Daily Signal - page 24 | 0day.digest

Sunday, April 19, 2026

Apple Account Change Alerts Abused to Send Phishing Emails

phishing · apple

Thursday, April 16, 2026

Windows Zero-Days Leaked, Now Actively Exploited for SYSTEM Privileges

zero-day · microsoft · privilege-escalation

Splunk Enterprise Patches RCE Flaw Exploitable by Low-Privileged Users via File Upload

cve · vulnerability · rce

Comment and Control: Claude Code, Gemini CLI, and GitHub Copilot Vulnerable to Prompt Injection via Code Comments

llm · vulnerability · appsec · anthropic · github

Wednesday, April 15, 2026

30+ EssentialPlugin WordPress Plugins Backdoored in Supply Chain Compromise

supply-chain · malware · appsec

ShinyHunters Claims 45 Million McGraw Hill Records via Salesforce Misconfiguration

data-breach · cloud-security

CVE-2026-33032 (MCPwn): Critical Nginx UI Authentication Bypass Actively Exploited

cve · vulnerability · rce · zero-day

Threat Actors Abusing n8n Agentic AI Workflow Platform in Email Attack Campaigns

malware · phishing · llm