(773) 417-9994Free consultation
Insights

Cybersecurity & IT insights for Chicago small businesses.

Practical security advice, industry-specific guides, and lessons from the field. No jargon, no fear tactics.

small business (33)CVE (28)remediation (25)supply chain (19)infrastructure (16)TeamPCP (8)AI (8)CISA KEV (8)phishing (7)social engineering (7)web security (6)network security (6)
CVEweb securitysupply chain

CVE-2026-45618: Your Template Engine Runs Arbitrary Code. CVSS 10.

LiquidJS, a templating library with 7 million monthly downloads, lets attackers run any code on your server through a crafted template string. No login required. Public exploit available.

Jun 4, 2026
supply chainTeamPCPinfrastructure

Malware Got Pushed Directly to Microsoft's GitHub. Yours Could Be Next.

A single compromised account pushed malicious code to 42 repos across Microsoft and Azure GitHub orgs in under an hour. If you trust code because of who published it, that trust is now a liability.

Jun 4, 2026
supply chainnpmsmall business

npm install Just Ran Malware on Your Machine. You Didn't Even Know.

A self-propagating worm is using a blind spot in npm's native build system to execute code the moment you install a package. No install scripts. No warnings. Just binding.gyp.

Jun 3, 2026
supply chainsource codeGitHub

They Validated Your GitHub Tokens. Now They're Cloning Your Repos.

The token-checking campaign we warned about two weeks ago has entered phase two. Attackers are mass-cloning private repositories using stolen PATs. Your source code is walking out the door.

Jun 2, 2026
TeamPCPsupply chainCVE

TeamPCP: The Supply Chain Attackers Who Won't Stop

7 waves. 170+ packages. VS Code extensions. Jenkins plugins. A self-propagating worm. And they breached GitHub itself. Here's the full timeline of the most prolific supply chain campaign of 2026.

Jun 1, 2026
CVEinfrastructureremediation

CIFSwitch: Your Network File Shares Just Gave Someone Root

A 19-year-old flaw in how Linux handles SMB/CIFS file shares lets any local user become root. If your office uses shared drives on a Linux server, you need to patch today.

May 31, 2026
CVEweb securitysmall business

CVE-2026-41940: Two Characters Give an Attacker Root on Your Hosting Panel

An unauthenticated CRLF injection in cPanel gives full root control. If your website runs on shared hosting, your host might already be compromised. CVSS 9.8.

May 31, 2026
CVEAIremediation

CVE-2026-42208: Your AI Gateway Has a SQL Injection. On the Auth Path.

LiteLLM, the proxy that manages your AI API keys, has a pre-auth SQL injection. CVSS 9.8. On CISA KEV. Exploited 36 hours after disclosure. Every API key it stores is compromised.

May 31, 2026
supply chainTeamPCPsmall business

Red Hat's npm Packages Were Stealing Your Credentials. Yes, Red Hat.

29 packages under the @redhat-cloud-services namespace were compromised with a self-propagating credential stealer. 80,000 weekly downloads. If Red Hat's packages aren't safe, neither are yours.

May 31, 2026
CVEinfrastructureremediation

Redis Has a 13-Year-Old RCE Bug. CVSS 10. You're Probably Running It.

A use-after-free in Redis's Lua engine has been there since 2012. CVSS 10.0. Demonstrated at Pwn2Own. If your app uses Redis for caching or sessions, you need to check your version.

May 31, 2026
AIChatGPTphishing

Congrats, ChatGPT Is Now a Phishing Tool

Ask ChatGPT to summarize a webpage and it might phish you. An attacker can embed invisible instructions in any page that hijack how ChatGPT renders the summary. Your IP leaks. Fake login links appear. Welcome to 2026.

May 29, 2026
CVEsupply chainremediation

CVE-2026-35616: Your Security Tool Just Installed Malware on Every Device

Attackers exploited FortiClient EMS to push a credential stealer disguised as a Fortinet firmware update. Your endpoint management system delivered the malware for them. You can't make this up.

May 29, 2026