Security – TheCyberThrone

Android’s Biggest Security Update Since 2018 — And an Exploit Already in the Wild

Published: March 3, 2026 · Patch Levels: 2026-03-01 & 2026-03-05 · Zero-Days: 1 (Exploited) On March 3, 2026, Google published the Android Security Bulletin for March — and it's unlike…

PravinKarthik March 3, 2026

CVE-2026-21902 — Juniper PTX One Packet to Root Vulnerability

The Short Version A critical vulnerability in Juniper Networks' PTX Series routers allows any unauthenticated attacker on the internet to gain full root access in a single network request. No…

PravinKarthik February 28, 2026

CISA Adds Cisco SD-WAN Vulnerabilities to KEV Catalog

CISA added two critical Cisco Catalyst SD-WAN vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog on February 25, 2026, triggering Emergency Directive 26-03 for federal agencies.These flaws pose severe risks…

PravinKarthik February 26, 2026

Google has fixed triple high severity flaws in Chrome

Google Chrome users face three high-severity vulnerabilities patched in version 145.0.7632.116, released around February 22-23, 2026. These flaws, all rated High by Chromium, enable remote attackers to compromise systems via…

PravinKarthik February 25, 2026

PayPal Data Breach-Six Months of Silent Exposure

PayPal recently confirmed a serious data breach tied to its Working Capital loan system, exposing sensitive user data for over five months. A coding error allowed unauthorized access, sparking concerns…

PravinKarthik February 23, 2026

Microsoft CVE-2026-26119 Deep Dive

Microsoft recently disclosed CVE-2026-26119, a high-severity privilege escalation vulnerability affecting Windows Admin Center.This flaw allows low-privileged attackers to gain elevated access, posing serious risks to Active Directory environments. Vulnerability Overview…

PravinKarthik February 20, 2026

Betterment Suffers a Data Breach

A social engineering attack hit fintech platform Betterment in January 2026, compromising sensitive customer data through tricked employee credentials.This incident highlights ongoing risks in third-party access and phishing tactics targeting…

PravinKarthik February 19, 2026

CISA adds four vulnerabilities to KEV Catalog- Feb 17, 2026

CVSS Deep Dive, Exploit Chains, and Enterprise Risk Analysis Deadline for Remediation: 10 March 2026KEV Status: Newly added to CISA Known Exploited Vulnerabilities CatalogRansomware Use: Not yet confirmed (all entries)…

PravinKarthik February 18, 2026