Main Menu
Cyber Security
Microsoft Disrupts Fox Tempest Malware-Signing Service
B1ack’s Stash Releases 4.6M Stolen Credit Cards Free
Trapdoor Android Ad Fraud Scheme Generated 659M Fake Bids
Nx Console VS Code Extension Poisoned to Steal 1Password, AWS Keys
Storm-2949 Abuses Azure Password Reset to Seize Cloud Accounts
Drupal Issues Highly Critical Patch, Exploits Expected Within Hours
SEPPMail Gateway Hit with 7 CVEs, Including CVSS 10.0 RCE Flaw
Grafana Breach Traced to TanStack npm Supply Chain Attack
CISA Orders Patch for Sixth Cisco SD-WAN Zero-Day of 2026
Exchange Server XSS CVE-2026-42897 Exploited via Crafted Email
Ghostwriter APT Deploys Cobalt Strike in Geofenced Ukraine Campaign
OpenAI Confirms Breach via Mini Shai-Hulud npm Supply Chain Attack
KongTuke IAB Uses Microsoft Teams to Deploy ModeloRAT in 5 Minutes
node-ipc npm Package Hid Credential Stealer Across Three Versions
PraisonAI CVE-2026-44338 Exploited 3h44m After Public Disclosure
Burst Statistics CVE-2026-8181 Draws 7,400 Attacks in 24 Hours
NGINX CVE-2026-42945 Under Active Exploitation After F5 Patch Drop
CoinbaseCartel Steals Grafana Source Code via GitHub Token
MiniPlasma Windows Exploit Grants SYSTEM Access with No Patch
Leaked Shai-Hulud Code Fuels npm Infostealer Wave Targeting Devs
INTERPOL Operation Ramz: 201 Arrests in 13-Nation MENA Sweep
Pwn2Own Berlin 2026 Closes with $1.3M in Zero-Day Prizes
GitHub Actions Supply Chain Attack Hijacks actions-cool Tags
ShinyHunters Claims 600,000-Record 7-Eleven Salesforce Breach
Tycoon2FA Adds Device-Code Attack to Bypass Microsoft 365 MFA
18-Year NGINX Flaw CVE-2026-42945 Enables Unauthenticated RCE
FamousSparrow APT Hit Azerbaijani Energy Firm in Three Waves
MuddyWater Targeted South Korean Electronics Maker via DLL Sideloading
Linux Kernel Fragnesia CVE-2026-46300 Grants Root via Page Cache
YellowKey and GreenPlasma: Unpatched Windows Zero-Days Released

Sorry, we couldn't find any posts. Please try a different search.

TeamPCP Claims Breach of 4,000 GitHub Private Repositories
Cybersecurity
TeamPCP Claims Breach of 4,000 GitHub Private Repositories
Mitchell Langley May 20, 2026
TeamPCP Claims Breach of 4,000 GitHub Private Repositories
Cybersecurity
TeamPCP Claims Breach of 4,000 GitHub Private Repositories
Mitchell Langley May 20, 2026
Microsoft Disrupts Fox Tempest Malware-Signing Service
Cybersecurity
Microsoft Disrupts Fox Tempest Malware-Signing Service
Andrew Doyle May 20, 2026
Cybersecurity
KongTuke IAB Uses Microsoft Teams to Deploy ModeloRAT in 5 Minutes
Gabby Lee May 19, 2026

TOP CYBERSECURITY HEADLINES

Microsoft Disrupts Fox Tempest Malware-Signing Service
Cybersecurity
Microsoft Disrupts Fox Tempest Malware-Signing Service
Cybersecurity
B1ack’s Stash Releases 4.6M Stolen Credit Cards Free
Trapdoor Android Ad Fraud Scheme Generated 659M Fake Bids
Cybersecurity
Trapdoor Android Ad Fraud Scheme Generated 659M Fake Bids
Nx Console VS Code Extension Poisoned to Steal 1Password, AWS Keys
Application Security
Nx Console VS Code Extension Poisoned to Steal 1Password, AWS Keys

