Category
Security
Weak Security Continues to Fuel Russian Cyberattacks
EU and UK impose first joint sanctions against Russian cyber actors, signaling a shift toward aggressive collective defense against state-sponsored threats.
Jul 13, 2026·3 min read

'Yellow Teams' Are Defining the Future of AI Security
Explore the rise of 'Yellow Teams' in AI security, where developers integrate defensive and offensive testing to build resilient machine learning systems.
Jul 13, 2026·3 min read

CrashStealer macOS Malware Uses Notarized Dropper to Pass Gatekeeper Checks
Discover how CrashStealer macOS malware bypasses Apple's Gatekeeper using notarized droppers and native C++ code to harvest sensitive browser and keychain data.
Jul 13, 2026·3 min read

Google and Microsoft Pull ModHeader With 1.6 Million Installs After Dormant Collector Found
Google and Microsoft remove ModHeader after a dormant data collector was found, highlighting the growing supply chain risks in the browser extension ecosystem.
Jul 13, 2026·2 min read

GigaWiper Lets Threat Actors Choose Their Own Destructive Attack
Analysis of GigaWiper, a new modular malware variant combining backdoor persistence with customizable data destruction for maximum enterprise impact.
Jul 13, 2026·3 min read

Compromised jscrambler 8.14.0 npm Release Drops Rust Infostealer During Install
A supply chain attack on the jscrambler npm package highlights the rising threat of automated malware injection and the limits of traditional security audits.
Jul 11, 2026·3 min read

Hackers Weaponize Balochistan Police Portal in Multi-Group Espionage Campaigns
An analysis of recent cyber espionage campaigns targeting Pakistani law enforcement through the weaponization of the Balochistan Police portal.
Jul 11, 2026·3 min read
Ghost Accounts Abuse GitHub API in Mass Recon Campaign
New cybersecurity research reveals a mass reconnaissance campaign using 'ghost accounts' to scrape GitHub data, signaling a shift in developer supply chain risk
Jul 11, 2026·2 min read

Critical Zimbra Flaw Could Let Crafted Emails Run Malicious Code in User Sessions
Zimbra warns of a critical stored XSS vulnerability in its Classic Web Client, highlighting persistent security risks in legacy enterprise email infrastructure.
Jul 11, 2026·3 min read

Jen Ellis: Connecting Cyber Community With Political Machinery
An editorial analysis of Jen Ellis’s MBE honor and her role in bridging the gap between cybersecurity researchers and global policymakers.
Jul 10, 2026·3 min read

Cybercriminals Flock to Healthcare Businesses as Attacks Surge
Cybercriminals shift focus from hospitals to healthcare service providers, creating new systemic risks and supply chain vulnerabilities in the medical sector.
Jul 10, 2026·3 min read

URGENT - Progress Tells ShareFile Customers to Shut Down Storage Zone Controllers Over Security Threat
Progress Software urges ShareFile users to disable Storage Zone Controllers following a credible security threat, highlighting lingering supply chain risks.
Jul 10, 2026·3 min read

Injective Labs GitHub Compromise Pushes Wallet-Key-Stealing npm Packages
A sophisticated GitHub compromise at Injective Labs highlights escalating software supply chain risks in the decentralized finance (DeFi) ecosystem.
Jul 10, 2026·3 min read

Six New U-Boot Flaws Could Let Malicious Images Crash Devices or Run Code at Boot
Researchers discover six vulnerabilities in the U-Boot bootloader, threatening the security of millions of IoT devices and enterprise servers.
Jul 10, 2026·3 min read
In Other News: DHS Database Hacked, Adobe Boosts Patch Cadence, Canada Disrupts Ransomware Ops
A look into AI litigation, surging ransomware disruptions, and the resurgence of the NSA’s elite hacking units in a shifting cybersecurity landscape.
Jul 10, 2026·3 min read

Laser Attack Resets Tangem Wallet Passwords on Cards That Can't Be Patched
Ledger Donjon researchers reveal a laser fault injection vulnerability in Tangem hardware wallets, highlighting the risks of unpatchable chip architecture.
Jul 10, 2026·2 min read

Researcher Details WhatsApp-to-Host Attack Chain Using Three OpenClaw Flaws
Security flaws in OpenClaw AI assistant allowed remote code execution via WhatsApp, highlighting new risks in integrated LLM-based tools.
Jul 10, 2026·3 min read

Fresh ATM Crypto Software Bugs: Jackpot or Bust?
New vulnerabilities in Microsoft BitLocker wrappers threaten ATM security, exposing the fragile balance between encryption and hardware-level exploitation.
Jul 10, 2026·3 min read

More Countries Jump on the Social Media 'Ban Wagon'
Global governments are shifting toward social media bans for minors as age-verification technologies face technical and privacy hurdles.
Jul 10, 2026·3 min read
New MODBEACON RAT Uses gRPC Streaming for Encrypted C2 Traffic
Silver Fox, a China-linked threat group, deploys MODBEACON, a Rust-based RAT using gRPC streaming for stealthy, high-efficiency command-and-control communicatio
Jul 10, 2026·2 min read

Iran's Cyber Crosshairs Focus Beyond Critical Infrastructure
Analysis of Iran's shifting cyber strategy as state-sponsored actors move beyond critical infrastructure to target broader corporate vulnerabilities.
Jul 9, 2026·3 min read

Microsoft Reins in RoguePlanet Zero-Day Threat
Microsoft addresses the RoguePlanet zero-day vulnerability in Windows Defender following a public exploit release by researcher Nightmare-Eclipse.
Jul 9, 2026·2 min read
_Pattara_Alamy.jpg?width=720&quality=80&disable=upscale)
AI Agents Are a New Kind of Identity & Most Organizations Aren't Ready
AI agents represent a major shift in identity management. Explore why treating autonomous AI like static service accounts creates massive security gaps.
Jul 9, 2026·3 min read

Dormant GitHub Accounts Help Attackers Blend In While Mapping Corporate Orgs
New research reveals how attackers use 'ghost' GitHub accounts and API scraping to map corporate infrastructures while evading traditional security detection.
Jul 9, 2026·2 min read

