The Cybersecurity and Infrastructure Security Agency (CISA) has added a critical remote code execution (RCE) vulnerability in GeoServer GeoTools software, identified as CVE-2024-36401, to its Known Exploited Vulnerabilities catalog. This flaw, which has a CVSS score of 9.8, is actively exploited and poses a severe risk to geospatial data and systems. CISA urges immediate patching to prevent unauthorized access and manipulation. Additionally, the cybercrime group Scattered Spider has adopted new ransomware strains, RansomHub and Qilin, to expand their cyber attack capabilities.