Endpoint Security

Threat Actors Target Vulnerable Proxy Servers in the Hunt for LLM Services

January 11, 2026

Cybercriminals are exploiting vulnerabilities in proxy servers, seeking unauthorized access to commercial large language models, posing significant cybersecurity concerns.

Vulnerability in Totolink Range Extender Firmware Allows Unauthorized Access

January 8, 2026

Totolink range extenders are at risk due to a firmware bug that leads to unauthenticated root-level Telnet service, allowing potential

Unpatched Vulnerability in TOTOLINK EX200 Puts Devices at Risk

January 7, 2026

A critical flaw in TOTOLINK EX200 allows remote attackers full control. Tracked as CVE-2025-65606, the vulnerability presents significant risks for

Android’s January 2026 Update Patches Critical Dolby Audio Decoder Vulnerability

January 6, 2026

Google’s latest Android security patch addresses the critical Dolby audio decoder vulnerability, CVE-2025-54957, originally discovered in October 2025. The issue

D-Link Routers Face New Threat as Attackers Exploit Legacy Vulnerability

January 6, 2026

Threat actors have been exploiting a command injection vulnerability identified in out-of-support D-Link DSL router models. The flaw allows remote

European Space Agency Confirms Breach Impacting Servers with Unclassified Engineering Data

December 31, 2025

The European Space Agency disclosed a breach affecting external servers. These systems held unclassified engineering project data, raising concerns about

Vulnerabilities in SonicWall Remote-Access Appliance Threaten Security

December 22, 2025

SonicWall urges users to patch a critical zero-day vulnerability in its SMA 1000 remote-access appliance. This flaw allows attackers to

UEFI Vulnerability Exposes Major Motherboards to Early-Boot Attacks

December 22, 2025

A critical Unified Extensible Firmware Interface (UEFI) vulnerability has been identified in major motherboard brands like ASRock, Asus, Gigabyte, and

Cisco Identifies Exploited Zero-Day Vulnerability in Email Gateway Systems

December 18, 2025

Cisco issued a warning regarding an unpatched zero-day vulnerability, identified as CVE-2023-20198, in its AsyncOS system, impacting Secure Email Gateway

Understanding Ransomware Attacks on Hypervisors: A Growing Threat

December 17, 2025

Ransomware groups target hypervisors to encrypt many virtual machines simultaneously, exploiting vulnerabilities in virtualized environments. Organizations must understand this evolving

Threat Actors Target Vulnerable Proxy Servers in the Hunt for LLM Services

Vulnerability in Totolink Range Extender Firmware Allows Unauthorized Access

Unpatched Vulnerability in TOTOLINK EX200 Puts Devices at Risk

Android’s January 2026 Update Patches Critical Dolby Audio Decoder Vulnerability

D-Link Routers Face New Threat as Attackers Exploit Legacy Vulnerability

European Space Agency Confirms Breach Impacting Servers with Unclassified Engineering Data

Vulnerabilities in SonicWall Remote-Access Appliance Threaten Security

UEFI Vulnerability Exposes Major Motherboards to Early-Boot Attacks

Cisco Identifies Exploited Zero-Day Vulnerability in Email Gateway Systems

Understanding Ransomware Attacks on Hypervisors: A Growing Threat

Threat Actors Target Vulnerable Proxy Servers in the Hunt for LLM Services

Vulnerability in Totolink Range Extender Firmware Allows Unauthorized Access

Unpatched Vulnerability in TOTOLINK EX200 Puts Devices at Risk

Android’s January 2026 Update Patches Critical Dolby Audio Decoder Vulnerability

D-Link Routers Face New Threat as Attackers Exploit Legacy Vulnerability

European Space Agency Confirms Breach Impacting Servers with Unclassified Engineering Data

Vulnerabilities in SonicWall Remote-Access Appliance Threaten Security

UEFI Vulnerability Exposes Major Motherboards to Early-Boot Attacks

Cisco Identifies Exploited Zero-Day Vulnerability in Email Gateway Systems

Understanding Ransomware Attacks on Hypervisors: A Growing Threat

Multi-Stage Phishing Campaign Targets Russia With Ransomware and Amnesia RAT

ShinyHunters Claims Responsibility for Recent Okta Phishing Attack

LastPass Users Targeted by Deceptive Phishing Campaign

Cybercriminals Exploit Social Media Messages for Malicious Payloads

OAuth Phishing Technique ConsentFix Poses New Threat to Microsoft Accounts

Illinois Man Charged for Snapchat Phishing Scheme

Email Security’s True Challenge: Evaluating Post-access Threats

How Misconfigured Email Routing Opens the Door for Credential Theft

Phishers Pose as Booking.com to Compromise European Hotels

Phishing Campaign Targets Users with Google Cloud Application Exploitation

Daily Briefing Newsletter