Main Menu
Cyber Security
Apple Releases iOS and iPadOS Updates to Patch Coruna Exploits
Veeam Software Fixes Critical RCE Vulnerabilities in Backup & Replication Solution
England Hockey Investigates Possible Data Breach by AiLock Ransomware Group
International Operation Dismantles the Dangerous SocksEscort Proxy Service
Apple Patches Older iPhones and iPads Against Coruna Exploit Kit Attacks
Cybercriminals Target Airline Loyalty Programs: A New Threat to Travelers
Global Arrests Made in a Social Media Scam Targeting Thousands
SQL Injection Flaw in Ally WordPress Plugin Puts 400,000 Sites at Risk
WhatsApp Introduces Parent-Controlled Accounts for Younger Users
Senate Confirms Joshua Rudd to Lead the NSA and US Cyber Command
Police Scotland Fined £66,000 for Mishandling Sensitive Victim Data
‘PhantomRaven’ Supply-Chain Campaign Floods npm Registry with Malicious Packages
Stryker Healthcare Faces Cybersecurity Breach Linked to Hacktivist Group
Critical Security Vulnerabilities Patched in n8n Workflow Automation Platform
Google Cloud Strengthens Its Position with the $32 Billion Acquisition of Wiz
Fake Starlink Android Apps Spread BeatBanker Malware
ELECQ Data Breach May Have Exposed EV Charger Users’ Private Information
Ericsson Inc. Faces Data Breach Through a Third-Party Service Provider
Malicious npm Package Disguises as OpenClaw Installer for Data Theft
ShinyHunters Breaches Salesforce and 100 Companies Using Mandiant’s Own Tool
Salesforce’s Experience Cloud Platform Faces Vulnerability Challenges
North Korean Group UNC4899 Suspected Behind Cryptocurrency Cloud Heist in 2025
Microsoft Still Working to Fix Bright White Flash Issue in Windows 11 File Explorer
Evasive ClickFix Tactic Leverages Windows Terminal to Avoid Detection
Perplexity’s Comet Browser Had a Flaw That Left Users Vulnerable to Local File Theft
Tier 1 SOC Analysts Are Carrying More Weight Than They Should
Joint Operation Dismantles Criminal Syndicate Exploiting Ukrainian War Refugees
JavaScript Worm Disrupts Wikimedia Platforms Across Multiple Wikis
WordPress Plugin Vulnerability Puts Over 60,000 Sites at Risk
US Government Contractor’s Son Charged with Cryptocurrency Theft from US Marshals Service
Iranian MOIS-Linked MuddyWater Cyber Group Deploys New Custom Implant
Cybersecurity
Iranian MOIS-Linked MuddyWater Cyber Group Deploys New Custom Implant
Mitchell Langley March 6, 2026
An Iranian MOIS-linked cybercrew infiltrates U.S. firms with a sophisticated implant.
Underground Sale of Compromised cPanel Credentials Fuels Phishing Infrastructure
News
Underground Sale of Compromised cPanel Credentials Fuels Phishing Infrastructure
Mitchell Langley March 5, 2026
Flare reveals the booming underground market for hacked cPanel credentials fueling phishing schemes.
HungerRush POS Platform Targeted in Data Extortion Scheme
Cybersecurity
HungerRush POS Platform Targeted in Data Extortion Scheme
Gabby Lee March 5, 2026
HungerRush POS customers report extortion emails threatening data exposure.
Fake OpenClaw Installers on GitHub Are Stealing User Data
Cybersecurity
Fake OpenClaw Installers on GitHub Are Stealing User Data
Andrew Doyle March 5, 2026
Fake OpenClaw installers hosted on a malicious GitHub repository are targeting users with information stealers and GhostSocks malware to harvest sensi...
Coruna iOS Exploits Target Apple Devices in Espionage and Financial Attacks
Cybersecurity
Coruna iOS Exploits Target Apple Devices in Espionage and Financial Attacks
Mitchell Langley March 5, 2026
Newly discovered Coruna iOS exploits target Apple devices in espionage and financial attacks.
FBI Seizes LeakBase and Disrupts a Major Cybercrime Forum
Cybersecurity
FBI Seizes LeakBase and Disrupts a Major Cybercrime Forum
Gabby Lee March 5, 2026
A recent FBI takedown of the LeakBase cybercrime forum disrupts major online criminal activities.
