Main Menu
Cyber Security
ShinyHunters Claims 2.2 Million Kodak Records, Sets Leak Deadline
CISA Adds Joomla JCE CVE-2026-48907 to KEV Amid Active Scans
DragonForce’s Backdoor.Turn Routes C2 via Microsoft Teams TURN
iRhythm Confirms PHI Exfiltration via Social Engineering
Rokarolla Android Trojan Hits 217 Banking and Crypto Apps
Steam Workshop Wallpaper Packages Drop DarkKomet and Lumma
GhostTree NTFS Junctions Paralyze Windows Defender Scans
CVE-2026-2473: Vertex AI SDK Pickle Attack Enables Cross-Tenant RCE
Endpoint Security Solutions: How to Protect Every Enterprise Device
UNC6508 Abused Google Workspace Rules in Medical-Military Espionage
Three FortiSandbox CVEs Chained for Unauthenticated Root Execution
Cisco CVE-2026-20262 Added to CISA KEV; Eighth Exploited SD-WAN Flaw
LiteSpeed cPanel CVE-2026-54420 Escalates to Root on Shared Hosts
APT37 Deploys NarwhalRAT via Fake Microsoft Security Alerts
DOJ Seizes CFAKE.com and SOCFAKE.com in First TAKE IT DOWN Act Case
The Quarry PhaaS: IRS Lures, ConnectWise RAT, 500+ Victims
ESET Finds WIN_DRV: Earth Lusca’s First Windows SprySOCKS Rootkit
Obsidian Finds CVSS 9.9 Attack Chain in LiteLLM AI Gateway
CVE-2026-48558 Exposes 14,000 SimpleHelp RMM Servers to Auth Bypass
ShinyHunters Claims 61M Sysco Salesforce Records in Unverified Breach
What Is Scareware? How Fake Security Warnings Lead to Real Malware
Lapsus$ Lists GitHub Internal Repos for Sale, Copilot Source Included
Nightspire Claims Blue Nile Medical and Silsbee Police as New Victims
Ukrainian Conti Developer Pleads Guilty to Ransomware Loader Coding
Awesome Motive CDN Compromised; Backdoor Served to OptinMonster Users
CVE-2026-42824: M365 Copilot SearchLeak Enables 1-Click Email Theft
Novo Nordisk Confirms Hack of Clinical Trial Biomarker Data
SearchJack: 23 Chrome Extensions Intercept 758,000 Users’ Searches
TheGentlemen Ransomware Posts 20 Victims Across 14 Countries
PromptSnatcher Extensions Stole AI Chats From 90,000 Users
Cybersecurity
NC Man Gets 121 Months for Selling Elderly Americans’ Data to Scammers
Andrew Doyle June 1, 2026
Troy Murray, 57, of North Carolina was sentenced to 121 months in prison and ordered to forfeit $5.2 million for selling elderly Americans' data to ...
Cybersecurity
LLMShare Campaign Hosts Infostealer Downloads on ChatGPT’s Own Domain
Andrew Doyle June 1, 2026
LLMShare, discovered by Push Security, abuses ChatGPT's share links on chatgpt.com to host fake outage pages that deliver infostealer malware to Windows and macOS users.
Cybersecurity
California AG Sues 23andMe Successor Over 2023 Genetic Data Breach
Gabby Lee June 1, 2026
California AG Rob Bonta sued Chrome Holding Co., 23andMe's successor after bankruptcy, over the 2023 breach exposing genetic health data for millions of users.
Application Security
Gogs CVSS 9.4 RCE Zero-Day Has No Patch and a Metasploit Module
Gabby Lee June 1, 2026
A CVSS 9.4 argument injection zero-day in Gogs lets any authenticated user achieve RCE on internet-exposed servers. No patch exists and Rapid7 has released a ...
Cybersecurity
Dutch Police Seize 200+ Servers in 17-Million-Device Botnet Takedown
Mitchell Langley June 1, 2026
Dutch law enforcement dismantled a botnet of 17 million compromised devices by seizing over 200 command-and-control servers in a major coordinated takedown with hosting provider ...
Cybersecurity
Russia Sends Submarines to Survey UK Undersea Internet Cables
Andrew Doyle June 1, 2026
UK officials confirmed Russian submarines are surveying critical undersea cables, prompting Royal Navy deployment and emergency legislation to protect national communications infrastructure.
Cybersecurity
Dashlane Suspends Accounts After Multi-Country Brute-Force Campaign
Gabby Lee June 1, 2026
Dashlane temporarily suspended customer accounts after detecting coordinated brute-force login attempts originating from multiple countries simultaneously targeting its login infrastructure.
Cybersecurity