New GigaWiper Windows Backdoor Bundles Disk Wiping, Fake Ransomware, and Spyware
Microsoft uncovers GigaWiper, a modular Windows backdoor combining disk wiping, fake ransomware, and spyware into a single destructive toolkit.
Jul 9, 2026·3 min read

Top AI Agents Built to Catch Malicious Code Can Be Tricked Into Running It
New research reveals 'Friendly Fire' vulnerabilities in AI coding agents, where autonomous security tools can be tricked into executing malicious code.
Jul 9, 2026·3 min read
Unpatched Backdoor in Tenda Firmware Grants Admin Access to Devices
A critical unpatched backdoor in Tenda firmware (CVE-2026-11405) exposes home and office routers to remote admin takeover. Read the full security analysis.
Jul 9, 2026·3 min read

GhostApproval Symlink Flaws Could Let Malicious Repos Run Code in AI Coding Agents
Wiz researchers discover 'GhostApproval' flaws in AI coding agents, allowing malicious repositories to gain unauthorized system access via symlink exploits.
Jul 9, 2026·3 min read

Fake 7-Zip Installers Turn Devices Into Residential Proxy Nodes
Cybersecurity researchers uncover 'Lurking Lizard,' a sophisticated threat actor turning user devices into residential proxies through fake software.
Jul 9, 2026·3 min read

Mexico's New Cyber Plan Faces Its First Real Test
Mexico strengthens its National Cybersecurity Strategy ahead of the 2026 FIFA World Cup, facing critical challenges in infrastructure and policy coordination.
Jul 8, 2026·3 min read

Big Brand Jobs Scam Targets Marketing Pros' Google Accounts
New 'Big Brand' phishing campaign exploits marketing job seekers with nested redirects to hijack Google accounts and business infrastructure.
Jul 7, 2026·2 min read

Dialogflow CX 'Rogue Agent' Flaw Enabled AI Chatbot Data Theft
A critical vulnerability in Google’s Dialogflow CX highlights the growing security risks within enterprise AI infrastructure and LLM integration.
Jul 7, 2026·3 min read
County Government Reportedly Paid $1 Million to Cyber Extortion Group
An analysis of the reported $1 million ransomware payment by an Ohio county and its implications for local government cybersecurity and federal policy.
Jul 7, 2026·3 min read
Critical Gitea Flaw Under Active Exploitation, Researchers Warn
A critical authentication bypass flaw in Gitea (CVE-2024-20896) is under active exploitation, threatening DevOps security and software supply chains.
Jul 7, 2026·3 min read

RedWing MaaS Packages Android Bank Fraud as a Telegram Rental Service
An editorial analysis of RedWing, a new Android Malware-as-a-Service (MaaS) platform on Telegram lowering the barrier for sophisticated banking fraud.
Jul 7, 2026·3 min read

'BusySnake' Infostealer Slithers into Critical Infrastructure Networks
The BusySnake infostealer, deployed by Armored Likho, targets critical infrastructure in Russia and Brazil, signaling a shift in cyber espionage tactics.
Jul 6, 2026·3 min read

CitrixBleed-ing Again? NetScaler Vulnerability Under Attack
Citrix faces a new security crisis as a 'CitrixBleed' style vulnerability in NetScaler ADC and Gateway products is actively exploited by threat actors.
Jul 6, 2026·3 min read
Blogspot-Hosted Payloads Delivered in ‘Veil#Drop’ Attacks
Analysis of the Veil#Drop cyberattack campaign, which leverages Google’s Blogspot and fileless techniques to deliver the PureLog information stealer.
Jul 6, 2026·3 min read

Iran-Linked Hackers Use New Cavern C2 Framework to Target Israeli Organizations
An analysis of the Iranian-linked Cavern C2 framework targeting Israeli infrastructure and its implications for regional cybersecurity.
Jul 6, 2026·2 min read

16-Year-Old Linux KVM Flaw Lets Guest VMs Escape to Host on Intel and AMD x86 Systems
A 16-year-old vulnerability in the Linux KVM hypervisor, dubbed Januscape, allows guest VMs to escape to the host, threatening cloud security infrastructure.
Jul 6, 2026·3 min read
Flipper Zero firmware development continues with community help
Flipper Devices shifts to a community-led development model for the Flipper Zero, navigating hardware success, regulatory pressure, and financial hurdles.
Jul 5, 2026·3 min read
JadePuffer ransomware used AI agent to automate entire attack
JadePuffer ransomware marks a shift in cyber warfare, utilizing an AI agent to automate the entire attack chain from breach to data encryption.
Jul 4, 2026·3 min read

U.S. Government Entity Paid Kairos $1 Million in Data-Theft Extortion Case
Analysis of the U.S. government's $1 million payment to the Kairos group, highlighting a shift from ransomware to pure data-theft extortion.
Jul 4, 2026·3 min read

North Korean Hackers Publish 108 Malicious Packages and Extensions in PolinRider Campaign
North Korean hackers launch PolinRider, a massive supply chain attack targeting developers via 108 malicious packages on npm, Go, and Chrome.
Jul 4, 2026·2 min read

Unpatched Flaws Disclosed in Filesystem Bundled Into Millions of Embedded Devices
Security researchers reveal seven critical vulnerabilities in FatFs, a ubiquitous filesystem module impacting millions of embedded and industrial devices.
Jul 3, 2026·3 min read

New "Bad Epoll" Linux Kernel Flaw Lets Unprivileged Users Gain Root, Hits Android
Explore 'Bad Epoll' (CVE-2026-46242), a critical Linux and Android vulnerability that highlights the limits of current AI-driven security auditing.
Jul 3, 2026·3 min read

New Avalon Malware Framework Packs CrownX Ransomware Capabilities
Cybersecurity researchers uncover Avalon, a modular malware framework integrating phishing, lateral movement, and CrownX ransomware for streamlined attacks.
Jul 3, 2026·3 min read
NetNut proxy network disrupted, 2 million infected devices cut off
Google and cybersecurity experts disrupt the NetNut proxy network, cutting off access to 2 million compromised Android devices world-wide.
Jul 3, 2026·3 min read

