Skip to content
The Nexus
SECURITYMay 26 · 05:19 UTCTHE HACKER NEWS[email protected] (The Hacker News)

KnowledgeDeliver LMS Flaw Exploited to Deploy Godzilla and Cobalt Strike

A high-severity vulnerability in Digital Knowledge's KnowledgeDeliver LMS (CVE-2026-5426) was exploited as a zero-day to deploy the Godzilla web shell and Cobalt Strike Beacon. The flaw, involving hard-coded ASP.NET machine keys, has now been patched.

Nexus surfaces and summarizes. The full story lives at the source.

Mentioned
Spot something wrong with this article?Report a problem →
Forward this
Related Signal

Adjacent reporting