Western Officials Warn Russia Steals Tech Via Shell Firms and Hacks
Andrew Doyle June 1, 2026
Western intelligence officials issued a coordinated warning that Russian state actors are using shell companies, false recruiters, and cyber operations to steal sanctioned technology.
Application Security
Public Exploit Raises Flowise CVE-2026-40933 RCE to Immediate Risk
Mitchell Langley June 1, 2026
Public exploit code for CVE-2026-40933 now targets Flowise, a self-hosted AI chatflow builder, via a one-click malicious import that executes arbitrary code on the server.
Application Security
CIFSwitch Linux Kernel Flaw Gets Public PoC, Root Access Possible
Gabby Lee June 1, 2026
CIFSwitch is a 19-year-old Linux kernel privilege escalation flaw with a public PoC that enables root access on Ubuntu, RHEL, Debian, and other distributions.
Cybersecurity
PAN-OS CVE-2026-0257 Exploited Just 4 Days After Public Disclosure
Gabby Lee June 1, 2026
CVE-2026-0257, a PAN-OS GlobalProtect authentication bypass, saw active exploitation begin just four days after public disclosure, with attacks ongoing for weeks.
Cybersecurity
Dutch Police Seize 200+ Servers in 17-Million-Device Botnet Takedown
Gabby Lee June 1, 2026
Dutch law enforcement dismantled a botnet of 17 million compromised devices by seizing over 200 command-and-control servers in a major coordinated takedown with hosting provider ...
Application Security
Gogs CVSS 9.4 RCE Zero-Day Has No Patch and a Metasploit Module
Gabby Lee June 1, 2026
A CVSS 9.4 argument injection zero-day in Gogs lets any authenticated user achieve RCE on internet-exposed servers. No patch exists and Rapid7 has released a ...
Cybersecurity
California AG Sues 23andMe Successor Over 2023 Genetic Data Breach
Andrew Doyle June 1, 2026
California AG Rob Bonta sued Chrome Holding Co., 23andMe's successor after bankruptcy, over the 2023 breach exposing genetic health data for millions of users.
Cybersecurity
LLMShare Campaign Hosts Infostealer Downloads on ChatGPT’s Own Domain
Andrew Doyle June 1, 2026
LLMShare, discovered by Push Security, abuses ChatGPT's share links on chatgpt.com to host fake outage pages that deliver infostealer malware to Windows and macOS users.
Cybersecurity
NC Man Gets 121 Months for Selling Elderly Americans’ Data to Scammers
Gabby Lee June 1, 2026
Troy Murray, 57, of North Carolina was sentenced to 121 months in prison and ordered to forfeit $5.2 million for selling elderly Americans' data to ...
Application Security
Microsoft: 14 npm Packages Linked to Single Actor Stealing AWS Keys
Mitchell Langley June 1, 2026
Microsoft attributed 14 malicious npm packages impersonating OpenSearch and Elasticsearch to a single threat actor who stole AWS credentials and CI/CD secrets from developer environments.
Cybersecurity
Play Ransomware Lists MyPillow, US Telecom in Six-Victim Batch
Mitchell Langley June 1, 2026
Play ransomware listed six victims on May 25, led by consumer brand MyPillow and a US telecom provider, in a multi-sector batch spanning four countries.
Cybersecurity
Incransom Hits Illinois Health Center and Manufacturer
Mitchell Langley June 1, 2026
Incransom claimed two US victims on May 25 — Open Door Health Center in Illinois and manufacturer PILLER AIMMCO — part of a three-victim, 48-hour ...
Cybersecurity
Nova Ransomware Lists Russian Oil Firm Eriell in May 26 Batch
Mitchell Langley June 1, 2026
Nova ransomware posted Russian oil firm Eriell and tech company sandox info on May 26, continuing a five-victim, five-day burst spanning four world regions.
Application Security
Mastra AI npm Supply Chain Attack Hits 1.1M Weekly Downloads
Mitchell Langley June 17, 2026
Cybersecurity
ShinyHunters Claims 2.2 Million Kodak Records, Sets Leak Deadline
Gabby Lee June 17, 2026
Cybersecurity
DragonForce’s Backdoor.Turn Routes C2 via Microsoft Teams TURN
Mitchell Langley June 17, 2026
Cybersecurity
Rokarolla Android Trojan Hits 217 Banking and Crypto Apps
Andrew Doyle June 17, 2026

