Main Menu
Cyber Security
The DockerDash Vulnerability: Understanding Its Impact on Docker Desktop and CLI
U.S. CISA’s Vulnerability Notice Revisions Spark Concerns
React Native’s Metro Server Vulnerability: A Growing Cyber Threat
Reconnaissance Attack On Citrix NetScaler Targets Login Panels with Proxy Networks
State-Sponsored Cyber Espionage: Notepad++ Update Traffic Hijacked
Cybercriminals Exploit Weak Security in 1,400 MongoDB Servers
Malicious VS Code Extensions Spread GlassWorm Loader
Surge in Fake Investment Platforms Exploiting Social Media
Fast Food Giant McDonald Calls for Creative Passwords to Enhance Security
Identity Challenges in User Data Storage and Security Maintenance
Microsoft’s Strategy to Eliminate NTLM in Favor of Kerberos
ClawHub’s Third-Party Skills Security Risks: User Data at Stake
Firefox Introduces Options to Control AI Features
Microsoft Acknowledges Shutdown Issue in Windows 10 and 11 Systems
Increasing Threats from Automated Data Extortion Targeting MongoDB
Apple Enhances Location Privacy With New Feature for iPhone and iPad
Zero-Day Vulnerabilities in Ivanti EPMM Exploited
Instagram’s Privacy Controls Data Exposure: Review of Recent Findings
Former Google Engineer Found Guilty of Stealing AI Data for Chinese Firms
eScan Antivirus Compromised: Supply Chain Security Breach Uncovered
Revelations from Epstein Files: Allegations of a “Personal Hacker”
Android Malware Incident: Hugging Face Repository Misuse
Chrome Extensions Prove Malicious with Data Hijacking Tricks
White House Revokes Software Security Rules But Keeps Key Resources
Microsoft Sets Retirement for NTLM Protocol in Windows for Enhanced Security
Startup Aisy Secures $2.3 Million Seed Fund to Enhance Vulnerability Management
Surge in Illegal Cryptocurrency Flows Reaches $158 Billion by 2025
Legal Repercussions Mount for Cognizant After TriZetto Incident
Global Crackdown Disrupts Illegal IPTV Services and Sends Strong Message
More Than 175,000 Exposed Hosts Pose Risks for Ollama LLM Misuse
Microsoft Tackles Excel Attachment Issue in New Outlook Client
Application Security
Microsoft Tackles Excel Attachment Issue in New Outlook Client
Andrew Doyle December 2, 2025
Microsoft is aware of and addressing an issue that hinders some users from opening Excel email attachments in the updated Outlook client. The issue can ...
CISA Updates KEV Catalog to Include OpenPLC ScadaBR Vulnerability
CVE Vulnerability Alerts
CISA Updates KEV Catalog to Include OpenPLC ScadaBR Vulnerability
Andrew Doyle December 1, 2025
CISA updates its Known Exploited Vulnerabilities (KEV) catalog with CVE-2021-26829, a security flaw impacting OpenPLC ScadaBR, used in industrial control systems.
OpenAI’s Ad Experiment Sparks Debate on AI, Privacy, and Monetization
Cybersecurity
OpenAI’s Ad Experiment Sparks Debate on AI, Privacy, and Monetization
Gabby Lee December 1, 2025
OpenAI begins testing advertisements within its ChatGPT platform, exploring new monetization avenues. This initiative may significantly influence the web economy, raising questions about user data ...
OBR Launches Investigation After Budget Forecast Leak
Cybersecurity
OBR Launches Investigation After Budget Forecast Leak
Mitchell Langley December 1, 2025
The Office for Budget Responsibility (OBR) has enlisted Ciaran Martin, ex-chief of the National Cyber Security Centre (NCSC), to investigate how its Budget day forecast ...
Man Sentenced for Running Evil Twin Network at Australian Airports
Cybersecurity
Man Sentenced for Running “Evil Twin” Network at Australian Airports
Mitchell Langley November 30, 2025
A 44-year-old man was sentenced in Australia to over seven years in prison for creating an "evil twin" WiFi network to steal data from travelers ...
French Football Federation Data Breach Exposes Administrative Management Software
Application Security
French Football Federation Data Breach Exposes Administrative Management Software
Gabby Lee November 30, 2025
The French Football Federation confirmed a cybersecurity breach after attackers accessed its administrative management software. The breach involved unauthorized access through a compromised account, potentially ...
Python Package Index Threatened by Legacy Code Vulnerabilities
Cybersecurity
Python Package Index Threatened by Legacy Code Vulnerabilities
Andrew Doyle November 30, 2025
A recent study exposes how legacy code in Python packages presents security challenges. Researchers identified vulnerabilities in bootstrap files, potentially enabling supply chain compromises on ...
GitLab Cloud Repositories Expose Over 17,000 Secrets, Raising Security Concerns
Cybersecurity
GitLab Cloud Repositories Expose Over 17,000 Secrets, Raising Security Concerns
Mitchell Langley November 30, 2025
A comprehensive scan of 5.6 million GitLab repositories has revealed over 17,000 exposed secrets, posing significant cybersecurity risks. This discovery underscores the importance of addressing ...
North Korean Threat Actors Intensify Efforts with Malicious npm Packages
Cybersecurity
North Korean Threat Actors Intensify Efforts with Malicious npm Packages
