Author: DEFENDEDGE

  • Defending Against China-Nexus Covert Networks of Compromised Devices

    DEFENDEDGE

    Defending against china-nexus covert networks of compromised devices executive summary Defending against China-nexus covert networks of compromised devices  Explaining the widespread shift in tactics, techniques and procedures (TTPs) towards networks of compromised infrastructure, and how to defend against it  Summary With support from the UK Cyber League, this advisory has been jointly released by the… Read more

  • Vulnerability Summary for the Week of April 13, 2026

    DEFENDEDGE

    High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source Info Patch Info Grafana–Pyroscope Pyroscope is an open-source continuous profiling database. The database supports various storage backends, including Tencent Cloud Object Storage (COS). If the database is configured to use Tencent COS as the storage backend, an attacker could extract the secret_key configuration value from… Read more

  • ​​Supply Chain Compromise Impacts Axios Node Package Manager​

    DEFENDEDGE

    The Cybersecurity and Infrastructure Security Agency (CISA) is releasing this alert to provide guidance in response to the software supply chain compromise of the Axios node package manager (npm).1 Axios is an HTTP client for JavaScript that developers commonly use in Node.js and browser environments.  On March 31, 2026, two npm packages for versions axios@1.14.1… Read more

  • Why America is Cracking Down on Foreign Routers

    Why America is Cracking Down on Foreign Routers

    DEFENDEDGE

    Routers sit at the doorstep of our homes and small offices, they handle all traffic from Internet of Things (IoTs) to personal emails, family photos and even banking activity. Now, certain routers may be more difficult to obtain for anyone who is looking in the United States.  The Federal Communications Commission (FCC) has announced on… Read more

  • Vulnerability Summary for the Week of April 6, 2026

    DEFENDEDGE

    High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source Info Patch Info nyariv–SandboxJS SandboxJS is a JavaScript sandboxing library. Prior to 0.8.36, SandboxJS blocks direct assignment to global objects (for example Math.random = …), but this protection can be bypassed through an exposed callable constructor path: this.constructor.call(target, attackerObject). Because this.constructor resolves to the internal… Read more

  • Iranian-Affiliated Cyber Actors Exploit Programmable Logic Controllers Across US Critical Infrastructure

    DEFENDEDGE

    Advisory at a Glance Title Iranian-Affiliated Cyber Actors Exploit Programmable Logic Controllers Across US Critical Infrastructure Original Publication April 7, 2026 Executive Summary Iran-affiliated advanced persistent threat (APT) actors are conducting exploitation activity targeting internet-facing operational technology (OT) devices, including programmable logic controllers (PLCs) manufactured by Rockwell Automation/Allen-Bradley. This activity has led to PLC disruptions… Read more

  • Major Web Attacks: The Impact of the Shai-Hulud Worm

    Major Web Attacks: The Impact of the Shai-Hulud Worm

    DEFENDEDGE

    The Shai-Hulud Worm: What is it? How is it different? Shai-Hulud is a novel, self‑propagating software supply chain worm that targets the NPM (Node Package Manager) ecosystem and associated development, CI/CD, and cloud-connected environments. Historically, supply chain compromises required a human threat actor to breach a vendor, modify a product or update mechanism, and then… Read more

  • Your Devices May Be Spying on You — And You Would Never Know

    Your Devices May Be Spying on You — And You Would Never Know

    DEFENDEDGE

    ,

    For anyone who frequently shops online, you may have noticed an increase in the number of electronic products sold by obscure, unheard of companies. Many of these products come with unbelievably, surprisingly affordable prices. A 4K projector with dual-band WiFi 6, 5G wireless, Bluetooth 5.2, and Android 13 for $54. What a deal. It almost… Read more

  • CISA and Partners Release Guidance for Ongoing Global Exploitation of Cisco SD-WAN Systems

    DEFENDEDGE

    The purpose of this Alert is to provide resources for organizations with Cisco Software-Defined Wide-Area Networking (SD-WAN) systems, including Federal Civilian Executive Branch (FCEB) agencies, to address ongoing exploitation of multiple vulnerabilities. Notably, the Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2026-20127 and CVE-2022-20775 to its Known Exploited Vulnerabilities (KEV) Catalog on Feb. 25, 2026. As… Read more

  • Vulnerability Summary for the Week of February 2, 2026

    DEFENDEDGE

    High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source Info Patch Info Insaat–Fikir Odalari AdminPando A SQL injection vulnerability exists in the login functionality of Fikir Odalari AdminPando 1.0.1 before 2026-01-26. The username and password parameters are vulnerable to SQL injection, allowing unauthenticated attackers to bypass authentication completely. Successful exploitation grants full administrative access… Read more