TOP CYBERSECURITY HEADLINES

Application Security
CISA Adds Joomla JCE CVE-2026-48907 to KEV Amid Active Scans
Cybersecurity
DragonForce’s Backdoor.Turn Routes C2 via Microsoft Teams TURN
Cybersecurity
iRhythm Confirms PHI Exfiltration via Social Engineering
Cybersecurity
Rokarolla Android Trojan Hits 217 Banking and Crypto Apps

This Week’s Security Spotlight

Cybersecurity
iRhythm Confirms PHI Exfiltration via Social Engineering
Mitchell Langley June 17, 2026
Application Security
Obsidian Finds CVSS 9.9 Attack Chain in LiteLLM AI Gateway
Mitchell Langley June 16, 2026
Application Security
PromptSnatcher Extensions Stole AI Chats From 90,000 Users
Mitchell Langley June 15, 2026
Cybersecurity
Anthropic Releases Guardrail-Free Mythos 5 to Security Researchers
Andrew Doyle June 12, 2026
More In News
Trending
Storm-3075 Uses ChatGPT and Claude Brands to Harvest Credentials
Fake Claude Code Installers on Google Sites Steal AI API Keys
Fake Chrome Web Store DMCA Notices Target Extension Developers
SideCopy APT Targets Afghan Finance Ministry with Xeno RAT

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Featured Videos​

Podcasts

Podcasts
WhatsApp Wins Landmark Case Against NSO Group Over Spyware Attacks
October 20, 2025
Podcasts
Google Project Zero Exposes Dolby Decoder Flaw Enabling Zero-Click Android Exploits
October 20, 2025
Podcasts
AISLE Launches AI Cyber Reasoning System to Shrink Patch Times from Weeks to Minute
October 17, 2025