Gabby Lee November 30, 2025
North Korea-linked threat actors continue aggressive activity with the addition of 197 malicious npm packages. These deployments have reached over 31,000 downloads and deliver a ...
British Telco Brsk Under Cybersecurity Scrutiny Amid Claims of Data Breach
Cybersecurity
British Telco Brsk Under Cybersecurity Scrutiny Amid Claims of Data Breach
Andrew Doyle November 30, 2025
Brsk, a British telecommunications company, finds itself embroiled in a cybersecurity investigation following claims of a data breach involving over 230,000 files. Cybercriminals allege they ...
PostHog Hit by Shai-Hulud 2.0 npm Worm Through CICD Automation Flaw
Cybersecurity
PostHog Hit by Shai-Hulud 2.0 npm Worm Through CI/CD Automation Flaw
Mitchell Langley November 30, 2025
A significant security breach involving the Shai-Hulud 2.0 npm worm revealed vulnerabilities in CI/CD workflows. PostHog experienced an unprecedented incident with attackers injecting malicious code ...
Microsoft Alerts Users to Windows 11 Lock Screen Malfunction
Application Security
Microsoft Alerts Users to Windows 11 Lock Screen Malfunction
Mitchell Langley November 30, 2025
Microsoft has announced a technical issue affecting Windows 11 users where recent updates may cause the password sign-in option to disappear from the lock screen. ...
Project Cites State Access Fears as Cloud Sovereignty Debate Intensifies
Cybersecurity
Project Cites State Access Fears as Cloud Sovereignty Debate Intensifies
Andrew Doyle November 30, 2025
French cloud provider OVHcloud faces criticism as privacy concerns lead GrapheneOS to move servers. This development highlights the growing cloud sovereignty debate, with significant implications ...
Advanced Capabilities of Unrestricted LLMs Emerging Threats for Cybersecurity
Cybersecurity
Advanced Capabilities of Unrestricted LLMs: Emerging Threats for Cybersecurity
Mitchell Langley November 30, 2025
Emerging threats highlight the growing capabilities of unrestricted large language models like WormGPT 4 and KawaiiGPT. Their potential to generate functional scripts for ransomware and ...
Intense Surge in Phishing Campaigns with New Malicious Domains
News
Intense Surge in Phishing Campaigns with New Malicious Domains
Gabby Lee November 30, 2025
A recent investigation by ReliaQuest has highlighted the presence of new phishing domains and weaponized helpdesk tickets associated with Zendesk users. These latest findings suggest ...
New Microsoft Teams Guest Access Flaw Bypasses Defender Protections
Application Security
New Microsoft Teams Guest Access Flaw Bypasses Defender Protections
Andrew Doyle November 30, 2025
Microsoft Teams has a newly exposed vulnerability in its guest access feature that permits attackers to bypass Microsoft Defender for Office 365 protections. A security ...
WatchTowr Warns of Major Data Leaks Through Developer Tools
Application Security
WatchTowr Warns of Major Data Leaks Through Developer Tools
Mitchell Langley November 30, 2025
Recent research by WatchTowr has exposed significant leaks of sensitive data, highlighting the risks posed by popular developer platforms such as JSONFormatter and CodeBeautify. Despite ...
UK Government's Digital ID Plans Face Scrutiny Over Cost and Savings
Identity and Access Management
UK Government’s Digital ID Plans Face Scrutiny Over Cost and Savings
Gabby Lee November 30, 2025
The UK's ambitious digital ID plans have sparked debate as the Office for Budget Responsibility (OBR) reveals an annual cost of £600 million. Despite a ...
Bloody Wolf's Cyber Offensive A Deep Dive into Targeted Attacks in Central Asia
Cybersecurity
Bloody Wolf’s Cyber Offensive: A Deep Dive into Targeted Attacks in Central Asia
Andrew Doyle November 30, 2025
The Bloody Wolf cyber threat group has launched a methodical campaign to deliver NetSupport RAT in Kyrgyzstan and Uzbekistan, revealing a calculated expansion in its ...
Asahi Cyberattack Exposes Extensive Data Breach A Blow to Japan's Brewer Giant
Cybersecurity
Asahi Cyberattack Exposes Extensive Data Breach: A Blow to Japan’s Brewer Giant
Gabby Lee November 28, 2025
A ransomware attack on Asahi resulted in a data breach, compromising personal information of customers and employees. The incident highlights the ongoing cybersecurity challenges faced ...
SolarWinds Vulnerability Exploitation Prompts Immediate Response from Federal Agencies
CVE Vulnerability Alerts
SolarWinds Vulnerability Exploitation Prompts Immediate Response from Federal Agencies
Andrew Doyle February 4, 2026
UK Data Protection Authority Probes X's Grok AI for Generating Inappropriate Images
Cybersecurity
UK Data Protection Authority Probes X’s Grok AI for Generating Inappropriate Images
Mitchell Langley February 4, 2026
Everest Extortion Group and Iron Mountain Data Incident Key Insights
News
Everest Extortion Group and Iron Mountain Data Incident: Key Insights
Mitchell Langley February 4, 2026
Osiris Ransomware Disables Security Tools in Novel Attack
News
Osiris Ransomware Disables Security Tools in Novel Attack
Andrew Doyle January 28, 2026

