- Cyber Threat Intelligence, Notificação de Vulnerabilidades OT/ICS
NDV Monthly – February/2026
In this document, produced by SEK’s Cyber Threat Intelligence team, the main vulnerabilities cataloged in the last month are listed.
- Cyber Threat Intelligence, SEK Security Advisory
Compromise of Pix Digital Certificates at JD Consultores Leads Central Bank to Temporarily Restrict Operations
JD Consultores, Brazil’s leading Information Technology Service Provider (PSTI) for the financial market, with approximately 58% market share in the segment,
- Cyber Threat Intelligence, SEK Security Advisory
Microsoft Patch Tuesday Fixes 6 Actively Exploited Zero-Days
Microsoft released its monthly Patch Tuesday with fixes for 55 vulnerabilities across products such as Windows, Microsoft Office, Azure, GitHub Copilot, Visual Studio, Microsoft Exchange Server, Microsoft Defender, and .NET.
- Cyber Threat Intelligence, SEK Security Advisory
Attackers Use Compromised SonicWall VPN Credentials to Deploy EDR-Disabling Malware
Huntress identified an active campaign in February 2026 where attackers used compromised SonicWall SSLVPN credentials to access corporate networks
- Cyber Threat Intelligence, SEK Security Advisory
Microsoft patches critical Office zero-day exploited in attacks
Microsoft released emergency patches for the zero-day vulnerability CVE-2026-21509 (CVSS 7.8) in Microsoft Office, confirming active exploitation in attacks.
- Cyber Threat Intelligence, SEK Security Advisory
Critical FortiCloud SSO Vulnerabilities Allow Authentication Bypass on Fortinet Devices
Fortinet disclosed three critical vulnerabilities related to the FortiCloud Single Sign-On (SSO) mechanism affecting multiple Fortinet product lines.
- Cyber Threat Intelligence, Intelligence Bulletin
How the React2Shell vulnerability is being exploited globally after public disclosure
In the last month of 2025, several leading technology companies warned about exploitations of CVE-2025-55182, known as React2Shell.
- Cyber Threat Intelligence, Notificação de Vulnerabilidades OT/ICS
OT-ICS NDV Monthly- January/2026
The highlights critical and high-severity vulnerabilities in industrial environments that may enable remote code execution, authentication bypass, and denial-of-service attacks, impacting widely used OT and ICS technologies.
- Cyber Threat Intelligence, SEK Security Advisory
DoS vulnerability in Palo Alto Networks GlobalProtect allows firewall disruption
Palo Alto Networks fixed a denial-of-service (DoS) vulnerability in GlobalProtect that can force PAN-OS and Prisma Access firewalls to restart or enter maintenance mode.
