Cyber Security
California AG Sues 23andMe Successor Over 2023 Genetic Data Breach
Gogs CVSS 9.4 RCE Zero-Day Has No Patch and a Metasploit Module
Dutch Police Seize 200+ Servers in 17-Million-Device Botnet Takedown
Russia Sends Submarines to Survey UK Undersea Internet Cables
Dashlane Suspends Accounts After Multi-Country Brute-Force Campaign
Western Officials Warn Russia Steals Tech Via Shell Firms and Hacks
Public Exploit Raises Flowise CVE-2026-40933 RCE to Immediate Risk
CIFSwitch Linux Kernel Flaw Gets Public PoC, Root Access Possible
PAN-OS CVE-2026-0257 Exploited Just 4 Days After Public Disclosure
Dutch Police Seize 200+ Servers in 17-Million-Device Botnet Takedown
Gogs CVSS 9.4 RCE Zero-Day Has No Patch and a Metasploit Module
California AG Sues 23andMe Successor Over 2023 Genetic Data Breach
LLMShare Campaign Hosts Infostealer Downloads on ChatGPT’s Own Domain
NC Man Gets 121 Months for Selling Elderly Americans’ Data to Scammers
Microsoft: 14 npm Packages Linked to Single Actor Stealing AWS Keys
Play Ransomware Lists MyPillow, US Telecom in Six-Victim Batch
Incransom Hits Illinois Health Center and Manufacturer
Nova Ransomware Lists Russian Oil Firm Eriell in May 26 Batch
Incransom Claims Meirc Breach, Threatens to Leak 1TB of Client Data
DragonForce Lists Indiana Greenhouse Firm Heartland Growers
Nova Ransomware Hits Brazilian Government Agency and Turkish Tech Firm
Qilin Ransomware Batch-Lists 7 Victims Across Five Countries
Nightspire Ransomware Hits US Healthcare in Nine-Victim Batch
Ghost CMS CVE-2026-26980 Exploited in ClickFix Campaign
Laravel Lang Supply Chain Attack Hijacks 700 Package Versions
Underminr Flaw Lets Attackers Hide C2 Traffic on 88M Domains
Anthropic’s Project Glasswing Finds 10,000+ CVEs in One Month
LiteSpeed cPanel Plugin CVE-2026-48172 CVSS 10.0 Exploited
ShinyHunters Claims 42M Charter Records, Sets May 27 Deadline
Netherlands Seizes 800 Stark Industries Servers, Arrests Two
Application Security
Microsoft: 14 npm Packages Linked to Single Actor Stealing AWS Keys
Microsoft attributed 14 malicious npm packages impersonating OpenSearch and Elasticsearch to a single threat actor who stole AWS credentials and CI/CD secrets from developer environments.
Cybersecurity
NC Man Gets 121 Months for Selling Elderly Americans’ Data to Scammers
Troy Murray, 57, of North Carolina was sentenced to 121 months in prison and ordered to forfeit $5.2 million for selling elderly Americans' data to ...
Cybersecurity
LLMShare Campaign Hosts Infostealer Downloads on ChatGPT’s Own Domain
LLMShare, discovered by Push Security, abuses ChatGPT's share links on chatgpt.com to host fake outage pages that deliver infostealer malware to Windows and macOS users.
Cybersecurity
California AG Sues 23andMe Successor Over 2023 Genetic Data Breach
California AG Rob Bonta sued Chrome Holding Co., 23andMe's successor after bankruptcy, over the 2023 breach exposing genetic health data for millions of users.
Application Security
Gogs CVSS 9.4 RCE Zero-Day Has No Patch and a Metasploit Module
A CVSS 9.4 argument injection zero-day in Gogs lets any authenticated user achieve RCE on internet-exposed servers. No patch exists and Rapid7 has released a ...
Cybersecurity
Dutch Police Seize 200+ Servers in 17-Million-Device Botnet Takedown
Dutch law enforcement dismantled a botnet of 17 million compromised devices by seizing over 200 command-and-control servers in a major coordinated takedown with hosting provider ...
Cybersecurity
Russia Sends Submarines to Survey UK Undersea Internet Cables