North Korea-Linked npm Packages Mimic Rollup Polyfills to Steal Developer Secrets
North Korean threat actors target developers with malicious npm packages mimicking Rollup polyfills to steal credentials and secure remote access.
Jul 3, 2026·3 min read
In Other News: Canadian Hacker Jailed, Open Source Zero-Days, Two Sentenced for ATM Jackpotting
An analysis of recent cybercrime sentencings and open-source vulnerabilities, highlighting the shifting landscape of digital law enforcement and software risk.
Jul 3, 2026·3 min read
ARToken PhaaS exposes EvilTokens' Microsoft 365 phishing toolkit
The emergence of ARToken and its connection to EvilTokens marks a dangerous shift in the accessibility of advanced Microsoft 365 phishing kits.
Jul 3, 2026·3 min read

Armored Likho Targets Government Agencies, Power Sector with BusySnake Stealer
Armored Likho’s new BusySnake stealer signals a shift in cyber espionage, blending retail-style malware with high-stakes government and energy sector targets.
Jul 3, 2026·2 min read

Chinese LLMs Broaden the Gap Between Attackers & Defenders
Analysis of emerging Chinese LLMs like DeepSeek and Qwen, exploring their impact on the global AI arms race and cybersecurity implications.
Jul 3, 2026·3 min read

European Parliament Member Investigating Spyware Was Hacked With Pegasus
Analysis of the Pegasus spyware attack on MEP Stelios Kouloglou and its implications for European democratic integrity and surveillance regulation.
Jul 3, 2026·3 min read
Agentic AI Used to Conduct Ransomware Attack via Langflow
Recent cybersecurity research reveals how agentic AI, through the Langflow framework, can automate complex ransomware delivery, marking a shift in cyber threats
Jul 3, 2026·3 min read
Claude Fable 5 isn’t permanently leaving subscriptions, Anthropic says
Anthropic clarifies that Claude 3.5 Sonnet's arrival and the temporary removal of Fable 5 from subscriptions is a capacity-driven shift, not a retirement.
Jul 3, 2026·3 min read
Claude Fable relaunch disappoints users with nerfed performance
Anthropic's Claude Fable relaunch faces criticism for 'nerfed' performance, highlighting the tensions between safety tuning and model intelligence.
Jul 3, 2026·3 min read

Aussies Face Reduced Cybercrime Risk, as Pressure Shifts to SMBs
Australia’s tightening cyber regulations have reduced individual risk but created a survival crisis for SMBs facing sophisticated criminal threats.
Jul 2, 2026·3 min read

Apple Reverses Age-Old Patch Policy to Keep Up With AI
Apple accelerates its software patching cycles as AI-driven automation allows attackers to exploit vulnerabilities faster than ever before.
Jul 2, 2026·3 min read

FBI Seizes NetNut Proxy Platform, Popa Botnet
The FBI's seizure of NetNut's domains marks a turning point in the regulation of the residential proxy market and its links to illicit botnets.
Jul 2, 2026·3 min read
Medtronic notifies customers impacted by ShinyHunters data breach
Medtronic confirms a data breach linked to the ShinyHunters group, exposing customer data and highlighting risks in the healthcare manufacturing supply chain.
Jul 2, 2026·3 min read
FortiBleed credential-theft campaign linked to Lynx ransomware
FortiBleed credential theft campaign linked to Lynx ransomware highlights the growing risk of automated edge-device exploitation in supply chain attacks.
Jul 1, 2026·2 min read
Kubota says hackers had month-long access to network systems
Kubota North America reveals a month-long data breach, highlighting critical vulnerabilities in industrial supply chain cybersecurity and data protection.
Jul 1, 2026·3 min read

Crafty Phishing Campaigns Auto-Adapt to Victim's Device, OS
New adaptive phishing techniques use device fingerprinting to deliver OS-specific payloads, marking a shift toward highly personalized cyberattacks.
Jul 1, 2026·3 min read
New ChocoPoC malware targets researchers via trojanized PoC exploits
ChocoPoC malware targets cybersecurity researchers using weaponized GitHub exploits, signaling a sophisticated shift in cyber espionage tactics.
Jul 1, 2026·3 min read

Citrix Patches Six NetScaler Flaws Allowing File Read and Denial-of-Service
Citrix patches critical vulnerabilities in NetScaler ADC and Gateway. Learn about the risks of CVE-2026-8451 and the broader push for secure network infrastruct
Jul 1, 2026·3 min read

China-Linked Group Targets Southeast Asia Critical Systems
A sophisticated China-linked cyber espionage campaign targets critical infrastructure in Southeast Asia, signaling a new era of regional digital warfare.
Jul 1, 2026·3 min read
Anthropic to restore Claude Fable access on Wednesday
Anthropic gains clearance to export its high-performance Fable 5 and Mythos 5 models as U.S. Commerce Department eases AI trade restrictions.
Jul 1, 2026·3 min read
Anthropic rolls out Sonnet 5 with near-Opus 4.8 performance at a lower price
Anthropic's release of Claude 3.5 Sonnet challenges the industry's 'bigger is better' dogma, offering flagship-level performance at mid-tier pricing.
Jun 30, 2026·3 min read
New BioShocking attack manipulates AI browser into data theft
The 'BioShocking' attack uses narrative framing to bypass AI browser guardrails, highlighting new vulnerabilities in LLM-integrated web navigation.
Jun 30, 2026·3 min read
New Controller Flaws Expose Highway Signs and Billboards to Remote Hacking
CISA has published an advisory to inform organizations about three vulnerabilities found by a researcher in Daktronics controllers. The post New Controller Flaws Expose Highway Signs and Billboards to
Jun 30, 2026

Oracle E-Business Suite Flaw CVE-2026-46817 Actively Exploited in the Wild
A critical security flaw impacting Oracle E-Business Suite has come under active exploitation in the wild, according to Defused Cyber. The vulnerability, tracked as CVE-2026-46817 (CVSS score: 9.8), r
Jun 30, 2026

'Djinn' Stealer Targets Cloud, AI Credentials
The infostealer was delivered via CVE-2026-48558, a critical authentication bypass vulnerability in SimpleHelp, targeting credentials linking development and admin environments to wider enterprise sys
Jun 29, 2026

