SolarWinds fixes four critical CVSS 9.1 vulnerabilities in Serv-U 15.5 that could allow root code execution with administrative privileges.
Get the latest international news and world events from around the world.
Windows 11 KB5077241 update improves BitLocker, adds Sysmon tool
Microsoft has released the KB5077241 optional cumulative update for Windows 11, which comes with 29 changes, including improvements to BitLocker, a new network speed test tool, and native System Monitor (Sysmon) functionality.
KB5077241 is a preview update delivered at the end of each month that allows admins to test Windows bug fixes, new features, and improvements before they’re generally available during next month’s Patch Tuesday release. However, unlike Patch Tuesday cumulative updates, monthly non-security preview updates do not include security fixes and only roll out quality improvements.
With the February 2026 optional update, Microsoft has improved BitLocker reliability, ensuring devices no longer freeze after entering the recovery key, and introduced a built‑in network speed test for Ethernet, Wi‑Fi, and cellular connections in the Windows taskbar, which can be opened from the Wi‑Fi or Cellular Quick Settings, or by right-clicking the network icon in the system tray.
Phishing campaign targets freight and logistics orgs in the US, Europe
A financially motivated threat group dubbed “Diesel Vortex” is stealing credentials from freight and logistics operators in the U.S. and Europe in phishing attacks using 52 domains.
In a campaign that has been running since September 2025, the threat actor has stolen 1,649 unique credentials from platforms and service providers critical in the freight industry.
Some of the Diesel Vortex victims include DAT Truckstop, TIMOCOM, Teleroute, Penske Logistics, Girteka, and Electronic Funds Source (EFS).
1Campaign platform helps malicious Google ads evade detection
A newly identified cybercrime service known as 1Campaign is enabling threat actors to run malicious Google Ads that remain online for extended periods while evading scrutiny from security researchers.
1Campaign is a cloaking service that passes Google’s screening process and shows malicious content only to real potential victims. Security researchers and automated scanners are served benign white pages.
The operation has been active for at least three years and is managed by a developer using the name ‘DuppyMeister,’ according to a report from data security company Varonis.
