Red Hat npm, WordPress, Instagram under active attack; critical Windows vulnerability patching urgent
ID: 78ca1801-febf-5337-b9ba-0ea838e617dd
STIX ID: report--78ca1801-febf-5337-b9ba-0ea838e617dd
Feed Name: defend.network – Daily Threat Briefings
## Executive Summary Red Hat npm packages were compromised to distribute the Miasma credential‑stealing worm, WordPress sites are being actively exploited via a WP Maps Pro RCE that can create admin accounts, high‑profile Instagram accounts were briefly hijacked by abusing Meta's AI support bot, and a critical Windows Netlogon vulnerability (CVE-2026-41089) is under active scrutiny; nearly 2,000 WordPress sites are reported infected using Steam profiles for C2. Immediate actions recommended include patching affected software, rotating credentials and API tokens, enabling MFA, auditing affected systems, and scanning/restoring infected WordPress instances.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.