| ITtechNews

Gesetzentwurf zu Cybersicherheit: Dobrindt definiert sich Hackbacks um 27. Mai 2026
Die Regierung will Sicherheitsbehörden den Gegenangriff bei Cyberattacken erlauben. Doch das soll nichts mit Hackbacks zu tun haben. (Hackback, Server)
(g+) F5 BIG-IP APM: Ein alter DoS-Patch kehrt als RCE zurück 27. Mai 2026
F5 stuft CVE-2025-53521 von DoS auf RCE hoch, Angreifer hatten Zugang zum Quellcode. Die dringendste Frage für Admins: Sind BIG-IP-APM-Instanzen direkt aus dem Internet erreichbar? (Security, Server)
Trotz fehlender Patches: Russland setzt weiterhin massiv auf Microsoft Exchange 27. Mai 2026
Zahlreiche russische Unternehmen haben wohl noch Exchange und andere westliche Software im Einsatz. Patches bekommen sie dafür aber schon lange nicht mehr. (Russland, Microsoft)
15 Tage Autonomie: Was eine Multi-Agenten-Simulation über Langzeitrisiken verrät 27. Mai 2026
683 Regelverstöße, sich selbst beendende Agenten und kollabierende Governance: Ein Versuch zeigt, warum KI-Agenten anders abgesichert werden müssen als Chatbots. (KI, Security)
(g+) Artificial Intelligence: China overhauls world's biggest surveillance network with advanced AI 27. Mai 2026
Local police forces are modernising the country's ageing infrastructure with more powerful tracking systems (KI, Datenschutz)
Microsoft: Defender soll gehackte Geräte bald automatisch isolieren 27. Mai 2026
Der Microsoft Defender bekommt eine neue Funktion zum Schutz vor Cyberangriffen. Die soll bei Angriffsverdacht den Netzwerkverkehr einschränken. (Security, Microsoft)
Ausnutzung wahrscheinlich: Kritische Nginx-Lücke gefährdet unzählige Webserver 27. Mai 2026
Ein KI-Agent hat eine kritische Sicherheitslücke in Nginx entdeckt. Durch speziell gestaltete HTTP-Requests kann Schadcode zur Ausführung gelangen. (Sicherheitslücke, Server-Applikationen)

2026-006: Critical Vulnerability in PAN-OS 6. Mai 2026
On 6 May 2026, Palo Alto published a security advisory addressing a critical vulnerability affecting PAN-OS. This vulnerability allows an unauthenticated attacker to execute arbitrary code with root privileges. Palo Alto observed limited exploitation of this vulnerability. It is strongly recommended updating affected appliances as soon as patches will be available, and to apply workarounds […]
2026-005: High Vulnerability in the Linux Kernel ("Copy Fail") 30. April 2026
On 29 April 2026, a high local privilege escalation vulnerability in the Linux kernel, tracked as CVE-2026-31431 and named "Copy Fail", was publicly disclosed. The vulnerability affects every mainstream Linux distributions shipping a kernel built since 2017. A public proof-of-concept exploit has been released. As of the date of this advisory, no distribution has shipped […]
2026-004: Critical Vulnerability in SharePoint Exploited 25. März 2026
On 17 March 2026, Microsoft updated one of its January 2026 security advisories related to a remote code execution vulnerability in Microsoft SharePoint. Specifically, Microsoft raised the CVSS score and changed the FAQ section to indicate that the vulnerability could be exploited by an unauthenticated attacker. This vulnerability was added in the CISA's Known Exploited […]
2026-003: Multiple Vulnerabilities in Citrix NetScaler and Citrix ADC 23. März 2026
On 23 March 2026, Citrix published a security advisory addressing multiple vulnerabilities affecting NetScaler ADC and NetScaler Gateway. These vulnerabilities may lead to sensitive information disclosure and user session mix-up under specific configurations. At the time of writing, there is no public evidence of active exploitation. It is strongly recommended updating affected gateways, prioritising internet-facing […]
2026-002: Multiple Vulnerabilities in Cisco Products 26. Februar 2026
On 25 February 2026, Cisco released security advisories addressing multiple high and critical severity vulnerabilities in Cisco Catalyst SD-WAN controllers and Cisco SD-WAN Manager. If exploited, these vulnerabilities could allow attackers to gain administrative access to compromised systems. It is recommended to capture forensic evidence, hunt for indicators of compromise, and apply updates as soon […]
2026-001: Critical vulnerabilities in Ivanti EPMM 30. Januar 2026
On 29 January 2026, Ivanti released a security advisory addressing two critical vulnerabilities in their EPMM products. An attacker could exploit those flaws to achieve unauthenticated remote code execution on the vulnerable device. One of these vulnerabilities have been exploited in a limited number of cases.
2025-042: Critical Vulnerability in Cisco Secure Email and Web Manager 18. Dezember 2025
On December 17, 2025, Cisco released a security advisory for a critical vulnerability affecting Cisco Secure Email Gateway and Cisco Secure Email and Web Manager products. It is recommended to follow Cisco's recommendations to check whether vulnerable appliances have been compromised, and to remediate the issue. There is no patch available for this vulnerability yet.
2025-041: Critical Security Vulnerability in React Server Components 4. Dezember 2025
On December 3, 2025, the React Team publicly disclosed a critical security vulnerability affecting React Server Components (RSC) and related packages. The vulnerability allows for unauthenticated remote code execution (RCE) via maliciously crafted HTTP requests. It is recommended to update all affected component packages and any frameworks that integrate them.
2025-040: Critical Vulnerability in Windows Server Update Service (WSUS) 24. Oktober 2025
On October 23, 2025, Microsoft released an out-of-band update to address a critical vulnerability in Windows Server Update Service (WSUS). This vulnerability could allow a remote unauthenticated attacker to execute code on the targeted systems. A proof-of-concept is publicly available for this vulnerability. It is recommended to update as soon as possible.
2025-039: High Severity Vulnerability in FortiOS 15. Oktober 2025
On October 14, 2025, Fortinet released a security advisory addressing a high severity vulnerability in its FortiOS product. It is recommended updating affected products.