Main Menu
Cyber Security
RoguePilot Vulnerability in GitHub Codespaces Has Been Patched by Microsoft
Broadcom Releases Patches for VMware Aria Operations Vulnerabilities
Cryptojacking Campaign Exploits Pirated Software to Deploy XMRig Miner
Arkanix Stealer Malware Quickly Vanishes After Its Initial Launch
Microsoft Investigates Vanishing Mouse Pointer Bug in Classic Outlook
GitHub’s Dependabot is Under Fire for Alert Accuracy Issues
BeyondTrust RS and PRA Vulnerability Is Being Actively Exploited by Threat Actors
Microsoft Expands Data Loss Prevention Controls for Microsoft 365 Copilot
New Security Concerns Arise with the Proliferation of Internal LLMs
Cybercriminal Group Exploits Hundreds of FortiGate Firewalls Using Off-the-Shelf AI Tools
Ring Bets $10,000 That Nobody Can Hack Its Local Streaming Feature
Romanian Hacker Admits to Selling Oregon State Network Access in Court
Privacy Groups Demand Compliance From Generative AI Image Creators
Spanish Hacker Arrested for Booking Luxury Hotel Rooms for One Cent
Anthropic Introduces Claude Code Security for Vulnerability Detection
PayPal Data Breach Exposed User Data for Six Months Due to Software Bug
Critical Grandstream Phone Vulnerability Allows for Eavesdropping Opportunities
Ukrainian National Sentenced in US Federal Court for Aiding North Korean IT Fraud
Deutsche Bahn Hit by a Large-Scale DDoS Attack Disrupting Rail Services
Snyk CEO Steps Down to Make Way for AI-Focused Leadership
Advantest Cyberattack Sparks Fears of Employee and Client Data Exposure
PromptSpy Android Malware Abuses Gemini AI at Runtime for Persistence
Former Google Engineers Indicted for Alleged Trade Secret Theft Linked to Iran
Operation Red Card 2.0 Dismantles Online Scam Networks Across Africa
MIT CSAIL’s 2025 AI Agent Index Puts System Transparency Under the Microscope
FBI Issues Warning on Escalating ATM Jackpotting Losses
Microsoft Addresses High-Severity Flaw in Windows Admin Center
Android Malware Uses Generative AI to Boost Its Post-Installation Capabilities
OpenClaw Security Issues Persist as SecureClaw Open Source Tool Debuts
African Operation Leads to 651 Fraud Arrests and $4.3M Recovery
'Sandworm_Mode' Supply Chain Attack Hits the NPM Ecosystem
Cybersecurity
‘Sandworm_Mode’ Supply Chain Attack Hits the NPM Ecosystem
Mitchell Langley February 25, 2026
Analysis of the Sandworm_Mode supply chain attack impacting NPM.
ICO Fines Reddit £14.47 Million for Failing to Protect Children's Data
Cybersecurity
ICO Fines Reddit £14.47 Million for Failing to Protect Children’s Data
Gabby Lee February 25, 2026
The ICO has fined Reddit for collecting data on children under 13 without adequate safety measures in place.
ShinyHunters Leak Exposes Millions of CarGurus User Records
Cybersecurity
ShinyHunters Leak Exposes Millions of CarGurus User Records
Gabby Lee February 25, 2026
ShinyHunters have exposed over 12 million records reportedly taken from CarGurus, an automotive digital platform.
RoguePilot Vulnerability in GitHub Codespaces Has Been Patched by Microsoft
Cybersecurity
RoguePilot Vulnerability in GitHub Codespaces Has Been Patched by Microsoft
Mitchell Langley February 25, 2026
A vulnerability called RoguePilot in GitHub Codespaces risked repository control.
Broadcom Releases Patches for VMware Aria Operations Vulnerabilities
Cybersecurity
Broadcom Releases Patches for VMware Aria Operations Vulnerabilities
Andrew Doyle February 25, 2026
Broadcom addresses critical VMware Aria Operations vulnerabilities; users urged to update.
Lazarus Group Expands Its Ransomware Arsenal with Medusa
News
Lazarus Group Expands Its Ransomware Arsenal with Medusa
Andrew Doyle February 25, 2026
North Korea's Lazarus Group deploys Medusa ransomware against critical sectors, targeting US healthcare.
Optimizely Suffers a Data Breach Through a Voice Phishing Attack
News
Optimizely Suffers a Data Breach Through a Voice Phishing Attack
Andrew Doyle February 25, 2026
Optimizely has reported a data breach caused by a voice phishing attack, compromising customer data.
Cryptojacking Campaign Exploits Pirated Software to Deploy XMRig Miner
Application Security
Cryptojacking Campaign Exploits Pirated Software to Deploy XMRig Miner
Gabby Lee February 25, 2026
New cryptojacking campaign uses pirated software to deliver XMRig miner payloads onto hosts.
