KnowledgeDeliver flaw exploited as a zero-day to install web shells

Hackers exploited a critical zero-day vulnerability in a server running the KnowledgeDeliver learning management system (LMS) to deploy the Godzilla web shell.
The Hacker News

Ghost CMS CVE-2026-26980 Exploited to Hijack 700+ Sites for ClickFix Attacks

Ghost CMS flaw CVE-2026-26980 enabled attacks on 700+ sites, injecting ClickFix malware through fake CAPTCHA pages.

Ghost CMS SQL injection flaw exploited in large-scale ClickFix campaign

A large-scale campaign is exploiting a critical SQL injection vulnerability (CVE-2026-26980) in Ghost CMS to inject malicious ...
SecurityWeek

Hackers Exploited KnowledgeDeliver Zero-Day for Web Shell Deployment

CVE-2026-5426, a hardcoded ASP.NET machineKey in KnowledgeDeliver, was exploited as a zero-day in ViewState deserialization ...
The Hacker News

KnowledgeDeliver LMS Flaw Exploited to Deploy Godzilla and Cobalt Strike

CVE-2026-5426 enabled KnowledgeDeliver LMS attacks before February 24, 2026, leading to Cobalt Strike infections.

U.S. strike on boat in eastern Pacific kills one, leaves two survivors

Trump administration’s campaign of blowing up alleged drug-trafficking vessels has killed at least 194 in total ...
CPO Magazine

Security Flaw in Claude AI Chrome Extension Enables Attackers to Execute Privileged Commands and Steal Data

A security flaw in “Claude in Chrome” enables any Chrome extension, including those without permissions, to execute ...
The Caledonian-Record

Command Alkon Appoints Davis Jackson to Drive Next Phase of Global Revenue Growth

Command Alkon, the global leader in software and platform technology for the heavy building materials industry, announces the recent appointment of Davis ...
InfoWorld

Taming the generative AI back end

Writing code that interacts with LLM services requires bridging two different worlds. Use these tips and techniques to bind ...
The Caledonian-Record

Cohere Releases Command A+: An Open-Source Enterprise AI Model Built for Sovereign Critical Infrastructure

Cohere, the trusted sovereign AI platform for governments and regulated industries worldwide, today announced the release of Command A+, a powerful open-source Mixture-of-Experts (MoE) model released ...
How-To Geek on MSN

VLC is overrated, and this open-source alternative is much better

Discover the hidden gem of media players that power users have been quietly enjoying for years, and find out why it's time to ...