Vulnerabilities Expose Private Data in Indian Government Systems
One critical vulnerability, among many discovered by a researcher, could have allowed anyone to walk in and take over a national government portal.
Jun 29, 2026
Nissan discloses employee data breach linked to Oracle zero-day attacks
Nissan is warning that it suffered a data breach affecting current and former employees after threat actors exploited an Oracle PeopleSoft vulnerability in data theft attacks previously linked to the
Jun 29, 2026
Data breach exposes up to 14.2 million email logins at six ISPs
Japanese telecommunications operator KDDI Corporation disclosed a data breach where threat actors gained access to one of its email systems used by five other internet service providers (ISPs) in the
Jun 28, 2026

Ukraine Says Russian Intelligence Used Fake Support Texts to Steal Messaging Credentials
The Security Service of Ukraine (SSU) said it, together with the U.S. Federal Bureau of Investigation (FBI), uncovered a long-running campaign orchestrated by Russian intelligence services to break in
Jun 27, 2026
Clean GitHub repo tricks AI coding agents into running malware
An agentic coding tool tasked with cloning and setting up a seemingly benign GitHub repository could execute a malicious payload that remains invisible to security scanners, AI agents, and human revie
Jun 27, 2026

OpenAI Previews GPT-5.6 Sol With Restricted Access and Stronger Cyber Safeguards
OpenAI on Friday released three versions of GPT-5.6, called Sol, Terra, and Luna, as a limited preview to a small number of companies as part of an ongoing engagement with the U.S. government. While S
Jun 27, 2026
Chinese Framework Powers 200,000 Scam Sites
Threat actors are selling investment scam templates created using the legitimate DCloud Uni-App toolkit. The post Chinese Framework Powers 200,000 Scam Sites appeared first on SecurityWeek.
Jun 27, 2026
_Aleksei_Gorodenkov_Alamy.jpg?width=720&quality=80&disable=upscale)
Third-Party Breaches Teach Education Sector a Costly Lesson in Vendor Risk
Rising threats from third-party actors are forcing institutions to play defense to protect student data from ransomware and other attacks.
Jun 27, 2026
FBI: Russian hackers now target Signal backup recovery keys
The FBI and CISA are warning that a phishing campaign targeting Signal users tied to Russian intelligence services has evolved to steal Signal Backup Recovery Keys, allowing attackers to access victim
Jun 26, 2026
CISA sets urgent deadline to fix Cisco flaw exploited in attacks
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is giving federal agencies until Sunday to patch a vulnerability in Cisco Unified Communications Manager Server that is being actively
Jun 26, 2026

FBI Warns Russian Intelligence Hackers Target Signal Backup Recovery Keys
The FBI and CISA have updated their March warning about Russian intelligence phishing Signal accounts, and the operators have added a step: they now coax targets into handing over their Signal Backup
Jun 26, 2026

AI Decline? Confidence in Autonomous Penetration Testing Falls
Companies are still experimenting with automated AI systems to find security weaknesses, but fewer are relying on the technology.
Jun 26, 2026

New SharkLoader Malware Deploys Cobalt Strike in StrikeShark Cyberattacks
A newly discovered cyber attack campaign has been observed delivering a previously undocumented malware family called SharkLoader that acts as a loader for deploying Cobalt Strike Beacon on compromise
Jun 26, 2026
Polymarket customers lose $3 million in supply-chain attack
Polymarket says it will fully reimburse customers who lost an estimated $3 million after hackers injected a malicious script into the platform's frontend following a breach at a third-party vendor. [.
Jun 26, 2026
Cybersecurity firms targeted by fraudulent OpenAI organization invites
Threat actors are creating OpenAI tenants that impersonate legitimate companies and inviting employees to join them, in what appears to be a ploy to trick targets into submitting sensitive company inf
Jun 26, 2026

Cisco Adds NHI to Security Stack With Astrix, WideField Acquisitions
Cisco joins a growing list of security platform providers that are betting that securing the agentic workforce means turning identity into the primary control plane.
Jun 26, 2026
_Wavebreakmedia_Ltd_FUS1407_Alamy.jpg?width=720&quality=80&disable=upscale)
New Initiative Tackles Security for End-of-Life Open Source Software
The Open Source Sustainability Initiative's goal is to help enterprises manage and secure aging open source projects while maintaining regulatory compliance.
Jun 26, 2026
Philip Martin Joins Uber as Chief Information Security Officer
Martin brings experience from Coinbase, Palantir, Amazon, and the U.S. Army to lead Uber's cybersecurity and enterprise security organization. The post Philip Martin Joins Uber as Chief Information Se
Jun 26, 2026
Anthropic is testing desktop-like Claude Cowork for mobile
Anthropic appears to be testing Claude Cowork support on mobile, allowing you to manage long-running Claude tasks from your phone. [...]
Jun 25, 2026
Poland busts SIM-swapping gang tied to millions in crypto theft
Authorities in Poland have arrested four members of an organized cybercrime group accused of breaching telecommunications partners and hijacking email accounts to carry out SIM-swapping attacks. [...]
Jun 25, 2026

In Less Than 24 Hours, Attackers Weaponize Cisco CUCM Flaw
The flaw enables server-side request forgery (SSRF) and escalates privileges to root, impacting Cisco Unified CM and Unified CM SME deployments.
Jun 25, 2026

Russian APT 'Gamaredon' Upgrades Its Arsenal, Requiring New Defenses
The FSB state-sponsored operation has gotten a lot better at loading its malware and hiding its servers.
Jun 25, 2026
Google releases new privacy controls for activity history, personalization
Google is rolling out new privacy controls for Search services and Google Play, giving you more control over saved history and personalized recommendations. [...]
Jun 24, 2026
DraftKings hacker 'Snoopy' sentenced to 18 months in prison
A 21-year-old using the alias "Snoopy" was sentenced to 18 months in prison for his role in hacking DraftKings accounts in the November 2022 cyberattack. [...]
Jun 24, 2026
Mandiant reveals how Cisco SD-WAN zero-day attacks gained root access
New details have been revealed on how hackers exploited a Cisco Catalyst SD-WAN vulnerability tracked as CVE-2026-20245 in zero-day attacks to create rogue root accounts on targeted devices. [...]
Jun 24, 2026

