Breaking News – Cyber Threats (last 6h)
Generated: 2026-04-29 03:00 PDT
- CISA Adds Actively Exploited ConnectWise and Windows Flaws to KEV
The Hacker News • 2026-04-29 01:46 • thehackernews.com
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added two security flaws impacting ConnectWise ScreenConnect and Microsoft Windows to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation.
The vulnerabilities are listed below –CVE-2024-1708 (CVSS score: 8.4) – A path traversal vulnerability in ConnectWise ScreenConnect
https://thehackernews.com/2026/04/cisa-adds-actively-exploited.html - Microsoft says backend change broke Teams Free chat and calls
BleepingComputer • 2026-04-29 01:38 • www.bleepingcomputer.com
Microsoft is working to resolve a known issue that prevents some Microsoft Teams Free users from chatting and calling others. […]
https://www.bleepingcomputer.com/news/security/microsoft-says-backend-change-broke-teams-free-chat-and-calls/ - LiteLLM CVE-2026-42208 SQL Injection Exploited within 36 Hours of Disclosure
The Hacker News • 2026-04-28 22:34 • thehackernews.com
In yet another instance of threat actors quickly jumping on the exploitation bandwagon, a newly disclosed critical security flaw in BerriAI’s LiteLLM Python package has come under active exploitation in the wild within 36 hours of the bug becoming public knowledge.
The vulnerability, tracked as CVE-2026-42208 (CVSS score: 9.3), is an SQL injection that could be exploited to modify the underlying
https://thehackernews.com/2026/04/litellm-cve-2026-42208-sql-injection.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