TOP CYBERSECURITY HEADLINES

RapidFort Secures $42 Million to Enhance Software Security Automation
Cybersecurity
RapidFort Secures $42 Million to Enhance Software Security Automation
UK Data Protection Authority Probes X's Grok AI for Generating Inappropriate Images
Cybersecurity
UK Data Protection Authority Probes X’s Grok AI for Generating Inappropriate Images
The DockerDash Vulnerability Understanding Its Impact on Docker Desktop and CLI
Application Security
The DockerDash Vulnerability: Understanding Its Impact on Docker Desktop and CLI
U.S. CISA's Vulnerability Notice Revisions Spark Concerns
Cybersecurity
U.S. CISA’s Vulnerability Notice Revisions Spark Concerns

This Week’s Security Spotlight

Revelations from Epstein Files Allegations of a Personal Hacker
Cybersecurity
Revelations from Epstein Files: Allegations of a “Personal Hacker”
Andrew Doyle February 4, 2026
Nike Investigates Breach as Hackers Threaten Data Disclosure
Cybersecurity
Nike Investigates Breach as Hackers Threaten Data Disclosure
Andrew Doyle January 28, 2026
Microsoft Investigates Outlook Crashing on iPad Devices due to Coding Error
Application Security
Microsoft Investigates Outlook Crashing on iPad Devices due to Coding Error
Andrew Doyle January 28, 2026
TP-Link's Vulnerability Critical Patch for VIGI Cameras
Network Security
TP-Link’s Vulnerability: Critical Patch for VIGI Cameras
Gabby Lee January 20, 2026
More In News
Trending
Multi-Stage Phishing Campaign Targets Russia With Ransomware and Amnesia RAT
ShinyHunters Claims Responsibility for Recent Okta Phishing Attack
LastPass Users Targeted by Deceptive Phishing Campaign
Cybercriminals Exploit Social Media Messages for Malicious Payloads

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Featured Videos​

Podcasts

Podcasts
WatchGuard Firebox Vulnerability Could Let Hackers Take Over Networks
September 19, 2025
Podcasts
How SystemBC’s 1,500 Infected VPS Servers Fuel Ransomware and Fraud
September 19, 2025
Podcasts
Tiffany & Co. Data Breach Exposes Gift Card Details of 2,500+ Customers
September 18, 2025