Attackers Hit Cisco SD-WAN Flaw 2 Months Before Disclosure
Researchers believe rogue peering was used to connect to the victim's SD-WAN devices to gain admin privileges and root-level access.
Jun 24, 2026
Malicious Edge extension abuses Native Messaging as bridge to malware
A malicious Microsoft Edge extension dubbed 'Edgecution' has been used in a ransomware attack to escape the browser sandbox and deploy a Python-based backdoor. [...]
Jun 24, 2026
Anthropic’s Mythos Model Found Vulnerabilities in Classified US Government Systems, Official Says
Anthropic's Mythos model identified vulnerabilities in classified US government systems, marking a major milestone in AI-driven defensive cybersecurity.
Jun 24, 2026·3 min read
Cisco Unified CM flaw CVE-2026-20230 now exploited in attacks
Cisco warns of active exploitation of CVE-2026-20230, a high-severity SSRF flaw in Unified Communications Manager. Learn the risks and mitigation steps.
Jun 23, 2026·2 min read
Tata Electronics confirms cyberattack as hackers leak data
Tata Electronics confirms a cyberattack affecting its IT infrastructure, raising concerns over India's semiconductor ambitions and global supply chain security.
Jun 23, 2026·3 min read

Scope of Salesforce Attacks Expands as Icarus Leaks Data
The Icarus attack on Salesforce data via Klue highlights the growing risks of OAuth token abuse and third-party SaaS integration vulnerabilities.
Jun 23, 2026·3 min read
Windows 11 KB5095093 update rolls out new Point-in-Time restore feature
Microsoft introduces Point-in-Time restore in Windows 11 updates, revolutionizing system recovery and endpoint security for modern enterprise users.
Jun 23, 2026·3 min read

OpenAI Expands Daybreak With GPT-5.5-Cyber to Help Defenders Patch Security Flaws
OpenAI releases GPT-5.5-Cyber under the Daybreak initiative, a specialized AI model designed to automate software vulnerability detection and patching.
Jun 23, 2026·3 min read
WhatsApp phishing attack uses fake business docs to hack PCs
A new WhatsApp phishing campaign uses fake business documents and VBScript to deploy malware, signaling a shift in social engineering tactics.
Jun 22, 2026·3 min read
JaredFromSubway MEV bot hacked in $15 million crypto theft
An analysis of the $15 million exploit of the notorious 'JaredFromSubway' MEV bot and what it means for the future of Ethereum's sandwich trading ecosystem.
Jun 22, 2026·3 min read
FFmpeg fixes PixelSmash flaw in widely used video decoder
FFmpeg patches 'PixelSmash,' a critical vulnerability threatening media servers like Jellyfin with remote code execution and denial-of-service attacks.
Jun 22, 2026·3 min read
FortiBleed campaign used custom FortiGate sniffer to steal credentials
An analysis of the FortiBleed campaign and its use of custom malware to exploit FortiGate vulnerabilities for credential theft and network espionage.
Jun 22, 2026·2 min read
Texas Parks & Wildlife Data Breach Affects 3 Million Individuals
A data breach at a third-party vendor has exposed the personal information of 3 million Texas Parks and Wildlife customers, highlighting supply chain risks.
Jun 22, 2026·3 min read
AryStinger botnet infected thousands of D-Link routers worldwide
Discovery of the AryStinger botnet highlights the persistent security risks of end-of-life IoT devices and the growing demand for residential proxies.
Jun 21, 2026·3 min read
New Prinz Eugen ransomware prioritizes recent files for encryption
New Prinz Eugen ransomware shifts tactics by prioritizing recent files and omitting ransom notes, signaling a more aggressive era of extortion.
Jun 20, 2026·3 min read
Microsoft links Mastra AI supply chain attack to North Korean hackers
Microsoft links the Mastra AI supply chain attack to North Korea's Sapphire Sleet. Learn how hackers used 140+ npm packages to target the AI sector.
Jun 20, 2026·3 min read

Hackers Exploit Gravity SMTP WordPress Plugin Bug to Expose API Keys
Hackers are targeting a vulnerability in the Gravity SMTP WordPress plugin to steal API keys, signaling a new era of supply chain risks for CMS users.
Jun 20, 2026·3 min read
French President Urges US to Share Cutting-Edge AI and Democracies to Cooperate on Regulation
French President Emmanuel Macron calls for transatlantic AI cooperation, urging the U.S. to share advanced AI models while seeking global regulatory alignment.
Jun 20, 2026·3 min read
Klue OAuth breach victim list grows as Icarus hackers claim attack
Klue confirms OAuth token theft by the Icarus group, exposing Salesforce data and highlighting critical vulnerabilities in third-party integrations.
Jun 19, 2026·3 min read
Hackers exploit info disclosure bug in Gravity SMTP WordPress plugin
Hackers are exploiting a critical information disclosure flaw in the Gravity SMTP WordPress plugin, exposing sensitive mail server credentials.
Jun 19, 2026·3 min read

Unpatchable 'usbliter8' Exploit Breaks Apple A12 and A13 SecureROM Boot Chain
The usbliter8 exploit creates an unpatchable vulnerability in Apple's A12 and A13 chips, marking a significant breach in iOS hardware security.
Jun 19, 2026·3 min read

The Gentlemen RaaS Uses GentleKiller EDR Framework Targeting 400 Security Processes
An editorial analysis of The Gentlemen RaaS and its GentleKiller framework, highlighting the escalation of defense-evasion tactics in ransomware.
Jun 19, 2026·3 min read
Texas govt data breach exposes over 3 million driver’s licenses
A massive data breach at a Texas Parks and Wildlife vendor exposes 3 million records, highlighting the growing cybersecurity risks of state-subcontracted system
Jun 19, 2026·2 min read

AutoJack Attack Lets One Web Page Hijack AI Agent for Host Code Execution
Microsoft researchers reveal AutoJack, an exploit chain allowing malicious websites to hijack AI agents and execute code on host systems via local services.
Jun 19, 2026·3 min read
In Other News: Apple Patches Beats Eavesdropping Flaw, DOT Closes Delta CrowdStrike Probe, AWS Continuum
An analysis of recent cybersecurity developments, including Apple’s Bluetooth fixes, persistent APT threats, and the conclusion of the Delta-CrowdStrike probe.
Jun 19, 2026·3 min read

Operation Endgame Disrupts SocGholish Servers, Cleans 14,971 WordPress Sites
International law enforcement's Operation Endgame strikes a major blow against SocGholish, remediating 15,000 WordPress sites and disrupting malware networks.
Jun 19, 2026·3 min read

