Skip to main content
RuntimeRebel

All Articles

Security Intelligence

2495 articles · Updated every 4 hours

Advertisement

SU
HIGH
Supply Chain

Compromised Checkmarx Jenkins Plugin Spreads Infostealer

Official Checkmarx Jenkins AST plugin version 2023.2.7 was compromised with an infostealer, risking credentials and system data. Immediate uninstallation and credential

Runtime Rebel Intel
4 min read·May 12, 2026
CO
MEDIUM
Compliance

GM Settles for $12.75M Over Unauthorized Driver Data Sales

General Motors reaches a $12.75 million settlement with California for selling driver telematics data to brokers without consent, violating CCPA regulations.

Runtime Rebel Intel
4 min read·May 12, 2026
TH
INFO
Threat Intel

Frame Security Secures $50M for Human Risk Management Platform

Frame Security emerges from stealth with $50M investment to develop a cybersecurity awareness and training platform, addressing human risk factors.

Runtime Rebel Intel
4 min read·May 11, 2026
cPanel CVE-2026-41940 Exploited for Authentication Bypass, Backdoor
CRITICAL
Vulnerabilities

cPanel CVE-2026-41940 Exploited for Authentication Bypass, Backdoor

A critical authentication bypass vulnerability, CVE-2026-41940, in cPanel and WHM is under active exploitation to deploy the Filemanager backdoor.

Runtime Rebel Intel
4 min read·May 11, 2026
Checkmarx Jenkins AST Plugin Compromised in TeamPCP Attack
CRITICAL
Supply Chain

Checkmarx Jenkins AST Plugin Compromised in TeamPCP Attack

TeamPCP compromised the Checkmarx Jenkins AST plugin on the Jenkins Marketplace. Defenders must revert to version 2.0.13 to secure CI/CD pipelines.

Runtime Rebel Intel
3 min read·May 11, 2026
TH
INFO
Threat Intel

Bot Mitigation with CAPTCHAs: Understanding Cloudflare Turnstile

Understand how Cloudflare Turnstile and other CAPTCHAs mitigate bot traffic, improve web performance, and enhance security against automated attacks.

Runtime Rebel Intel
4 min read·May 11, 2026
TH
INFO
Threat Intel

AI Threat Detection with Automated Leads: Enhancing SOC Efficiency

Explore how CrowdStrike Automated Leads uses AI and behavioral telemetry to identify complex attack patterns and reduce mean time to detect for security teams.

Runtime Rebel Intel
3 min read·May 11, 2026
CVE-2024-1086: Dirty Frag Local Privilege Escalation in Linux Kernels
HIGH
Vulnerabilities

CVE-2024-1086: Dirty Frag Local Privilege Escalation in Linux Kernels

Analysis of CVE-2024-1086 (Dirty Frag), a netfilter vulnerability enabling local privilege escalation to root across major enterprise Linux distributions.

Runtime Rebel Intel
3 min read·May 11, 2026
SU
INFO
Supply Chain

Defending CI/CD Pipelines with Build Application Firewalls

Examine how Build Application Firewalls (BAF) provide runtime protection for software pipelines to mitigate sophisticated supply chain attacks and data theft.

Runtime Rebel Intel
4 min read·May 11, 2026
ID
HIGH
Identity & Access

Active Directory Post-Breach Persistence: Why Password Resets Fail

Explaining why password resets fail to evict attackers from Active Directory due to Kerberos ticket persistence and MSV1_0 credential caching mechanisms.

Runtime Rebel Intel
4 min read·May 11, 2026
VU
MEDIUM
Vulnerabilities

Canvas LMS Vulnerability Leads to Portal Defacement — Patch Guidance

Instructure confirms a Canvas LMS vulnerability allowed attackers to deface login portals with extortion messages. Learn how to secure your LMS environment.

Runtime Rebel Intel
4 min read·May 11, 2026
Linux Rootkits and macOS Crypto Stealers Surge in Supply Chain Attacks
HIGH
Threat Intel

Linux Rootkits and macOS Crypto Stealers Surge in Supply Chain Attacks

Analysis of recent threats involving Linux rootkit persistence, macOS crypto-stealing malware, and the exploitation of poisoned supply chain downloads.

Runtime Rebel Intel
3 min read·May 11, 2026