Two SonicWall SMA 1000 Zero-Days Exploited, One Could Enable Admin Commands

SonicWall has warned of active exploitation of two zero-day vulnerabilities impacting Secure Mobile Access (SMA) 1000 series appliances, one of which could be exploited to achieve arbitrary command execution.

The vulnerabilities are listed below –

CVE-2026-15409 (CVSS score: 10.0) – A Server-side request forgery (SSRF) vulnerability that a remote unauthenticated attacker could exploit to

The Hacker News – ​Read More

I tested my USB-C cables with this free Mac app – some weren’t what they claimed

WhatCable is a free Mac app that gives you all the information you could need for your USB-C cables.

Latest news – ​Read More

Critical Vulnerabilities Patched With Fresh Chrome 150, Firefox 152 Updates

Public exploit code targeting the Firefox flaws exists, but no in-the-wild exploitation has been observed.

The post Critical Vulnerabilities Patched With Fresh Chrome 150, Firefox 152 Updates appeared first on SecurityWeek.

SecurityWeek – ​Read More

Nigeria Deepens Cybersecurity Efforts as Cybercriminals See More Profits

The West African country advanced rules to force organizations to disclose cyberattacks, joining other nations in a shift to mandated transparency.

darkreading – ​Read More

SonicWall Issues Urgent SMA Patch Warning for Two Zero-Day Exploits

SonicWall SMA1000 zero-day vulnerabilities CVE-2026-15409 and CVE-2026-15410 can be exploited for remote code execution.

The post SonicWall Issues Urgent SMA Patch Warning for Two Zero-Day Exploits appeared first on SecurityWeek.

SecurityWeek – ​Read More

Why I’m using wired Android Auto when all the cool kids are switching to wireless

Sometimes, you have to dial back the tech to make ends meet.

Latest news – ​Read More

Records Are Made to Be Broken: Patch Tuesday Raises Triage Stakes

Three of the 622 CVEs for which Microsoft issued patches this week are zero-days; there are more than 60 critical vulnerabilities.

darkreading – ​Read More

6 GHz Wi-Fi Flaws Could Disrupt Critical Systems

Automated Frequency Coordination systems by default trust client-side data, which could lead to location spoofing and other attacks that disrupt traffic.

darkreading – ​Read More

Microsoft Patches Record 622 Flaws, Including Two Zero-Days Under Active Attack

Microsoft shipped its largest Patch Tuesday on record today, and two of the fixes close holes that attackers are already exploiting. The release covers 622 of Microsoft’s own CVEs by its Security Update Guide count, more than triple June’s previous high of around 200.

Those two live bugs are the ones to grab first. Microsoft credits incident responders for both. Both are

The Hacker News – ​Read More

I’ve used the iOS 27 beta for a month: 7 ways the new Siri is dramatically better

Siri AI is the star of iOS 27, and now most iPhone users can try it with the first public beta of the OS.

Latest news – ​Read More