Arkanix Stealer Malware Quickly Vanishes After Its Initial Launch
Cybersecurity
Arkanix Stealer Malware Quickly Vanishes After Its Initial Launch
Mitchell Langley February 25, 2026
The newly launched Arkanix Stealer malware vanished shortly after targeting sensitive system and browser data.
Microsoft Investigates Vanishing Mouse Pointer Bug in Classic Outlook
Application Security
Microsoft Investigates Vanishing Mouse Pointer Bug in Classic Outlook
Mitchell Langley February 25, 2026
Microsoft investigates an issue causing Outlook's mouse pointer to disappear for some users.
GitHub's Dependabot is Under Fire for Alert Accuracy Issues
Application Security
GitHub’s Dependabot is Under Fire for Alert Accuracy Issues
Gabby Lee February 25, 2026
A Go library maintainer questions the effectiveness of GitHub's Dependabot due to alert fatigue from inaccurate dependency-scanning alerts.
BeyondTrust RS and PRA Vulnerability Is Being Actively Exploited by Threat Actors
Cybersecurity
BeyondTrust RS and PRA Vulnerability Is Being Actively Exploited by Threat Actors
Gabby Lee February 25, 2026
Attackers exploit CVE-2026-1731 in BeyondTrust RS and PRA, leveraging VShell for persistence, lateral movement, and system control.
Microsoft Expands Data Loss Prevention Controls for Microsoft 365 Copilot
Cybersecurity
Microsoft Expands Data Loss Prevention Controls for Microsoft 365 Copilot
Andrew Doyle February 25, 2026
Microsoft expands data loss prevention (DLP) controls to block Microsoft 365 Copilot from accessing and processing confidential Word, Excel, and Power...
New Security Concerns Arise with the Proliferation of Internal LLMs
Cybersecurity
New Security Concerns Arise with the Proliferation of Internal LLMs
Mitchell Langley February 25, 2026
As organizations implement LLMs, security concerns shift to the infrastructure.
Cybercriminal Group Exploits Hundreds of FortiGate Firewalls Using Off-the-Shelf AI Tools
Application Security
Cybercriminal Group Exploits Hundreds of FortiGate Firewalls Using Off-the-Shelf AI Tools
Gabby Lee February 24, 2026
A cybercrime group used off-the-shelf AI tools to target FortiGate firewalls in 55 countries.
Ring Bets $10,000 That Nobody Can Hack Its Local Streaming Feature
Cybersecurity
Ring Bets $10,000 That Nobody Can Hack Its Local Streaming Feature
Andrew Doyle February 24, 2026
Ring offers $10,000 for finding security flaws in its new local streaming feature. The company's goal is to limit video access to device owners' trust...
Romanian Hacker Admits to Selling Oregon State Network Access in Court
Cybersecurity
Romanian Hacker Admits to Selling Oregon State Network Access in Court
Mitchell Langley February 23, 2026
A Romanian hacker pleads guilty to selling digital access to a US state office network.
Privacy Groups Demand Compliance From Generative AI Image Creators
Cybersecurity
Privacy Groups Demand Compliance From Generative AI Image Creators
Gabby Lee February 23, 2026
Privacy watchdogs insist generative AI makers adhere to data protection laws.
Spanish Hacker Arrested for Booking Luxury Hotel Rooms for One Cent
Cybersecurity
Spanish Hacker Arrested for Booking Luxury Hotel Rooms for One Cent
Andrew Doyle February 23, 2026
Spanish police apprehended a hacker for booking luxury rooms for €0.01 each through an exploited payment system.
Anthropic Introduces Claude Code Security for Vulnerability Detection
Application Security
Anthropic Introduces Claude Code Security for Vulnerability Detection
Mitchell Langley February 23, 2026
Anthropic's new feature scans code for vulnerabilities, suggesting targeted patches.
'Sandworm_Mode' Supply Chain Attack Hits the NPM Ecosystem
Cybersecurity
‘Sandworm_Mode’ Supply Chain Attack Hits the NPM Ecosystem
Mitchell Langley February 25, 2026
ICO Fines Reddit £14.47 Million for Failing to Protect Children's Data
Cybersecurity
ICO Fines Reddit £14.47 Million for Failing to Protect Children’s Data
Gabby Lee February 25, 2026
Lazarus Group Expands Its Ransomware Arsenal with Medusa
News
Lazarus Group Expands Its Ransomware Arsenal with Medusa
Andrew Doyle February 25, 2026
Polish Authorities Detain Suspected Phobos Ransomware Operative
News
Polish Authorities Detain Suspected Phobos Ransomware Operative
Andrew Doyle February 18, 2026

