cognitive cybersecurity intelligence
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a recently patched critical security flaw impacting Drupal Core to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation.
The vulnerability in question is CVE-2026-9082 (CVSS score: 6.5), an SQL injection vulnerability affecting all supported versions of Drupal Core.
“Drupal Core
Subscribe to HEAL Security Dispatch for the latest healthcare cybersecurity news and analysis.
Céline Gounder, KFF Health News’ editor-at-large for public health, discussed the diversion of a Detroit-bound plane to Canada over Ebola concerns on CBS News’ CBS
A maximum-severity security vulnerability impacting LiteSpeed User-End cPanel Plugin has come under active exploitation in the wild. The flaw, tracked as CVE-2026-48172 (CVSS score: 10.0),
A sophisticated and active supply chain attack has struck the Laravel-Lang open-source organization, compromising over 700 historical package versions across four widely used PHP localization
Hack of thousands of GitHub repositories, Interpol’s shutdown of First VPN, and other cybersecurity stories ForkLog
