PoC Exploits, Anonymous Dump & Tata iPhone IP Leak

libssh2 PoC Drop — RCE Risk Now

A public proof-of-concept just landed for a critical flaw in libssh2, and the exploitation clock is running. CVE-2026-55200 is a CVSS nine-point-two integer overflow that lets a malicious server execute code on the connecting client before any authentication happens.

Listen now →

Anonymous Exploit Dump — 15 Products

That libssh2 PoC didn't arrive alone. A researcher going by the name "bikini" published an unvetted exploit archive targeting fifteen products, including Gitea, Splunk, RustDesk, VLC, and OpenVPN, with no prior vendor notification.

Listen now →

PTC Windchill KEV Listing

CISA added CVE-2026-12569 in PTC Windchill to its Known Exploited Vulnerabilities catalog. The flaw allows unauthenticated remote code execution on Windchill and FlexPLM deployments, with attackers deploying JSP webshells post-exploitation.

Listen now →

Tata Electronics Breach — iPhone 18 Pro IP

The World Leaks ransomware group posted over two hundred thousand files from Tata Electronics, and the contents are specific enough to matter. Component maps, supplier identities, prototype photographs, and internal codenames for the iPhone eighteen Pro are now on the dark web.

Listen now →

Weedhack and CountLoader — Malware at Scale

Two consumer-facing campaigns are worth tracking together. Weedhack is a malware-as-a-service tool targeting Minecraft players, offered at under five dollars a month, that steals game credentials, browser data, and crypto wallets.

Listen now →

Amazon Q Developer Credential Risk

One more item worth flagging. CVE-2026-12957 in Amazon Q Developer scores an eight-point-five.

Listen now →

Key Watchpoints — What Comes Next

The near-term watchpoints are clear. Watch for a tagged libssh2 release that formally contains the fix, and watch whether embedded and firmware deployments get any coordinated remediation at all.

Listen now →