Cyber Security

Articles on SystemTek’s website that relate to cyber security.

Cyber SecurityNews

FBI Says Cyber-Enabled Strategic Cargo Theft Is Surging

– The FBI in the USA has issued a Public Service Announcement (PSA) to warn the public of cyber threat actors increasingly using sophisticated, cyber-enabled tactics to impersonate legitimate businesses to hijack freight, steal high-value shipments, and reroute deliveries, resulting in a surge of strategic cargo theft.

Read More
NewsSecurity Vulnerabilities

Open5GS denial of service vulnerability (CVE-2026-7535)

– A vulnerability was found in Open5GS up to 2.7.7.

Read More
NewsSecurity Vulnerabilities

Oracle VirtualBox SoundBlaster 16 Race Condition Local Privilege Escalation Vulnerability (CVE-2026-35230)

– This vulnerability allows local attackers to escalate privileges on affected installations of Oracle VirtualBox.

Read More
Cyber SecurityNews

NCSC says Leave passwords in the past as passkeys are now the future

– Passkeys should now be consumers’ first choice of login across all digital services, the UK government’s technical authority on cyber security has announced.

Read More
NewsSecurity Vulnerabilities

Delta Electronics ASDA-Soft PAR File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability (CVE-2026-5726)

– This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics ASDA-Soft.

Read More
NewsSecurity Vulnerabilities

Docker Desktop Enhanced Container Isolation Exposed Dangerous Function Local Privilege Escalation Vulnerability (CVE-2026-6406)

– This vulnerability allows local attackers to escalate privileges on affected installations of Docker Desktop.

Read More
NewsSecurity Vulnerabilities

Cortex XSOAR: Improper Verification of Cryptographic Signature in Microsoft Teams integration (CVE-2026-0234)

CVE number = CVE-2026-0234 An improper verification of cryptographic signature vulnerability exists in Cortex XSOAR and Cortex XSIAM platforms during

Read More
NewsSecurity Vulnerabilities

Ongoing campaign exploiting vulnerabilities in Cisco VPN devices

– An attacker attributed to ArcaneDoor campaign has exploited CVE-2025-20333, CVE-2025-20362, and CVE-2025-20363 to install a sophisticated bootkit for persistent stealthy access to affected devices.

Read More
NewsSecurity Vulnerabilities

DriveLock Directory Traversal Information Disclosure Vulnerability (CVE-2026-5492)

– This vulnerability allows remote attackers to disclose sensitive information on affected installations of DriveLock.

Read More
NewsSecurity NewsSecurity Vulnerabilities

Supply Chain Compromise Impacts Axios Node Package Manager​

– The Cybersecurity and Infrastructure Security Agency (CISA) released an alert to provide guidance in response to the software supply chain compromise of the Axios node package manager (npm). Axios is an HTTP client for JavaScript that developers commonly use in Node.js and browser environments. 

Read More