KnowledgeDeliver flaw exploited as a zero-day to install web shells

Hackers exploited a critical zero-day vulnerability in a server running the KnowledgeDeliver learning management system (LMS) to deploy the Godzilla web shell.
SecurityWeek

Hackers Exploited KnowledgeDeliver Zero-Day for Web Shell Deployment

CVE-2026-5426, a hardcoded ASP.NET machineKey in KnowledgeDeliver, was exploited as a zero-day in ViewState deserialization ...
Microsoft

From edge appliance to enterprise compromise: Multi-stage Linux intrusion via F5 and Confluence

A multi-stage attack on Linux devices began with an exposed F5 BIG-IP edge appliance and pivoted to an internal Confluence ...
OSTechNix

JavaScript Timestamp Bugs: How UTC Mistakes Break Web Apps

Learn how a single JavaScript Date() timezone mistake silently corrupts web apps and how to fix timestamp bugs in JS, Python, cron jobs, MySQL, and React SSR.
GitHub

maddes-b/acme-dns-client-2

Manage acme-dns (alternative link) domain registrations and related TXT record updates with ease. Supports ACME clients certbot (Let’s Encrypt only) and acme.sh. May work with other ACME clients too.
CNBC

Shell tops profit estimates as Iran war boosts oil price, cuts share buybacks

Oil giant Shell posted bumper profit of $6.92 billion through the first quarter as the Iran war sent fossil fuel prices soaring. The London-listed energy major cut the pace of its quarterly buyback to ...
The New York Times

Shell Reports Nearly $7 Billion Profit Amid ‘Unprecedented Disruption’

The oil giant’s earnings in the first three months of the year were more than double the previous quarter’s and follow similarly strong results of European rivals. By Gregory Schmidt and Rebecca F.
9to5google

Gemini app can now generate Google Docs, PDF, Word, and other files

You can now ask the Gemini app to directly generate “downloadable and ready-to-share files.” Google wants you to “quickly move from a brainstorm to a complete ...