UK officials confirmed Russian submarines are surveying critical undersea cables, prompting Royal Navy deployment and emergency legislation to protect national communications infrastructure.
Cybersecurity
Dashlane Suspends Accounts After Multi-Country Brute-Force Campaign
Dashlane temporarily suspended customer accounts after detecting coordinated brute-force login attempts originating from multiple countries simultaneously targeting its login infrastructure.
Cybersecurity
Western Officials Warn Russia Steals Tech Via Shell Firms and Hacks
Western intelligence officials issued a coordinated warning that Russian state actors are using shell companies, false recruiters, and cyber operations to steal sanctioned technology.
Application Security
Public Exploit Raises Flowise CVE-2026-40933 RCE to Immediate Risk
Public exploit code for CVE-2026-40933 now targets Flowise, a self-hosted AI chatflow builder, via a one-click malicious import that executes arbitrary code on the server.
Application Security
CIFSwitch Linux Kernel Flaw Gets Public PoC, Root Access Possible
CIFSwitch is a 19-year-old Linux kernel privilege escalation flaw with a public PoC that enables root access on Ubuntu, RHEL, Debian, and other distributions.
Cybersecurity
PAN-OS CVE-2026-0257 Exploited Just 4 Days After Public Disclosure
CVE-2026-0257, a PAN-OS GlobalProtect authentication bypass, saw active exploitation begin just four days after public disclosure, with attacks ongoing for weeks.
Cybersecurity
Dutch Police Seize 200+ Servers in 17-Million-Device Botnet Takedown
Dutch law enforcement dismantled a botnet of 17 million compromised devices by seizing over 200 command-and-control servers in a major coordinated takedown with hosting provider ...
Application Security
Gogs CVSS 9.4 RCE Zero-Day Has No Patch and a Metasploit Module
A CVSS 9.4 argument injection zero-day in Gogs lets any authenticated user achieve RCE on internet-exposed servers. No patch exists and Rapid7 has released a ...
Cybersecurity
California AG Sues 23andMe Successor Over 2023 Genetic Data Breach
California AG Rob Bonta sued Chrome Holding Co., 23andMe's successor after bankruptcy, over the 2023 breach exposing genetic health data for millions of users.
Cybersecurity
LLMShare Campaign Hosts Infostealer Downloads on ChatGPT’s Own Domain
LLMShare, discovered by Push Security, abuses ChatGPT's share links on chatgpt.com to host fake outage pages that deliver infostealer malware to Windows and macOS users.
Cybersecurity
NC Man Gets 121 Months for Selling Elderly Americans’ Data to Scammers
Troy Murray, 57, of North Carolina was sentenced to 121 months in prison and ordered to forfeit $5.2 million for selling elderly Americans' data to ...
Application Security
Microsoft: 14 npm Packages Linked to Single Actor Stealing AWS Keys
Microsoft attributed 14 malicious npm packages impersonating OpenSearch and Elasticsearch to a single threat actor who stole AWS credentials and CI/CD secrets from developer environments.
Cybersecurity
Play Ransomware Lists MyPillow, US Telecom in Six-Victim Batch
Play ransomware listed six victims on May 25, led by consumer brand MyPillow and a US telecom provider, in a multi-sector batch spanning four countries.
Cybersecurity
Incransom Hits Illinois Health Center and Manufacturer
Incransom claimed two US victims on May 25 — Open Door Health Center in Illinois and manufacturer PILLER AIMMCO — part of a three-victim, 48-hour ...
Cybersecurity
Play Ransomware Lists MyPillow, US Telecom in Six-Victim Batch
Cybersecurity
Incransom Hits Illinois Health Center and Manufacturer