TOP CYBERSECURITY HEADLINES

ShinyHunters Leak Exposes Millions of CarGurus User Records
Cybersecurity
ShinyHunters Leak Exposes Millions of CarGurus User Records
RoguePilot Vulnerability in GitHub Codespaces Has Been Patched by Microsoft
Cybersecurity
RoguePilot Vulnerability in GitHub Codespaces Has Been Patched by Microsoft
Lazarus Group Expands Its Ransomware Arsenal with Medusa
News
Lazarus Group Expands Its Ransomware Arsenal with Medusa
Optimizely Suffers a Data Breach Through a Voice Phishing Attack
News
Optimizely Suffers a Data Breach Through a Voice Phishing Attack

This Week’s Security Spotlight

OpenClaw Security Issues Persist as SecureClaw Open Source Tool Debuts
Cybersecurity
OpenClaw Security Issues Persist as SecureClaw Open Source Tool Debuts
Andrew Doyle February 19, 2026
CISA Faces Challenges With Limited Resources Amid DHS Shutdown
Cybersecurity
CISA Faces Challenges With Limited Resources Amid DHS Shutdown
Andrew Doyle February 17, 2026
Revelations from Epstein Files Allegations of a Personal Hacker
Cybersecurity
Revelations from Epstein Files: Allegations of a “Personal Hacker”
Andrew Doyle February 4, 2026
Nike Investigates Breach as Hackers Threaten Data Disclosure
Cybersecurity
Nike Investigates Breach as Hackers Threaten Data Disclosure
Andrew Doyle January 28, 2026
More In News
Trending
Dutch Police Arrest Suspect in JokerOTP Phishing Tool Operation
Trezor and Ledger Crypto Wallets Targeted by Mail Scam
Global Cloud Storage Scam Emails Threaten Users With False Data Deletion Alerts
Targeted Vishing Attacks Amplify ShinyHunters’s SaaS Data Breaches

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Featured Videos​

Podcasts

Podcasts
Palo Alto Networks Uncovers 194,000-Domain Smishing Campaign Linked to “Smishing Triad”
October 28, 2025
Podcasts
Coveware Reports Historic Drop in Ransomware Payments: Only 23% of Victims Paid in Q3 2025
October 28, 2025
Podcasts
Firefox Add-Ons Must Declare Data Collection—or Be Rejected
October 28, 2025