CISA Warns Fortinet Customers as FortiBleed Hits 86,644 FortiGate Devices
CISA warns of FortiBleed, a massive cyberattack hitting over 86,000 Fortinet FortiGate devices. Explore the mechanics, Russian links, and industry impact.
Jun 19, 2026·3 min read
Splunk Enterprise Vulnerability Exploited in Attacks Days After Disclosure
Splunk faces critical RCE vulnerability CVE-2024-22513 with active exploitation, prompting urgent CISA warnings and mandatory federal patching.
Jun 19, 2026·3 min read
Gentlemen ransomware uses multiple EDR killers to disable defenses
Gentlemen ransomware-as-a-service is deploying sophisticated EDR-killer tools, signaling a new era of proactive defense neutralization in cybercrime.
Jun 18, 2026·3 min read

Novo Nordisk Breach Exposes Software Development Pipeline Risk
Novo Nordisk's GitHub token leak highlights the critical shift from secrets management as a tool to an identity-centric security challenge in DevOps.
Jun 18, 2026·3 min read

Operation Escaneo Signals Shift in LatAm Threat Landscape
Analysis of Operation Escaneo and the evolving cyber threat landscape in Latin America, focusing on the blend of espionage and cybercrime.
Jun 18, 2026·3 min read
Nintendo confirms data stolen in WebMD subsidiary cyberattack
Nintendo confirms data theft via a third-party TinyPulse breach, highlighting the growing supply chain risks for major gaming and tech corporations.
Jun 18, 2026·3 min read
Leak confirms OpenAI is testing a ChatGPT for Science subscription
OpenAI leaks reveal a 'ChatGPT for Science' tier, signaling a pivot toward specialized, high-accuracy AI models for research and technical discovery.
Jun 18, 2026·3 min read
Google to use UK and EU user IP addresses for ad personalization
Google signals a policy shift to use IP addresses for ad personalization in Europe from 2026, marking a significant pivot in its privacy strategy.
Jun 17, 2026·3 min read

INC Ransomware Thrives by Mastering the Basics
INC Ransomware’s rise highlights a shift toward high-pressure targets and operational efficiency over technical novelty in the cybercrime landscape.
Jun 17, 2026·3 min read

Crypto Clipper Campaign Abuses Fake Reviews, AI Narrators, and VirusTotal Comments
An editorial analysis of a sophisticated new crypto-clipping malware campaign using AI, paid media, and social engineering to target digital assets.
Jun 17, 2026·3 min read

Microsoft Confirms RoguePlanet Defender Zero-Day, Says Patch is in Development
Microsoft identifies RoguePlanet (CVE-2026-50656), a Defender zero-day allowing privilege escalation. Learn about the risks and the pending security update.
Jun 17, 2026·3 min read

Fileless Phantom Stealer Targets Browser Credentials
New malware 'Phantom Stealer' uses fileless execution and memory-resident techniques to bypass traditional antivirus while stealing browser credentials.
Jun 16, 2026·3 min read

Security Community Slams US Ban on Exporting Mythos, Fable
Cybersecurity experts challenge US export bans on Anthropic’s Mythos 5 and Fable 5 models, arguing the restrictions hinder global security collaboration.
Jun 16, 2026·3 min read
Malicious JetBrains Marketplace plugins steal AI API keys from developers
Cybercriminals are targeting developers through malicious JetBrains Marketplace plugins designed to steal OpenAI and Google AI API keys.
Jun 16, 2026·3 min read

SprySOCKS Windows Variant Abuses Kernel Drivers to Evade Detection
A new Windows variant of the SprySOCKS malware, linked to China-nexus group FishMonger, is targeting global governments using kernel-level driver abuses.
Jun 16, 2026·3 min read
New Rokarolla Android malware targets 217 banking, crypto apps
Discovery of Rokarolla, a sophisticated Android banking trojan, signals a new peak in mobile malware capabilities targeting financial and crypto apps.
Jun 16, 2026·3 min read
DOJ seizes CFAKE, SOCFAKE deepfake nude sites under TAKE IT DOWN Act
The DOJ's seizure of CFAKE and SOCFAKE marks a turning point in AI law enforcement, utilizing the TAKE IT DOWN Act to combat nonconsensual deepfake content.
Jun 15, 2026·3 min read
SimpleHelp bug lets hackers create rogue remote support accounts
A critical vulnerability in SimpleHelp remote management software allows attackers to bypass authentication and create rogue admin accounts via OIDC.
Jun 15, 2026·3 min read

Chinese Hackers Abused Google Workspace Rules to Steal Research and Defense Emails
Chinese espionage group exploits Google Workspace rules to exfiltrate defense and medical data from North American research institutions.
Jun 15, 2026·3 min read

North Korean Hackers Are Turning Developer Tools Into Malware Delivery Channels
North Korean hackers are exploiting developer workflows through fake job interviews and code reviews, signaling a shift in sophisticated social engineering.
Jun 15, 2026·3 min read

Copilot 'SearchLeak' Attack Allows 1-Click Data Theft
A deep dive into the 'SearchLeak' vulnerability in Microsoft Copilot, exploring the risks of prompt injection and the future of LLM security.
Jun 15, 2026·3 min read
FBI disrupts massive AI-powered phishing service using a million URLs
The FBI and tech partners dismantle Outsider Enterprise, a major AI-powered phishing operation targeting global users with high-fidelity fraudulent sites.
Jun 14, 2026·3 min read
Ex-school district employee jailed for hacks on former employer
An analysis of the sentencing of a former Iowa school district IT worker and what it reveals about the growing threat of insider cyberattacks in education.
Jun 13, 2026·3 min read
NPM 12 Will Change Script Execution Behavior to Prevent Supply Chain Attacks
NPM 12 introduces a critical security update by disabling automatic dependency scripts, a major shift aimed at curbing supply chain attacks in JavaScript.
Jun 13, 2026·3 min read
Chinese hackers hijack auth flow, spy on isolated network for a decade
An analysis of a decade-long espionage campaign by Chinese hackers who hijacked authentication flows to monitor isolated government networks.
Jun 13, 2026·3 min read

