Security Daily Digest
?
← BACK TO TODAY

Cybersecurity news, daily.

2026.05.27

16 sources scanned
FEATURED
01

Zero-Day Exploitation in KnowledgeDeliver LMS

Hackers have exploited a critical zero-day vulnerability in the KnowledgeDeliver learning management system to install web shells. This vulnerability allows remote attackers to execute arbitrary code on affected systems. Security teams should prioritize patching and monitor for signs of exploitation, such as unusual web shell activity, to protect their infrastructure from potential breaches.

SRC BleepingComputer
02

CISA Orders Immediate Patching of SharePoint and Drupal Vulnerabilities

Microsoft has issued an out-of-band patch for a critical remote code execution vulnerability in SharePoint (CVE-2026-45659). Concurrently, CISA has directed U.S. government agencies to patch an actively exploited SQL injection vulnerability in Drupal (CVE-2026-9082). Both vulnerabilities pose significant risks, potentially allowing attackers to gain unauthorized access to sensitive data. Security teams must apply these patches urgently to mitigate exploitation risks.

SRC Dark ReadingBleepingComputer
SIGNAL

STAY UPDATED

Daily security digest, straight to your inbox.

ARCHIVE