Cyber Security News

Cybersecurity
China-Linked JDY Botnet Hits 1,500 Devices Targeting U.S. Military
June 11, 2026
CVE Vulnerability Alerts
CISA BOD 26-04 Mandates 3-Day Patch Window for Federal Agencies
June 11, 2026
Cybersecurity
RoguePlanet Zero-Day Gives Attackers SYSTEM on Patched Windows
June 11, 2026
CVE Vulnerability Alerts
Ivanti Sentry CVE-2026-10520 Actively Exploited, Devices Backdoored
June 11, 2026
Application Security
Langflow CVE-2026-5027: Path Traversal Becomes Unauthenticated RCE
June 11, 2026
Cybersecurity
WorldLeaks Claims Apple Supplier Tata Electronics and Two More Firms
June 11, 2026
  • All
  • Application Security
  • Blog
  • CVE Vulnerability Alerts
  • Cybersecurity
  • Cybersecurity Newsletter
  • Data Security
  • Endpoint Security
  • Identity and Access Management
  • Information Security
  • Network Security
  • News
  • Phishing
  • Podcasts
  • Product Reviews
  • Ransomware
  • Ransomware Victims
  • Resources
  • Security Spotlight
  • Sponsored
  • Threat Actors
  • Threat Actors
  • Threat Detection Tools
Gogs CVSS 9.4 RCE Zero-Day Has No Patch and a Metasploit Module
June 1, 2026
A CVSS 9.4 argument injection zero-day in Gogs lets any authenticated user achieve RCE on internet-exposed servers. No patch exists and Rapid7 has released a ...
Dutch Police Seize 200+ Servers in 17-Million-Device Botnet Takedown
June 1, 2026
Dutch law enforcement dismantled a botnet of 17 million compromised devices by seizing over 200 command-and-control servers in a major coordinated takedown with hosting provider ...
Russia Sends Submarines to Survey UK Undersea Internet Cables
June 1, 2026
UK officials confirmed Russian submarines are surveying critical undersea cables, prompting Royal Navy deployment and emergency legislation to protect national communications infrastructure.
Dashlane Suspends Accounts After Multi-Country Brute-Force Campaign
June 1, 2026
Dashlane temporarily suspended customer accounts after detecting coordinated brute-force login attempts originating from multiple countries simultaneously targeting its login infrastructure.
Western Officials Warn Russia Steals Tech Via Shell Firms and Hacks
June 1, 2026
Western intelligence officials issued a coordinated warning that Russian state actors are using shell companies, false recruiters, and cyber operations to steal sanctioned technology.
Public Exploit Raises Flowise CVE-2026-40933 RCE to Immediate Risk
June 1, 2026
Public exploit code for CVE-2026-40933 now targets Flowise, a self-hosted AI chatflow builder, via a one-click malicious import that executes arbitrary code on the server.
CIFSwitch Linux Kernel Flaw Gets Public PoC, Root Access Possible
June 1, 2026
CIFSwitch is a 19-year-old Linux kernel privilege escalation flaw with a public PoC that enables root access on Ubuntu, RHEL, Debian, and other distributions.
PAN-OS CVE-2026-0257 Exploited Just 4 Days After Public Disclosure
June 1, 2026
CVE-2026-0257, a PAN-OS GlobalProtect authentication bypass, saw active exploitation begin just four days after public disclosure, with attacks ongoing for weeks.
Dutch Police Seize 200+ Servers in 17-Million-Device Botnet Takedown
June 1, 2026
Dutch law enforcement dismantled a botnet of 17 million compromised devices by seizing over 200 command-and-control servers in a major coordinated takedown with hosting provider ...
Gogs CVSS 9.4 RCE Zero-Day Has No Patch and a Metasploit Module
June 1, 2026
A CVSS 9.4 argument injection zero-day in Gogs lets any authenticated user achieve RCE on internet-exposed servers. No patch exists and Rapid7 has released a ...
California AG Sues 23andMe Successor Over 2023 Genetic Data Breach
June 1, 2026
California AG Rob Bonta sued Chrome Holding Co., 23andMe's successor after bankruptcy, over the 2023 breach exposing genetic health data for millions of users.
LLMShare Campaign Hosts Infostealer Downloads on ChatGPT’s Own Domain
June 1, 2026
LLMShare, discovered by Push Security, abuses ChatGPT's share links on chatgpt.com to host fake outage pages that deliver infostealer malware to Windows and macOS users.
NC Man Gets 121 Months for Selling Elderly Americans’ Data to Scammers
June 1, 2026
Troy Murray, 57, of North Carolina was sentenced to 121 months in prison and ordered to forfeit $5.2 million for selling elderly Americans' data to ...
Microsoft: 14 npm Packages Linked to Single Actor Stealing AWS Keys
June 1, 2026
Microsoft attributed 14 malicious npm packages impersonating OpenSearch and Elasticsearch to a single threat actor who stole AWS credentials and CI/CD secrets from developer environments.
Play Ransomware Lists MyPillow, US Telecom in Six-Victim Batch
June 1, 2026
Play ransomware listed six victims on May 25, led by consumer brand MyPillow and a US telecom provider, in a multi-sector batch spanning four countries.
Incransom Hits Illinois Health Center and Manufacturer
June 1, 2026
Incransom claimed two US victims on May 25 — Open Door Health Center in Illinois and manufacturer PILLER AIMMCO — part of a three-victim, 48-hour ...
Nova Ransomware Lists Russian Oil Firm Eriell in May 26 Batch
June 1, 2026
Nova ransomware posted Russian oil firm Eriell and tech company sandox info on May 26, continuing a five-victim, five-day burst spanning four world regions.
Incransom Claims Meirc Breach, Threatens to Leak 1TB of Client Data
May 26, 2026
Incransom has claimed a full-network breach of Meirc Training & Consulting on May 25, threatening to publish 1TB of employee and client data within one ...
DragonForce Lists Indiana Greenhouse Firm Heartland Growers
May 26, 2026
DragonForce ransomware listed Indiana wholesale greenhouse firm Heartland Growers on its dark web leak site amid escalating agricultural sector targeting.
Nova Ransomware Hits Brazilian Government Agency and Turkish Tech Firm
May 26, 2026
Nova ransomware claimed Brazil's SECONT and Turkey's Adensa Teknoloji on May 24, its third posting in three days spanning South America, Europe, and Turkey.
ShinyHunters Claims 2.2 Million Kodak Records, Sets Leak Deadline
CISA Adds Joomla JCE CVE-2026-48907 to KEV Amid Active Scans
DragonForce’s Backdoor.Turn Routes C2 via Microsoft Teams TURN
iRhythm Confirms PHI Exfiltration via Social Engineering
Rokarolla Android Trojan Hits 217 Banking and Crypto Apps
Steam Workshop Wallpaper Packages Drop DarkKomet and Lumma
GhostTree NTFS Junctions Paralyze Windows Defender Scans
CVE-2026-2473: Vertex AI SDK Pickle Attack Enables Cross-Tenant RCE
Endpoint Security Solutions: How to Protect Every Enterprise Device
UNC6508 Abused Google Workspace Rules in Medical-Military Espionage
Three FortiSandbox CVEs Chained for Unauthenticated Root Execution
Cisco CVE-2026-20262 Added to CISA KEV; Eighth Exploited SD-WAN Flaw
LiteSpeed cPanel CVE-2026-54420 Escalates to Root on Shared Hosts
APT37 Deploys NarwhalRAT via Fake Microsoft Security Alerts
DOJ Seizes CFAKE.com and SOCFAKE.com in First TAKE IT DOWN Act Case
The Quarry PhaaS: IRS Lures, ConnectWise RAT, 500+ Victims
ESET Finds WIN_DRV: Earth Lusca’s First Windows SprySOCKS Rootkit
Obsidian Finds CVSS 9.9 Attack Chain in LiteLLM AI Gateway
CVE-2026-48558 Exposes 14,000 SimpleHelp RMM Servers to Auth Bypass
ShinyHunters Claims 61M Sysco Salesforce Records in Unverified Breach