TOP CYBERSECURITY HEADLINES

This Week’s Security Spotlight

Application Security
Anthropic’s Project Glasswing Finds 10,000+ CVEs in One Month
Application Security
Trump Mobile Exposes 27,000 Customer Records via Insecure API
CVE Vulnerability Alerts
Cisco Secure Workload CVE-2026-20223 Earns CVSS 10.0
Cybersecurity
NYC Health + Hospitals Breach Exposes 1.8M Patients’ Fingerprints
Trending

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Featured Videos​

  • All
  • Application Security
  • Blog
  • CVE Vulnerability Alerts
  • Cybersecurity
  • Cybersecurity Newsletter
  • Data Security
  • Endpoint Security
  • Identity and Access Management
  • Information Security
  • Network Security
  • News
  • Phishing
  • Podcasts
  • Product Reviews
  • Ransomware
  • Ransomware Victims
  • Resources
  • Security Spotlight
  • Sponsored
  • Threat Actors
  • Threat Actors
  • Threat Detection Tools
California AG Sues 23andMe Successor Over 2023 Genetic Data Breach
California AG Rob Bonta sued Chrome Holding Co., 23andMe's successor after bankruptcy, over the 2023 breach exposing genetic health data for millions of users.
Gogs CVSS 9.4 RCE Zero-Day Has No Patch and a Metasploit Module
A CVSS 9.4 argument injection zero-day in Gogs lets any authenticated user achieve RCE on internet-exposed servers. No patch exists and Rapid7 has released a ...
Dutch Police Seize 200+ Servers in 17-Million-Device Botnet Takedown
Dutch law enforcement dismantled a botnet of 17 million compromised devices by seizing over 200 command-and-control servers in a major coordinated takedown with hosting provider ...
Russia Sends Submarines to Survey UK Undersea Internet Cables
UK officials confirmed Russian submarines are surveying critical undersea cables, prompting Royal Navy deployment and emergency legislation to protect national communications infrastructure.
Dashlane Suspends Accounts After Multi-Country Brute-Force Campaign
Dashlane temporarily suspended customer accounts after detecting coordinated brute-force login attempts originating from multiple countries simultaneously targeting its login infrastructure.
Western Officials Warn Russia Steals Tech Via Shell Firms and Hacks
Western intelligence officials issued a coordinated warning that Russian state actors are using shell companies, false recruiters, and cyber operations to steal sanctioned technology.
Public Exploit Raises Flowise CVE-2026-40933 RCE to Immediate Risk
Public exploit code for CVE-2026-40933 now targets Flowise, a self-hosted AI chatflow builder, via a one-click malicious import that executes arbitrary code on the server.
CIFSwitch Linux Kernel Flaw Gets Public PoC, Root Access Possible
CIFSwitch is a 19-year-old Linux kernel privilege escalation flaw with a public PoC that enables root access on Ubuntu, RHEL, Debian, and other distributions.
PAN-OS CVE-2026-0257 Exploited Just 4 Days After Public Disclosure
CVE-2026-0257, a PAN-OS GlobalProtect authentication bypass, saw active exploitation begin just four days after public disclosure, with attacks ongoing for weeks.
Dutch Police Seize 200+ Servers in 17-Million-Device Botnet Takedown
Dutch law enforcement dismantled a botnet of 17 million compromised devices by seizing over 200 command-and-control servers in a major coordinated takedown with hosting provider ...
Gogs CVSS 9.4 RCE Zero-Day Has No Patch and a Metasploit Module
A CVSS 9.4 argument injection zero-day in Gogs lets any authenticated user achieve RCE on internet-exposed servers. No patch exists and Rapid7 has released a ...
California AG Sues 23andMe Successor Over 2023 Genetic Data Breach
California AG Rob Bonta sued Chrome Holding Co., 23andMe's successor after bankruptcy, over the 2023 breach exposing genetic health data for millions of users.
LLMShare Campaign Hosts Infostealer Downloads on ChatGPT’s Own Domain
LLMShare, discovered by Push Security, abuses ChatGPT's share links on chatgpt.com to host fake outage pages that deliver infostealer malware to Windows and macOS users.
NC Man Gets 121 Months for Selling Elderly Americans’ Data to Scammers
Troy Murray, 57, of North Carolina was sentenced to 121 months in prison and ordered to forfeit $5.2 million for selling elderly Americans' data to ...
Microsoft: 14 npm Packages Linked to Single Actor Stealing AWS Keys
Microsoft attributed 14 malicious npm packages impersonating OpenSearch and Elasticsearch to a single threat actor who stole AWS credentials and CI/CD secrets from developer environments.
Play Ransomware Lists MyPillow, US Telecom in Six-Victim Batch
Play ransomware listed six victims on May 25, led by consumer brand MyPillow and a US telecom provider, in a multi-sector batch spanning four countries.
Incransom Hits Illinois Health Center and Manufacturer
Incransom claimed two US victims on May 25 — Open Door Health Center in Illinois and manufacturer PILLER AIMMCO — part of a three-victim, 48-hour ...
Nova Ransomware Lists Russian Oil Firm Eriell in May 26 Batch
Nova ransomware posted Russian oil firm Eriell and tech company sandox info on May 26, continuing a five-victim, five-day burst spanning four world regions.
Incransom Claims Meirc Breach, Threatens to Leak 1TB of Client Data
Incransom has claimed a full-network breach of Meirc Training & Consulting on May 25, threatening to publish 1TB of employee and client data within one ...
DragonForce Lists Indiana Greenhouse Firm Heartland Growers
DragonForce ransomware listed Indiana wholesale greenhouse firm Heartland Growers on its dark web leak site amid escalating agricultural sector targeting.