This Week’s Security Spotlight

Drupal Issues Highly Critical Patch, Exploits Expected Within Hours
Application Security
Drupal Issues Highly Critical Patch, Exploits Expected Within Hours
Andrew Doyle May 20, 2026
Cybersecurity
Tycoon2FA Adds Device-Code Attack to Bypass Microsoft 365 MFA
Andrew Doyle May 19, 2026
Application Security
SAP S/4HANA SQL Injection CVE-2026-34260 Rated CVSS 9.6
Gabby Lee May 13, 2026
CVE Vulnerability Alerts
Dell DSA-2026-047: CVSS 9.8 Hard-Coded Credentials in ECS Storage
Mitchell Langley May 13, 2026
More In News
Trending
Operation HookedWing: 4-Year Campaign Compromises 500 Orgs
ShinyHunters Leaks 50GB After Vishing Breach at Cushman & Wakefield
MacSync Infostealer Weaponizes Google Ads and Claude.ai Chats
TCLBanker Trojan Spreads via WhatsApp and Outlook, Hits 59 Banks

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Featured Videos​

Podcasts

Sorry, we couldn't find any posts. Please try a different search.

Cyber Security News

Microsoft Faces Lawsuit Over Misleading Customers Into Copilot-Enhanced Microsoft 365 Subscriptions
Application Security
Microsoft Faces Lawsuit Over Misleading Customers Into Copilot-Enhanced Microsoft 365 Subscriptions
October 29, 2025
Qilin Ransomware Leverages WSL to Deploy Linux Encryptors on Windows Systems
Cybersecurity
Qilin Ransomware Leverages WSL to Deploy Linux Encryptors on Windows Systems
October 29, 2025
Dentsu Confirms Data Breach Exposing Employee Payroll and Personal Information
Cybersecurity
Dentsu Confirms Data Breach Exposing Employee Payroll and Personal Information
October 29, 2025
Palo Alto Networks Unveils AI Security Suite Cortex Cloud 2.0 & Prisma AIRS 2.0 Launched
Cybersecurity
Palo Alto Networks Unveils AI Security Suite: Cortex Cloud 2.0 & Prisma AIRS 2.0 Launched
October 29, 2025
Italian Spyware Vendor Linked to Chrome Zero-Day Attacks
Cybersecurity
Italian Spyware Vendor Linked to Chrome Zero-Day Attacks
October 28, 2025
QNAP Warns Windows Backup Software Impacted by ASP.NET Flaw
Cybersecurity
QNAP Warns Windows Backup Software Impacted by ASP.NET Flaw
October 28, 2025
  • All
  • Application Security
  • Blog
  • CVE Vulnerability Alerts
  • Cybersecurity
  • Cybersecurity Newsletter
  • Data Security
  • Endpoint Security
  • Identity and Access Management
  • Information Security
  • Network Security
  • News
  • Phishing
  • Podcasts
  • Product Reviews
  • Ransomware
  • Ransomware Victims
  • Resources
  • Security Spotlight
  • Sponsored
  • Threat Actors
  • Threat Actors
  • Threat Detection Tools
GTA 5 Source Code Leaked a Year After GTA 6 Leaks in Rockstar Hack
December 27, 2023
Recent reports have surfaced the internet that on Christmas Eve, the source code for GTA 5 source code leaked on GTA leak channel on the ...
Synology Security Advisory SA-22:15 GLPI Disclosed Multiple Remote Access Vulnerabilities
December 26, 2023
Synology Security Advisor SA-22:15 revealed multiple vulnerabilities that allow remote access to sensitive information, add web scripts, HTML, or inject SQL command(s) via the vulnerable ...
Ace Hardware Cyber Attack Disrupts Operations and Cripples IT Systems
December 22, 2023
Ace Hardware, the American hardware retailers’ cooperative, has experienced significant disruptions to its operations following a cyber attack in 2023. Ace Hardware Cyber Attack 2023 ...
First American Financial Hacked: Takes IT Systems Offline to Contain the Breach
December 22, 2023
First American Financial Corporation, the second-largest and one of the very first American title insurance companies in the US, has taken certain systems offline today ...
