Microsoft has revealed that the APT33 Iranian cyber-espionage group, also known as Peach Sandstorm, is using a new backdoor malware called FalseFont to attack global defense contractors. The attacks provide the operators remote access to the compromised systems, extending their reach into government, defense, research, finance, and engineering sectors.
Linux Kernel Flaw Allows Local Attackers to Gain Root Privileges
A newly disclosed Linux kernel vulnerability tracked as CVE-2026-23111 allows local attackers to escalate privileges to root by exploiting a use-after-free flaw in the nftables
