Apache ActiveMQ is a technology platform tracked across 10 threat clusters and 17 intelligence report mentions on ThreatCluster. First observed February 23, 2026; most recent activity June 3, 2026.
US officials suspect Iranian hackers have breached automatic tank gauge (ATG) systems at gas stations across multiple states. The attackers exploited unprotected internet-connected systems, allowing them to manipulate…
A critical vulnerability in Apache ActiveMQ, tracked as CVE-2026-42253, has been disclosed, allowing attackers to inject malicious HTTP security headers through improperly handled message properties. This flaw affects…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert regarding the active exploitation of three vulnerabilities in Cisco's Catalyst SD-WAN Manager, specifically CVE-2026-20122,…
CVE-2026-34197, a high-severity remote code execution vulnerability, affects Apache ActiveMQ Classic due to unsafe exposure of the Jolokia HTTP/JMX management interface. Attackers can exploit this flaw to execute…
Ivanti disclosed a high-severity vulnerability in its Ivanti Neurons for ITSM platform, tracked as CVE-2026-9614, which allows attackers with valid credentials to escalate privileges and gain full administrative access.…
On June 1 and 2, 2026, Snort published alerts for remote code execution attempts targeting Apache ActiveMQ and Apache OFBiz. The ActiveMQ vulnerability involves insecure deserialization, allowing attackers to execute…
Threat actors exploited a critical vulnerability (CVE-2023-46604) in Apache ActiveMQ, leading to a LockBit ransomware deployment across an enterprise network. The attackers gained access through an exposed Windows…
A medium-severity vulnerability (CVE-2025-66168) in Apache ActiveMQ enables authenticated attackers to launch Denial-of-Service (DoS) attacks using malformed network packets. Discovered by security researcher Gai Tanaka…
On March 6, 2026, OpenAI announced the launch of Codex Security, a sophisticated application security tool designed to identify software vulnerabilities, available for select ChatGPT users. Concurrently, OpenAnt, an…
Research has revealed that attackers can exploit the Cortex XDR Live Terminal feature from Palo Alto Networks to establish command-and-control (C2) communications. This feature operates within a trusted endpoint…