How to Conduct a Cybersecurity Risk Assessment: Step-by-Step Guide
December 21, 2023
In today’s digital landscape, cybersecurity is a top concern for organizations of all sizes. As cyber threats continue to evolve and become more sophisticated, businesses ...
Enhance Your Email Security: 15 Best Email Security Practices for 2024
December 20, 2023
Securing emails is crucial for enterprises due to various compelling reasons, which is why they need robust email security. Given that emails serve as a ...
OilRig APT Uses Downloader Malware for Cyberespionage
December 15, 2023
Iranian state-sponsored threat actor OilRig, also known as APT34, continued its cyber espionage endeavors throughout 2022, deploying three distinctive downloader malware—ODAgent, OilCheck, and OilBooster. Slovak ...
Spear Phishing vs Phishing: How Do Spear Phishing Attacks Differ from Standard Phishing Attacks?
December 14, 2023
In today’s digital landscape, where communication is predominantly virtual, the threat of phishing attacks—especially spear phishing—has escalated. Phishing refers to the deceptive practice of sending ...
Spider-Man Developer Insomniac Games Hit by Rhysida Ransomware
December 13, 2023
Since its emergence in May 2023, Rhysida ransomware has gained notoriety as an emerging threat actor in the cybercrime landscape. The latest target of this ...
Toyota Cyberattack: Medusa Ransomware Strikes Toyota, Customer Data Compromised
December 12, 2023
Toyota Financial Services (TFS), a subsidiary of Toyota Motor Corporation, faces the aftermath of a cyberattack, courtesy of the Medusa ransomware group. The breach, detected ...
Canadian Government’s Data Security Compromised Affecting its Contractors
November 21, 2023
In a recent cybersecurity incident, the Canadian government has reported that two of its contractors, Brookfield Global Relocation Services (BGRS) and SIRVA Worldwide Relocation & ...
Microsoft Exchange Zero-Day Exploit: Experts Say Mitigation isn’t Enough
October 10, 2023
Microsoft has shared mitigations for two new Microsoft Exchange zero-day elevation of privelege vulnerability, tracked as CVE-2022-41040, and remote execution vulnerability (CVE-2022-41082). However, security researchers ...
Microsoft Disrupts Fox Tempest Malware-Signing Service
B1ack’s Stash Releases 4.6M Stolen Credit Cards Free
Trapdoor Android Ad Fraud Scheme Generated 659M Fake Bids
Nx Console VS Code Extension Poisoned to Steal 1Password, AWS Keys
Storm-2949 Abuses Azure Password Reset to Seize Cloud Accounts
Drupal Issues Highly Critical Patch, Exploits Expected Within Hours
SEPPMail Gateway Hit with 7 CVEs, Including CVSS 10.0 RCE Flaw
Grafana Breach Traced to TanStack npm Supply Chain Attack
CISA Orders Patch for Sixth Cisco SD-WAN Zero-Day of 2026
Exchange Server XSS CVE-2026-42897 Exploited via Crafted Email
Ghostwriter APT Deploys Cobalt Strike in Geofenced Ukraine Campaign
OpenAI Confirms Breach via Mini Shai-Hulud npm Supply Chain Attack
KongTuke IAB Uses Microsoft Teams to Deploy ModeloRAT in 5 Minutes
node-ipc npm Package Hid Credential Stealer Across Three Versions
PraisonAI CVE-2026-44338 Exploited 3h44m After Public Disclosure
Burst Statistics CVE-2026-8181 Draws 7,400 Attacks in 24 Hours
NGINX CVE-2026-42945 Under Active Exploitation After F5 Patch Drop
CoinbaseCartel Steals Grafana Source Code via GitHub Token
MiniPlasma Windows Exploit Grants SYSTEM Access with No Patch
Leaked Shai-Hulud Code Fuels npm Infostealer Wave Targeting Devs