KnowledgeDeliver flaw exploited as a zero-day to install web shells

Hackers exploited a critical zero-day vulnerability in a server running the KnowledgeDeliver learning management system (LMS) to deploy the Godzilla web shell.
SecurityWeek

Hackers Exploited KnowledgeDeliver Zero-Day for Web Shell Deployment

CVE-2026-5426, a hardcoded ASP.NET machineKey in KnowledgeDeliver, was exploited as a zero-day in ViewState deserialization ...
Microsoft

From poisoned search results to GPU mining: A cryptojacking campaign abusing ScreenConnect and Microsoft .NET utilities

Microsoft exposes a cryptojacking campaign using SEO poisoning and ScreenConnect to target high-performance PCs, with ...
Visual Studio Magazine

Improving Performance in .NET Applications

Modern .NET development should focus on current .NET rather than .NET Framework for long-term viability and platform flexibility. Performance gains come from deliberate tooling, code reviews, and ...
Visual Studio Magazine

Microsoft Extends Rust-Influenced Memory-Safety Push to C#

Microsoft is applying lessons from Rust to C# in a planned redesign of the unsafe code model, continuing a years-long company focus on reducing memory-safety risks historically associated with C and C ...