KnowledgeDeliver flaw exploited as a zero-day to install web shells

Hackers exploited a critical zero-day vulnerability in a server running the KnowledgeDeliver learning management system (LMS) to deploy the Godzilla web shell.
SecurityWeek

Hackers Exploited KnowledgeDeliver Zero-Day for Web Shell Deployment

CVE-2026-5426, a hardcoded ASP.NET machineKey in KnowledgeDeliver, was exploited as a zero-day in ViewState deserialization ...
The Hacker News

KnowledgeDeliver LMS Flaw Exploited to Deploy Godzilla and Cobalt Strike

CVE-2026-5426 enabled KnowledgeDeliver LMS attacks before February 24, 2026, leading to Cobalt Strike infections.
Visual Studio Magazine

.NET 11 Preview 4 Roundup: MAUI, Blazor, EF Core, SDK and Runtime Updates

NET 11 Preview 4 delivers a broad set of developer-facing updates across .NET MAUI, ASP.NET Core, Blazor, Entity Framework Core, the SDK, libraries and runtime performance work.
InfoWorld

GitHub admits major source code leak after 3,800 internal repositories breached

Microsoft’s GitHub has suffered what appears to be its biggest ever security breach after confirming that attackers ...
InfoWorld

AntV data visualization tool the latest to be hit by ongoing npm supply chain attacks

The world’s largest open-source registry, node package manager (npm), has been hit by another fast-moving malware attack, ...
PCMag on MSN

7 Powerful Screenshot Features Hidden in Windows 11

From quick keyboard shortcuts to AI-powered OCR and GIF creation, Windows 11 includes far more screenshot tools than most people realize.
The Log Cabin Democrat

St. Joseph High School fundraiser supports shelter

Haven Development Manager Emma Barre recently accepted a $1,100 donation from St. Joseph High School sophomore Noelle ...
Ars Technica

Biz & IT

Deal also launched the first quantum foundry company, but is there a need for it?
Dark Reading

Application Security

Explore the latest news and expert commentary on Application Security, brought to you by the editors of Dark Reading ...