Karma-X News

Cybersecurity intelligence — emerging threats, vulnerability research, and threat actor tracking.
CRITICAL: Telegram Vulnerability “ZDI‑CAN‑30207” Exposes Users to Zero‑Click Attacks
CRITICAL: Telegram Vulnerability “ZDI‑CAN‑30207” Exposes Users to Zero‑Click Attacks
Telegram Zero‑Click RCE Mobile Desktop Vulnerability Mar 27, 2026

Telegram zero‑click RCE flaw (ZDI‑CAN‑30207) exposes users to full system compromise—update now or disable media auto‑download.

Read full analysis →
Handala Hack: Unveiling the Modus Operandi of a State‑Backed Wiper
Handala Hack: Unveiling the Modus Operandi of a State‑Backed Wiper
Handala Wiper Intune Telegram C2 Iran Mar 27, 2026

Handala Hack exposes how Iranian actors leveraged Intune admin rights and Telegram C2 to wipe 200k systems—here’s the technical deep dive.

Read full analysis →
Critical 9.4 CVSS RCE Flaws in n8n Turn Workflows into Backdoors
Critical 9.4 CVSS RCE Flaws in n8n Turn Workflows into Backdoors
n8n RCE Automation Vulnerability Mar 27, 2026

Critical n8n RCE vulnerabilities expose workflows to backdoors—patch now.

Read full analysis →
ClickFix Campaigns Targeting Windows and macOS: A Deep Technical Analysis
ClickFix Campaigns Targeting Windows and macOS: A Deep Technical Analysis
Windows ClickFix macOS PowerShell LOLBins Mar 27, 2026

Discover how attackers use Windows Terminal to deploy Lumma Stealer via ClickFix – a deep dive into the latest file‑less, LOLBin attack chain.

Read full analysis →
CVE‑2026‑3888: Snap‑Confine and systemd‑tmpfiles Timing Race Enables Local Privilege Escalation to Root
CVE‑2026‑3888: Snap‑Confine and systemd‑tmpfiles Timing Race Enables Local Privilege Escalation to Root
LPE Ubuntu Snap systemd race condition Mar 27, 2026

“CVE‑2026‑3888 turns a timing race between snap‑confine and systemd‑tmpfiles into a root‑level LPE on Ubuntu 24.04+. Patch now or harden manually.”

Read full analysis →
CanisterWorm: A Geopolitical Wiper Leveraging ICP Canisters and Kubernetes Exploits to Target Iranian Systems
CanisterWorm: A Geopolitical Wiper Leveraging ICP Canisters and Kubernetes Exploits to Target Iranian Systems
CanisterWorm Kubernetes ICP Wiper Supply‑Chain Mar 27, 2026

CanisterWorm turns Kubernetes into a geopolitical weapon, wiping Iranian machines via ICP canisters—here’s how to stop it.

Read full analysis →

Page 1 of 2 • 10 articles