Cymulate Research Labs

image
FEATURED
BLOG

Shai-Hulud 2.0: NPM Supply Chain Attack Exposes the SDLC's Weakest Link 

Shai-Hulud 2.0 is an advanced npm supply chain attack that compromises packages and exploits CI/CD and SCM credentials.

Read More
Content Types
All posts
All posts Blog
Selected Filters: Reset All Filters
45 search results for ""
image
May 13, 2026

AKS RunCommand Vulnerability Enables Cross-Cluster Privilege Escalation

Read More
image
May 6, 2026

When AI Tools Become the Backdoor: Zero-Click RCE via Prompt Injection 

Read More
CVE-2026-32196:  One-Click RCE via Windows Admin Center Control Flow Hijacking
April 15, 2026

CVE-2026-32196:  One-Click RCE via Windows Admin Center Control Flow Hijacking

Read More
image
April 7, 2026

The Race to Ship AI Tools Left Security Behind. Part 1: Sandbox Escape 

Read More
Handala Hack: From Regional Disruption to Digital Destruction — Why Security Validation Matters Now 
March 16, 2026

Handala Hack: From Regional Disruption to Digital Destruction — Why Security Validation Matters Now 

Read More
image
March 10, 2026

CVE-2026-26117: Hijacking Azure Arc on Windows for Local Privilege Escalation & Cloud Identity Takeover 

Read More
image
February 17, 2026

New Cymulate WAF Rules: Turn Validation Gaps Into Actionable Defense 

Read More
image
January 15, 2026

Kerberos Authentication Relay Via CNAME Abuse 

Read More
image
January 14, 2026

CVE-2026-20965: Cymulate Research Labs Discovers Token Validation Flaw that Leads to Tenant-Wide RCE in Azure Windows Admin Center

Read More
image
December 17, 2025

Uncovered: Improper Attestation Signature Validation in Windows Admin Center

Read More
image
December 15, 2025

CVE-2025-64669: Uncovering Local Privilege Escalation Vulnerability in Windows Admin Center 

Read More
image
December 10, 2025

Shai-Hulud 2.0: NPM Supply Chain Attack Exposes the SDLC's Weakest Link 

Read More
1234 / 4