THREATNOIR
Subscribe
Back to show
Red vs Blue Show

Nginx UI Auth Bypass Under Active Exploitation

Apr 16, 2026 · 1:40

An unauthenticated endpoint in Nginx UI (CVE-2026-33032) allows remote attackers to invoke privileged Model Context Protocol actions and achieve full serve…

X

Watch next

Snow Malware Blows In Through Teams Chat
1:40

Snow Malware Blows In Through Teams Chat

Apr 26, 2026

Wormable npm Malware Crawls the Supply Chain
1:40

Wormable npm Malware Crawls the Supply Chain

Apr 25, 2026

Vercel Breach Spreads Beyond Initial Blast Radius
1:40

Vercel Breach Spreads Beyond Initial Blast Radius

Apr 24, 2026

Dead Routers Walk: Mirai Feasts on D-Link
1:40

Dead Routers Walk: Mirai Feasts on D-Link

Apr 23, 2026

French ID Agency Breach Exposes 19 Million Citizens
1:40

French ID Agency Breach Exposes 19 Million Citizens

Apr 22, 2026

Lazarus Drains $290M from KelpDAO
1:40

Lazarus Drains $290M from KelpDAO

Apr 21, 2026

Vercel Breached, ShinyHunters Selling Stolen Secrets
1:40

Vercel Breached, ShinyHunters Selling Stolen Secrets

Apr 20, 2026

Protobuf.js Flaw Turns Schemas Into Weapons
1:40

Protobuf.js Flaw Turns Schemas Into Weapons

Apr 19, 2026

Four Android Malware Families Raid 800 Banking Apps
1:40

Four Android Malware Families Raid 800 Banking Apps

Apr 18, 2026