Critical Splunk Enterprise Flaw Lets Attackers Run Code Without Authentication
Splunk fixes a critical 9.8 CVSS vulnerability (CVE-2026-20253) affecting Enterprise versions, preventing unauthenticated remote code execution.
Jun 13, 2026·3 min read
US Gov asks Anthropic to ban 'foreign national' access to Fable, Mythos
The US government’s intervention in Anthropic’s model deployment signals a shift toward proactive, geopolitically motivated regulation of generative AI.
Jun 13, 2026·3 min read
Anthropic Says It Has Taken Its Latest AI Models Offline to Comply With New Export Controls
Anthropic suspends latest AI models to comply with Trump administration export controls, signaling a new era of AI trade policy and national security.
Jun 13, 2026·3 min read

U.S. Orders Anthropic to Suspend Fable 5 and Mythos 5 Access for Foreign Nationals
U.S. government mandates Anthropic disable access to Claude Fable 5 and Mythos 5 for foreign nationals, signaling a shift in AI export and security policy.
Jun 13, 2026·3 min read

ShinyHunters Uses Oracle Zero-Day to Rampage Higher Ed
An analysis of the Oracle zero-day vulnerability exploited by ShinyHunters, targeting higher education data and exposing enterprise risk in academia.
Jun 12, 2026·3 min read
Maine disables data breach notification portal after fake disclosures
Maine's data breach portal remains offline following a wave of fraudulent submissions, highlighting a new frontier in cyber-misinformation and regulatory risk.
Jun 12, 2026·3 min read

Over 400 Arch Linux AUR Packages Hijacked to Deploy Infostealer and eBPF Rootkit
Over 400 Arch Linux AUR packages were hijacked to deploy a Rust-based infostealer and eBPF rootkit, highlighting critical software supply chain risks.
Jun 12, 2026·3 min read

Google Sues Chinese Smishing Network Accused of Using Gemini AI in Phishing
Google sues a Chinese cybercrime ring for using Gemini AI to power a massive 'smishing' operation, marking a new front in the fight against AI-driven fraud.
Jun 12, 2026·3 min read
phpBB forum fixes auth bypass bug lurking for a decade
A decade-old authentication bypass vulnerability in phpBB highlights the persistent risks of legacy code and the challenges of securing open-source software.
Jun 12, 2026·3 min read

China-Linked Hackers Backdoored Linux Login Software to Hide for Nearly a Decade
Cybersecurity firm Sygnia reveals Velvet Ant, a China-linked group, backdoored Linux PAM and OpenSSH to maintain a decade-long persistent network presence.
Jun 12, 2026·3 min read
Ukrainian national pleads guilty to role in Conti ransomware operation
A Ukrainian national's guilty plea reveals the inner workings of the Conti ransomware syndicate and the escalating U.S. legal offensive against cybercrime.
Jun 12, 2026·3 min read

Phishing Attack Volume Down 20%, but Risk Still Rising
Phishing volume has dropped 20%, but AI-driven sophistication is making attacks more dangerous than ever. Explore why quality now trumps quantity in cybercrime.
Jun 12, 2026·3 min read
Japanese energy firm loses drive with data of 10.9 million clients
Kyushu Electric Power reports a massive data loss involving 10.9 million customers, highlighting the critical risks of physical media in the digital age.
Jun 11, 2026·3 min read
Maine breach portal abused to publish fake data breach disclosures
Hackers exploit Maine’s public breach portal to spread misinformation, highlighting a critical flaw in regulatory transparency and corporate security.
Jun 11, 2026·3 min read

ShinyHunters Exploits Oracle PeopleSoft Zero-Day (CVE-2026-35273) to Breach Universities
Analysis of the recent Oracle PeopleSoft zero-day exploit by ShinyHunters (UNC6240) targeting higher education institutions and enterprise systems.
Jun 11, 2026·3 min read
Oracle mitigates PeopleSoft zero-day exploited in data theft attacks
Oracle fixes a critical PeopleSoft zero-day exploited by ShinyHunters. Analyze the mechanics of CVE-2026-35273 and the security risks for enterprise data.
Jun 11, 2026·3 min read

Chinese, N. Korean Threat Groups Build on Asia-Pacific Success
An analysis of how Chinese and North Korean cyber operations are evolving into sophisticated economic engines, reshaping Asia-Pacific security dynamics.
Jun 11, 2026·3 min read
Path traversal flaw in AI dev platform Langflow exploited in attacks
Hackers are exploiting a critical path traversal vulnerability (CVE-2024-5027) in Langflow, highlighting fresh risks in AI development environments.
Jun 10, 2026·3 min read

CISA Rewrites Federal Patching Requirements for AI Threat Era
CISA updates federal vulnerability management directives, mandating 72-hour patching for critical flaws to combat AI-powered cyber threats.
Jun 10, 2026·3 min read
The ‘Miasma’ worm source code briefly leaked on GitHub
The brief exposure of the 'Miasma' worm source code highlights the evolving danger of automated credential harvesting in open-source ecosystems.
Jun 10, 2026·3 min read

Bug Bounty Research Triggers ServiceNow Security Alert
ServiceNow's recent security patching reveals the complexities of bug bounty research and the systemic risks of misconfigured SaaS platforms.
Jun 10, 2026·3 min read

Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS
Six ‘Proto6’ vulnerabilities in the protobuf.js library expose Node.js applications to RCE and DoS risks, highlighting risks in schema parsing.
Jun 10, 2026·3 min read
Anthropic rolls out Claude Fable 5, but it's available for a limited time
Anthropic releases 'Claude Fable 5,' a limited-time experimental model designed to test high-level reasoning and nuanced long-form content generation.
Jun 10, 2026·3 min read
Microsoft Defender 'RoguePlanet' zero-day grants SYSTEM privileges
A new Microsoft Defender zero-day exploit, RoguePlanet, bypasses recent patches to grant SYSTEM privileges, raising major cybersecurity concerns.
Jun 9, 2026·3 min read
A Record-Breaking Patch Tuesday for June 2026
Microsoft's June 2026 Patch Tuesday sets a record with 200 security fixes, signaling a shift in cyber defense and the rising tide of AI-driven vulnerabilities.
Jun 9, 2026·3 min read