Cyber Security News

'Sandworm_Mode' Supply Chain Attack Hits the NPM Ecosystem
Cybersecurity
‘Sandworm_Mode’ Supply Chain Attack Hits the NPM Ecosystem
February 25, 2026
ICO Fines Reddit £14.47 Million for Failing to Protect Children's Data
Cybersecurity
ICO Fines Reddit £14.47 Million for Failing to Protect Children’s Data
February 25, 2026
ShinyHunters Leak Exposes Millions of CarGurus User Records
Cybersecurity
ShinyHunters Leak Exposes Millions of CarGurus User Records
February 25, 2026
RoguePilot Vulnerability in GitHub Codespaces Has Been Patched by Microsoft
Cybersecurity
RoguePilot Vulnerability in GitHub Codespaces Has Been Patched by Microsoft
February 25, 2026
Broadcom Releases Patches for VMware Aria Operations Vulnerabilities
Cybersecurity
Broadcom Releases Patches for VMware Aria Operations Vulnerabilities
February 25, 2026
Cryptojacking Campaign Exploits Pirated Software to Deploy XMRig Miner
Application Security
Cryptojacking Campaign Exploits Pirated Software to Deploy XMRig Miner
February 25, 2026
  • All
  • Application Security
  • Blog
  • CVE Vulnerability Alerts
  • Cybersecurity
  • Cybersecurity Newsletter
  • Data Security
  • Endpoint Security
  • Identity and Access Management
  • Information Security
  • Network Security
  • News
  • Phishing
  • Podcasts
  • Product Reviews
  • Ransomware
  • Ransomware Victims
  • Resources
  • Security Spotlight
  • Sponsored
  • Threat Actors
  • Threat Actors
  • Threat Detection Tools
RoguePilot Vulnerability in GitHub Codespaces Has Been Patched by Microsoft
February 25, 2026
A vulnerability called RoguePilot in GitHub Codespaces risked repository control.
ShinyHunters Leak Exposes Millions of CarGurus User Records
February 25, 2026
ShinyHunters have exposed over 12 million records reportedly taken from CarGurus, an automotive digital platform.
Lazarus Group Expands Its Ransomware Arsenal with Medusa
February 25, 2026
North Korea's Lazarus Group deploys Medusa ransomware against critical sectors, targeting US healthcare.
Optimizely Suffers a Data Breach Through a Voice Phishing Attack
February 25, 2026
Optimizely has reported a data breach caused by a voice phishing attack, compromising customer data.
Cryptojacking Campaign Exploits Pirated Software to Deploy XMRig Miner
February 25, 2026
New cryptojacking campaign uses pirated software to deliver XMRig miner payloads onto hosts.
Arkanix Stealer Malware Quickly Vanishes After Its Initial Launch
February 25, 2026
The newly launched Arkanix Stealer malware vanished shortly after targeting sensitive system and browser data.
Microsoft Investigates Vanishing Mouse Pointer Bug in Classic Outlook
February 25, 2026
Microsoft investigates an issue causing Outlook's mouse pointer to disappear for some users.
GitHub’s Dependabot is Under Fire for Alert Accuracy Issues
February 25, 2026
A Go library maintainer questions the effectiveness of GitHub's Dependabot due to alert fatigue from inaccurate dependency-scanning alerts.
BeyondTrust RS and PRA Vulnerability Is Being Actively Exploited by Threat Actors
February 25, 2026
Attackers exploit CVE-2026-1731 in BeyondTrust RS and PRA, leveraging VShell for persistence, lateral movement, and system control.
Microsoft Expands Data Loss Prevention Controls for Microsoft 365 Copilot
February 25, 2026
Microsoft expands data loss prevention (DLP) controls to block Microsoft 365 Copilot from accessing and processing confidential Word, Excel, and Power...
New Security Concerns Arise with the Proliferation of Internal LLMs
February 25, 2026
As organizations implement LLMs, security concerns shift to the infrastructure.
Cybercriminal Group Exploits Hundreds of FortiGate Firewalls Using Off-the-Shelf AI Tools
February 24, 2026
A cybercrime group used off-the-shelf AI tools to target FortiGate firewalls in 55 countries.
Ring Bets $10,000 That Nobody Can Hack Its Local Streaming Feature
February 24, 2026
Ring offers $10,000 for finding security flaws in its new local streaming feature. The company's goal is to limit video access to device owners' trust...
Romanian Hacker Admits to Selling Oregon State Network Access in Court
February 23, 2026
A Romanian hacker pleads guilty to selling digital access to a US state office network.
Privacy Groups Demand Compliance From Generative AI Image Creators
February 23, 2026
Privacy watchdogs insist generative AI makers adhere to data protection laws.
Spanish Hacker Arrested for Booking Luxury Hotel Rooms for One Cent
February 23, 2026
Spanish police apprehended a hacker for booking luxury rooms for €0.01 each through an exploited payment system.
Anthropic Introduces Claude Code Security for Vulnerability Detection
February 23, 2026
Anthropic's new feature scans code for vulnerabilities, suggesting targeted patches.
PayPal Data Breach Exposed User Data for Six Months Due to Software Bug
February 23, 2026
A six-month data breach at PayPal exposed sensitive user information due to a software flaw in its Working Capital app.
Critical Grandstream Phone Vulnerability Allows for Eavesdropping Opportunities
February 23, 2026
A critical flaw in Grandstream phones enables remote code execution without authentication.
Ukrainian National Sentenced in US Federal Court for Aiding North Korean IT Fraud
February 23, 2026
Ukrainian Oleksandr Didenko sentenced to 5 years for aiding North Korean IT workers in employment fraud.
RoguePilot Vulnerability in GitHub Codespaces Has Been Patched by Microsoft
ShinyHunters Leak Exposes Millions of CarGurus User Records
Lazarus Group Expands Its Ransomware Arsenal with Medusa
Optimizely Suffers a Data Breach Through a Voice Phishing Attack
Cryptojacking Campaign Exploits Pirated Software to Deploy XMRig Miner
Arkanix Stealer Malware Quickly Vanishes After Its Initial Launch
Microsoft Investigates Vanishing Mouse Pointer Bug in Classic Outlook
GitHub’s Dependabot is Under Fire for Alert Accuracy Issues
BeyondTrust RS and PRA Vulnerability Is Being Actively Exploited by Threat Actors
Microsoft Expands Data Loss Prevention Controls for Microsoft 365 Copilot
New Security Concerns Arise with the Proliferation of Internal LLMs
Cybercriminal Group Exploits Hundreds of FortiGate Firewalls Using Off-the-Shelf AI Tools
Ring Bets $10,000 That Nobody Can Hack Its Local Streaming Feature
Romanian Hacker Admits to Selling Oregon State Network Access in Court
Privacy Groups Demand Compliance From Generative AI Image Creators
Spanish Hacker Arrested for Booking Luxury Hotel Rooms for One Cent
Anthropic Introduces Claude Code Security for Vulnerability Detection
PayPal Data Breach Exposed User Data for Six Months Due to Software Bug
Critical Grandstream Phone Vulnerability Allows for Eavesdropping Opportunities
Ukrainian National Sentenced in US Federal Court for Aiding North Korean IT Fraud