Cyber Security News

Implementing Access Reviews to Enhance Security in Microsoft 365
Application Security
Implementing Access Reviews to Enhance Security in Microsoft 365
January 13, 2026
Telegram's Proxy Link Vulnerability Exposes IP Addresses
Application Security
Telegram’s Proxy Link Vulnerability Exposes IP Addresses
January 13, 2026
Endesa Cyberattack Results in Customer Data Exposure
Data Security
Endesa Cyberattack Results in Customer Data Exposure
January 13, 2026
CISA Directs Agencies to Secure Systems After Exploitation of Zero-Day Gogs Vulnerability
Application Security
CISA Directs Agencies to Secure Systems After Exploitation of Zero-Day Gogs Vulnerability
January 13, 2026
Meta Addresses Security Vulnerability in Instagram Password Resets
Application Security
Meta Addresses Security Vulnerability in Instagram Password Resets
January 13, 2026
AI and Security Block's CISO Discusses AI Agents' Potential
Cybersecurity
AI and Security: Block’s CISO Discusses AI Agents’ Potential
January 13, 2026
  • All
  • Application Security
  • Blog
  • CVE Vulnerability Alerts
  • Cybersecurity
  • Cybersecurity Newsletter
  • Data Security
  • Endpoint Security
  • Identity and Access Management
  • Information Security
  • Network Security
  • News
  • Phishing
  • Podcasts
  • Product Reviews
  • Ransomware
  • Ransomware Victims
  • Resources
  • Security Spotlight
  • Sponsored
  • Threat Actors
  • Threat Actors
  • Threat Detection Tools
OpenAI’s Ad Experiment Sparks Debate on AI, Privacy, and Monetization
December 1, 2025
OpenAI begins testing advertisements within its ChatGPT platform, exploring new monetization avenues. This initiative may significantly influence the web economy, raising questions about user data ...
OBR Launches Investigation After Budget Forecast Leak
December 1, 2025
The Office for Budget Responsibility (OBR) has enlisted Ciaran Martin, ex-chief of the National Cyber Security Centre (NCSC), to investigate how its Budget day forecast ...
Man Sentenced for Running “Evil Twin” Network at Australian Airports
November 30, 2025
A 44-year-old man was sentenced in Australia to over seven years in prison for creating an "evil twin" WiFi network to steal data from travelers ...
French Football Federation Data Breach Exposes Administrative Management Software
November 30, 2025
The French Football Federation confirmed a cybersecurity breach after attackers accessed its administrative management software. The breach involved unauthorized access through a compromised account, potentially ...
Python Package Index Threatened by Legacy Code Vulnerabilities
November 30, 2025
A recent study exposes how legacy code in Python packages presents security challenges. Researchers identified vulnerabilities in bootstrap files, potentially enabling supply chain compromises on ...
GitLab Cloud Repositories Expose Over 17,000 Secrets, Raising Security Concerns
November 30, 2025
A comprehensive scan of 5.6 million GitLab repositories has revealed over 17,000 exposed secrets, posing significant cybersecurity risks. This discovery underscores the importance of addressing ...
North Korean Threat Actors Intensify Efforts with Malicious npm Packages
November 30, 2025
North Korea-linked threat actors continue aggressive activity with the addition of 197 malicious npm packages. These deployments have reached over 31,000 downloads and deliver a ...
British Telco Brsk Under Cybersecurity Scrutiny Amid Claims of Data Breach
November 30, 2025
Brsk, a British telecommunications company, finds itself embroiled in a cybersecurity investigation following claims of a data breach involving over 230,000 files. Cybercriminals allege they ...
PostHog Hit by Shai-Hulud 2.0 npm Worm Through CI/CD Automation Flaw
November 30, 2025
A significant security breach involving the Shai-Hulud 2.0 npm worm revealed vulnerabilities in CI/CD workflows. PostHog experienced an unprecedented incident with attackers injecting malicious code ...
Microsoft Alerts Users to Windows 11 Lock Screen Malfunction
November 30, 2025
