The SimpleHelp vulnerability CVE-2024-48558 is being exploited to distribute the Djinn infostealer in order to steal cloud and AI credentials and gain access to critical enterprise resources.
The Sentry vulnerabilities CVE-2026-10523 and CVE-2026-10520 enable unauthenticated attackers to bypass authentication and achieve Remote Code Execution with root privileges, requiring immediate patching to versions 10.5.2, 10.6.2, or 10.7.1.
Authentication flaw in Palo Alto GlobalProtect is being actively exploited; attackers can bypass VPN protection and infiltrate corporate networks, making immediate security patching essential.