Blame AI: Patch Tuesday Hits Record 206 CVEs
Microsoft’s largest Patch Tuesday in history underscores how AI is accelerating software vulnerability discovery and reshaping cybersecurity defense.
Jun 9, 2026·3 min read
NFCShare Android malware spreads via fake banking app updates on GitHub
A new wave of NFCShare Android malware on GitHub targets bank accounts by mimicking legitimate updates to steal financial data via NFC protocols.
Jun 8, 2026·2 min read
SoFi confirms third-party data breach at Hong Kong subsidiary
SoFi Hong Kong reports a data breach via a third-party vendor, highlighting the precarious nature of supply chain security in the global fintech sector.
Jun 8, 2026·3 min read
New Apple feature automatically changes your compromised passwords
Apple introduces an AI-driven security feature in iOS 27 that automatically rotates compromised passwords, signaling a shift in proactive digital defense.
Jun 8, 2026·3 min read

Silent Ransom Group Hits US Law Firms in Escalating Extortion Attacks
Silent Ransom Group is targeting US law firms through a dangerous blend of vishing, IT impersonation, and physical office breaches.
Jun 8, 2026·3 min read
New Shai-Hulud attack trojanizes 19 science-focused PyPI packages
A new supply-chain attack dubbed 'Shai-Hulud' has compromised 19 science-focused PyPI packages, targeting developers to steal sensitive credentials and data.
Jun 8, 2026·3 min read
Hands on with Intelligent Terminal, an AI-powered Windows Terminal
Microsoft's Intelligent Terminal integrates local and cloud AI into the command line, revolutionizing developer workflows and command-line interfaces.
Jun 7, 2026·3 min read
C0XMO botnet spreads via DD-WRT router flaw, kills rival malware
The new C0XMO botnet targets DD-WRT firmware, utilizing architectural flexibility and aggressive rival-killing tactics to dominate the IoT landscape.
Jun 7, 2026·3 min read
Silent Ransom Group targets law firms with fake IT support calls
Silent Ransom Group targets US law firms using sophisticated vishing attacks to bypass traditional security and exfiltrate data within hours.
Jun 7, 2026·3 min read
Emphere Raises $2.1 Million for AI-Powered Vulnerability Remediation
Emphere’s $2.1M pre-seed round signals a shift from AI vulnerability detection to automated remediation, aiming to bridge the gap between Dev and Sec.
Jun 7, 2026·3 min read
Critical Everest Forms Pro flaw exploited to take over WordPress sites
A critical zero-day in Everest Forms Pro allows remote code execution on WordPress sites, sparking a race between attackers and site administrators.
Jun 6, 2026·3 min read

New ChatGPT Lockdown Mode Limits Tools That Could Enable Data Exfiltration
OpenAI introduces ChatGPT Lockdown Mode to combat prompt injection and data exfiltration, signaling a new era of proactive security for generative AI.
Jun 6, 2026·3 min read
Opal Security Raises $23 Million for AI-Native Identity Governance
Opal Security secures $23M in Series B funding to scale its AI-native identity governance platform, aiming to modernize a $15B market dominated by legacy tech.
Jun 6, 2026·3 min read

Free Apps Are Quietly Turning Smart TVs Into Web-Scraping Proxies for AI
Free smart TV apps are being used as residential proxies for AI web scraping, turning home devices into exit nodes for Bright Data’s massive proxy network.
Jun 6, 2026·3 min read

CISA Adds Actively Exploited SolarWinds Serv-U DoS Flaw to KEV Catalog
CISA adds SolarWinds Serv-U DoS flaw (CVE-2024-28995/28318) to its KEV catalog, signaling active exploitation and a shift in federal security priorities.
Jun 6, 2026·3 min read

AI Agent Uncovers 21 Zero-Days in FFmpeg; Chrome Patches Record 429 Bugs
An AI security agent has uncovered 21 zero-day vulnerabilities in FFmpeg, signaling a shift in how codebase vulnerabilities are detected and remediated.
Jun 6, 2026·3 min read

Cisco Catalyst SD-WAN Manager CVE-2026-20245 Flaw Actively Exploited – No Patch Available
Cisco warns of active exploitation for CVE-2026-20245 in Catalyst SD-WAN Manager. Learn about the zero-day threat and the lack of an immediate patch.
Jun 6, 2026·3 min read
Suspicious Polyfill login prompts pop up on Toshiba, Muji websites
Toshiba and Muji report credential-harvesting pop-ups following the Polyfill.io supply chain attack, highlighting the risks of third-party JS dependencies.
Jun 5, 2026·3 min read
CISA: Hackers now exploit SolarWinds Serv-U flaw to crash servers
CISA warns of active exploitation of a SolarWinds Serv-U vulnerability (CVE-2024-28995) allowing attackers to crash servers via directory traversal.
Jun 5, 2026·3 min read

Exposed Fuel Tank Gauges Under Attack in the US
Hackers are targeting exposed automated tank gauges in US gas stations, highlighting critical vulnerabilities in industrial control systems and aging infrastruc
Jun 5, 2026·3 min read
Chinese APT deploys new malware to keep access to hacked networks
Analysis of the UNC5221 threat group’s use of new backdoors like Brickstorm and Plenet to maintain long-term persistence in Microsoft 365 environments.
Jun 5, 2026·3 min read

Rust-Written IronWorm Hits NPM Supply Chain
The Rust-based IronWorm malware campaign targets the NPM ecosystem, marking a sophisticated shift in automated software supply chain attacks.
Jun 4, 2026·3 min read
Brave Software releases Origin for a paid, bloat-free browsing experience
Brave Origin launches as a paid, minimalist browser, stripping out AI and crypto features to prioritize performance and digital minimalism.
Jun 4, 2026·3 min read
Hola Browser for Windows compromised to deliver cryptominer
A supply chain attack on the Hola Browser for Windows delivers unauthorized cryptominers, highlighting persistent risks in free VPN-based software ecosystems.
Jun 4, 2026·3 min read

China's TA4922 Expands Cybercrime Attacks Globally
China-linked threat actor TA4922 is expanding its cybercrime operations globally, shifting from regional targets to a broad, financially motivated footprint.
Jun 4, 2026·3 min read

4 Critical Threats Where Attackers Have the Advantage
Gartner warns of a shifting cybersecurity landscape where deepfakes and prompt injection give attackers a tactical edge over traditional defenses.
Jun 4, 2026·2 min read