CISA adds critical Langflow RCE to the Known Exploited Vulnerabilities catalog after attackers weaponized the flaw within 20 hours of public disclosure β no PoC needed. The UK becomes the first country to sanction Xinbi, a Telegram-based crypto marketplace that processed $19.9 billion in illicit funds. Dutch Police confirm a phishing breach. TikTok Business accounts targeted via reverse-proxy session hijacking. Plus: Trivy supply chain extortion wave intensifies and a Russian access broker is sentenced.
If you run Langflow β€ 1.8.1, upgrade to version 1.9.0 immediately or take the instance offline. CISA has set an April 8 federal remediation deadline. Attackers are already harvesting .env and .db files from exposed instances.
The Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2026-33017 to its Known Exploited Vulnerabilities (KEV) catalog. The critical code injection vulnerability in Langflow β the popular open-source AI workflow framework with 145,000 GitHub stars β allows unauthenticated remote code execution via a single crafted HTTP request.
Security researchers at Sysdig documented an extraordinarily fast exploitation timeline, with attackers building working exploits directly from the advisory β no public proof-of-concept code existed:
| Hours After Disclosure | Activity |
|---|---|
| +20 hours | Automated scanning activity begins |
| +21 hours | Exploitation via crafted Python scripts |
| +24 hours | Data harvesting β .env files, databases, API keys |
The vulnerability exists because Langflow versions 1.8.1 and earlier execute user-supplied flows without sandboxing, meaning any flow can run arbitrary Python code on the server. A single HTTP request to the vulnerable endpoint is sufficient for full compromise.
Remediation: Upgrade to Langflow 1.9.0+. If upgrading isn't immediately possible, restrict or disable the vulnerable endpoint, block public internet access, monitor outbound traffic for data exfiltration, and rotate all API keys, database credentials, and cloud secrets stored in the environment.
The United Kingdom's Foreign, Commonwealth and Development Office (FCDO) has become the first country to sanction Xinbi, a Chinese-language Telegram-based marketplace that processed over $19.9 billion between 2021 and 2025. The platform facilitated unlicensed OTC crypto trades, money laundering, and the sale of stolen personal databases to scam networks across Southeast Asia.
The sanctions aim to isolate Xinbi from the legitimate crypto ecosystem, making it impossible to send or receive payments. This strategy proved effective when UK sanctions against the Byex Exchange cryptocurrency platform led to its shutdown last year.
Organizations in the cryptocurrency and financial services sectors should immediately screen for Xinbi-associated wallet addresses. The FCDO sanctions create legal obligations to freeze assets and report transactions involving sanctioned entities. Chainalysis has published IOCs and wallet clusters for monitoring.
The Dutch National Police (Politie) has confirmed a security breach resulting from a successful phishing attack, though the agency says the impact appears limited and no citizens' data or investigative information was exposed.
The police's Security Operations Center (SOC) detected the incident quickly and immediately blocked the attackers' access to compromised systems. A criminal investigation has been launched alongside the technical investigation.
This is the second significant breach of Dutch police systems in recent years. In September 2024, a cyberattack attributed to a "state actor" resulted in the theft of work-related contact information for multiple police officers, including names, email addresses, phone numbers, and in some cases private data. That investigation remains ongoing.
Why it matters: Law enforcement agencies are high-value targets because they hold sensitive investigative data, informant identities, and surveillance capabilities. Even "limited" breaches can reveal operational patterns and compromise officer safety. The fact that phishing β one of the oldest attack vectors β continues to succeed against security-conscious organizations underscores the need for continuous security awareness training and phishing-resistant authentication methods like FIDO2/passkeys.
A coordinated phishing campaign is targeting TikTok for Business accounts using sophisticated reverse-proxy techniques that bypass two-factor authentication by intercepting session cookies in real time.
Push Security, which discovered the campaign, links it to previous attacks targeting Google Ad Manager accounts. The compromised TikTok Business accounts are valuable for malvertising, ad fraud, and distributing malicious content through the platform's advertising network.
Verify all domains before entering credentials. Legitimate TikTok login pages are hosted on tiktok.com β never on third-party domains. Consider implementing passkeys for business-critical accounts, which are inherently resistant to reverse-proxy phishing attacks. Alert marketing teams about this campaign immediately.
Security experts are warning of an escalating extortion campaign targeting organizations affected by the TeamPCP supply chain attack on Trivy, Aqua Security's popular vulnerability scanner. Downstream victims are receiving ransom demands as attackers leverage stolen credentials and access obtained through the compromised tool. The fallout demonstrates how a single supply chain compromise can cascade into widespread secondary attacks across an entire ecosystem.
Aleksei Volkov, a Russian national who operated as an initial access broker, has been sentenced to more than six years in a US federal prison for his role in ransomware schemes. Volkov sold compromised network access to ransomware gangs, enabling attacks that caused millions in damages. The sentencing sends a clear message that access brokers β not just ransomware operators β face serious criminal consequences.
A file read vulnerability in the Smart Slider 3 WordPress plugin (active on 800,000+ sites) allows subscriber-level users to access arbitrary server files including wp-config.php. Version 3.5.1.34 patches the flaw. With only 303,000 downloads since the fix, at least 500,000 WordPress sites remain exposed. Website administrators should update immediately.
The FCC has moved to ban foreign-manufactured routers from US networks, targeting Chinese-made equipment. While security experts applaud the intent, critics warn the rule could create supply chain uncertainty without clear domestic alternatives, potentially forcing organizations into hasty procurement decisions with their own security implications.
| Priority | Action | Details |
|---|---|---|
| CRITICAL | Patch Langflow immediately | Upgrade to v1.9.0+. Rotate all API keys, database credentials, and secrets stored in Langflow environments. Check for unauthorized access since March 19. |
| CRITICAL | Update Smart Slider 3 plugin | WordPress sites using Smart Slider 3 must update to v3.5.1.34. Audit for unauthorized file access, especially wp-config.php. |
| HIGH | Screen for Xinbi wallet addresses | Financial and crypto organizations should screen transactions against Xinbi-associated addresses published by Chainalysis and FCDO sanction lists. |
| HIGH | Alert teams about TikTok phishing | Warn marketing and social media teams about reverse-proxy phishing targeting TikTok Business. Implement passkeys where available. |
| MEDIUM | Review Trivy exposure | Organizations using Trivy should audit for compromise indicators and rotate credentials. Monitor for extortion communications. |
| MEDIUM | Strengthen phishing defenses | The Dutch Police breach is a reminder: deploy phishing-resistant MFA (FIDO2/passkeys) and conduct regular social engineering assessments. |
KENSAI continuously monitors your infrastructure for critical CVEs, exposed services, and misconfigurations β giving you the 20-hour head start that matters.
Run a Free Security Scan βKENSAI Security Briefing β Morning Edition, March 30, 2026
Stay vigilant. Stay patched. Stay ahead.