023-32560 impact Ivanti Avalanche, an enterprise mobility management (EMM) solution designed to manage, monitor, and secure a wide range ...

Microsoft Windows Alert—Angry Hacker Drops 2 New Zero-Day Exploits

The latest Microsoft Patch Tuesday rollout featured no zero-days. However, an angry hacker has just dropped two new 0-day exploits targeting Windows users.