Microsoft has announced a technical issue affecting Windows 11 users where recent updates may cause the password sign-in option to disappear from the lock screen. ...
Project Cites State Access Fears as Cloud Sovereignty Debate Intensifies
November 30, 2025
French cloud provider OVHcloud faces criticism as privacy concerns lead GrapheneOS to move servers. This development highlights the growing cloud sovereignty debate, with significant implications ...
Advanced Capabilities of Unrestricted LLMs: Emerging Threats for Cybersecurity
November 30, 2025
Emerging threats highlight the growing capabilities of unrestricted large language models like WormGPT 4 and KawaiiGPT. Their potential to generate functional scripts for ransomware and ...
Intense Surge in Phishing Campaigns with New Malicious Domains
November 30, 2025
A recent investigation by ReliaQuest has highlighted the presence of new phishing domains and weaponized helpdesk tickets associated with Zendesk users. These latest findings suggest ...
New Microsoft Teams Guest Access Flaw Bypasses Defender Protections
November 30, 2025
Microsoft Teams has a newly exposed vulnerability in its guest access feature that permits attackers to bypass Microsoft Defender for Office 365 protections. A security ...
WatchTowr Warns of Major Data Leaks Through Developer Tools
November 30, 2025
Recent research by WatchTowr has exposed significant leaks of sensitive data, highlighting the risks posed by popular developer platforms such as JSONFormatter and CodeBeautify. Despite ...
UK Government’s Digital ID Plans Face Scrutiny Over Cost and Savings
November 30, 2025
The UK's ambitious digital ID plans have sparked debate as the Office for Budget Responsibility (OBR) reveals an annual cost of £600 million. Despite a ...
Bloody Wolf’s Cyber Offensive: A Deep Dive into Targeted Attacks in Central Asia
November 30, 2025
The Bloody Wolf cyber threat group has launched a methodical campaign to deliver NetSupport RAT in Kyrgyzstan and Uzbekistan, revealing a calculated expansion in its ...
Asahi Cyberattack Exposes Extensive Data Breach: A Blow to Japan’s Brewer Giant
November 28, 2025
A ransomware attack on Asahi resulted in a data breach, compromising personal information of customers and employees. The incident highlights the ongoing cybersecurity challenges faced ...
OpenAI Scrutinizes Vendor Relationships After Mixpanel’s Data Breach
November 28, 2025
OpenAI has initiated a comprehensive review of its vendor relationships following a data breach at its former analytics partner, Mixpanel. This incident highlights vulnerabilities in ...
Naver’s Cryptocurrency Exchange Acquisition Marred by Cyberattack
November 28, 2025
Naver's recent acquisition of a cryptocurrency exchange immediately faces challenges. A cyberattack has exposed vulnerabilities, sparking buyer’s remorse for the South Korean tech giant. The ...
RapidFort Secures $42 Million to Enhance Software Security Automation
UK Data Protection Authority Probes X’s Grok AI for Generating Inappropriate Images
The DockerDash Vulnerability: Understanding Its Impact on Docker Desktop and CLI
U.S. CISA’s Vulnerability Notice Revisions Spark Concerns
React Native’s Metro Server Vulnerability: A Growing Cyber Threat
Reconnaissance Attack On Citrix NetScaler Targets Login Panels with Proxy Networks
State-Sponsored Cyber Espionage: Notepad++ Update Traffic Hijacked
Cybercriminals Exploit Weak Security in 1,400 MongoDB Servers
Malicious VS Code Extensions Spread GlassWorm Loader
Surge in Fake Investment Platforms Exploiting Social Media
Fast Food Giant McDonald Calls for Creative Passwords to Enhance Security
Identity Challenges in User Data Storage and Security Maintenance
Russian Hackers Exploit Vulnerability in Microsoft Office to Target Ukraine
Microsoft’s Strategy to Eliminate NTLM in Favor of Kerberos
ClawHub’s Third-Party Skills Security Risks: User Data at Stake
Firefox Introduces Options to Control AI Features
Microsoft Acknowledges Shutdown Issue in Windows 10 and 11 Systems
Increasing Threats from Automated Data Extortion Targeting MongoDB
Apple Enhances Location Privacy With New Feature for iPhone and iPad
Zero-Day Vulnerabilities in Ivanti EPMM Exploited