https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.microsoft.com%2Fen-us%2Fsecurity%2Fblog%2F2026%2F04%2F28%2Fsimplifying-aws-defense-microsoft-sentinel-ueba%2F&data=05%7C02%7Ckimberly.kaleta%40sra.io%7C3004358d52bb4637d3fe08dea623331e%7C9bdee6ea21c54c1ca6c941dc3d08c310%7C0%7C0%7C639130867319094928%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=7yg4fUbyvkYprshlBgbOUfBIfWqsZMndW%2B%2Bc4WoOC5Q%3D&reserved=0#new_tab 2026-04-29T19:20:12Z Security Risk Advisors en Microsoft Sentinel UEBA Adds Behavioral Context to AWS CloudTrail Activity to Improve Detection of Suspicious Identity, Privilege, and Data-Access Patterns 2026-04-29T19:20:12Z Blog https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.sysdig.com%2Fblog%2Fcve-2026-42208-targeted-sql-injection-against-litellms-authentication-path-discovered-36-hours-following-vulnerability-disclosure&data=05%7C02%7Ckimberly.kaleta%40sra.io%7Cc07caa96426549a7bdaa08dea62334da%7C9bdee6ea21c54c1ca6c941dc3d08c310%7C0%7C0%7C639130867318775015%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=CrKE8fiP34P0IG3sgtVUolJ2b79i3FVAiD0zKOhpKiE%3D&reserved=0#new_tab 2026-04-29T19:19:18Z Security Risk Advisors en 🚩Critical Pre-Auth SQL Injection in LiteLLM Exposes AI Gateway Credentials Within 36 Hours of Disclosure 2026-04-29T19:19:18Z Blog https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.cyera.com%2Fresearch%2Fsplitsshell-when-a-comma-becomes-root-how-a-single-character-broke-openssh-certificate-authentication&data=05%7C02%7Ckimberly.kaleta%40sra.io%7Cc35e8e5d0ba249a7aaea08dea6233221%7C9bdee6ea21c54c1ca6c941dc3d08c310%7C0%7C0%7C639130867256096873%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=Fai4T3OnCXzzhqiOv6nIdBh7SBoK9wOz8NaLLqc3zW0%3D&reserved=0#new_tab 2026-04-29T19:18:21Z Security Risk Advisors en OpenSSH Certificate Bug Allows CA-Signed SSH Certificates to Be Interpreted as Root Access via Principal Parsing Error (CVE-2026-35414) 2026-04-29T19:18:21Z Blog https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.stepsecurity.io%2Fblog%2Felementary-data-compromised-on-pypi-and-ghcr-forged-release-pushed-via-github-actions-script-injection%23indicators-of-compromise&data=05%7C02%7Ckimberly.kaleta%40sra.io%7C3cf92125c72a4e98b80508dea54fc63f%7C9bdee6ea21c54c1ca6c941dc3d08c310%7C0%7C0%7C639129959248110129%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=DeoFBiX%2FmQxoeOCXnUGRo%2BDVgrZTIn3iQnnlPwxxS1E%3D&reserved=0#new_tab 2026-04-28T19:06:02Z Security Risk Advisors en 🚩 GitHub Actions Exploit Pushes Malicious PyPI Release and Trojaned Container Image 2026-04-28T19:06:02Z Blog https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fsocket.dev%2Fblog%2F73-open-vsx-sleeper-extensions-glassworm&data=05%7C02%7Ckimberly.kaleta%40sra.io%7C998d13afac034823364908dea54fc52b%7C9bdee6ea21c54c1ca6c941dc3d08c310%7C0%7C0%7C639129959179515798%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=ockEBaRZfxfGvfqLdLoqguuI0d4WT9P3H4AxiaIM3Fo%3D&reserved=0#new_tab 2026-04-28T19:05:13Z Security Risk Advisors en 🚩 GlassWorm Expands Supply Chain Attack with 73 Sleeper VS Code Extensions Delivering Malware 2026-04-28T19:05:13Z Blog https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fresearch.checkpoint.com%2F2026%2Fvect-ransomware-by-design-wiper-by-accident%2F&data=05%7C02%7Ckimberly.kaleta%40sra.io%7C99ff683ab49a458900ba08dea54fc38f%7C9bdee6ea21c54c1ca6c941dc3d08c310%7C0%7C0%7C639129959164607910%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=PCTcB65vzFB%2BnLDQW2Dw5qJcQ%2B1zEOq8RcfY8A4A170%3D&reserved=0#new_tab 2026-04-28T19:04:19Z Security Risk Advisors en 🚩 VECT Ransomware Acts as a Wiper Due to Critical Encryption Flaw 2026-04-28T19:04:19Z Blog