Zurich Forms Cyber Insurance Powerhouse with $11 Billion Beazley Acquisition
Cybersecurity
Zurich Forms Cyber Insurance Powerhouse with $11 Billion Beazley Acquisition
Mitchell Langley March 5, 2026
Zurich's acquisition of Beazley, valued at $11 billion, is set to reshape the cyberinsurance landscape by the second half of 2026.
Retaliatory Hacktivism Escalates Amid Epic Fury and Roaring Lion Military Operations
Cybersecurity
Retaliatory Hacktivism Escalates Amid Epic Fury and Roaring Lion Military Operations
Gabby Lee March 5, 2026
Hacktivist activities rise sharply following the U.S.-Israel military campaign against Iran.
University of Mississippi Medical Center Resumes Operations After Nine-Day Ransomware Attack
Cybersecurity
University of Mississippi Medical Center Resumes Operations After Nine-Day Ransomware Attack
Andrew Doyle March 5, 2026
UMMC restores IT systems and electronic medical records access after a ransomware attack caused nine days of operational interruptions.
Phishing Warnings as LastPass Users Get Targeted by Fake Alerts
News
Phishing Warnings as LastPass Users Get Targeted by Fake Alerts
Mitchell Langley March 5, 2026
LastPass alerts users of phishing emails posing as security warnings to obtain master passwords.
Law Enforcement Dismantles Tycoon2FA Phishing-as-a-Service Platform
News
Law Enforcement Dismantles Tycoon2FA Phishing-as-a-Service Platform
Gabby Lee March 5, 2026
Europol disables Tycoon2FA, a PhaaS platform responsible for tens of millions of phishing messages monthly.
LexisNexis Data Breach Claimed by Fulcrumsec Group
Cybersecurity
LexisNexis Data Breach Claimed by Fulcrumsec Group
Andrew Doyle March 5, 2026
LexisNexis confirms a breach in its Legal & Professional division using React2Shell, claiming 2 GB of stolen data.
Attackers Exploit Command Injection Vulnerability in Sangoma FreePBX
Cybersecurity
Attackers Exploit Command Injection Vulnerability in Sangoma FreePBX
Andrew Doyle March 3, 2026
Hundreds of Sangoma FreePBX systems compromised with web shells due to command injection flaw.
Alabama Man Pleads Guilty to Cyberstalking and Extortion After Hijacking Hundreds of Women's Accounts
Cybersecurity
Alabama Man Pleads Guilty to Cyberstalking and Extortion After Hijacking Hundreds of Women’s Accounts
Mitchell Langley March 3, 2026
A 22-year-old from Alabama pleaded guilty to cyberstalking, extortion, and computer fraud after hijacking the social media accounts of hundreds of you...
Phishing Attack Masquerades as Google Security Page to Steal Sensitive Information
News
Phishing Attack Masquerades as Google Security Page to Steal Sensitive Information
Mitchell Langley March 3, 2026
Cybercriminals deploy fake Google security pages to harvest one-time passcodes and cryptocurrency wallet addresses.
Chrome's Gemini Live Feature Left Users Exposed to Malicious Extensions
Cybersecurity
Chrome’s Gemini Live Feature Left Users Exposed to Malicious Extensions
Mitchell Langley March 3, 2026
A Chrome vulnerability allowed malicious extensions to exploit Gemini Live, potentially hijacking the AI assistant to spy on users and steal their fil...
Google Chrome Moves to Strengthen HTTPS Certificates Against Quantum Threats
Cybersecurity
Google Chrome Moves to Strengthen HTTPS Certificates Against Quantum Threats
Gabby Lee March 3, 2026
Google Chrome rolls out an experimental program to improve HTTPS certificate security against future quantum threats.
Florida Woman Gets 22 Months in Prison for Trafficking Stolen Microsoft COA Labels
Cybersecurity
Florida Woman Gets 22 Months in Prison for Trafficking Stolen Microsoft COA Labels
Mitchell Langley March 3, 2026
Florida resident sentenced to 22 months in prison for trafficking thousands of stolen Microsoft COA labels over several years.
Deepfake and Injection Attacks Are Targeting Identity Verification Systems
Cybersecurity
Deepfake and Injection Attacks Are Targeting Identity Verification Systems
Andrew Doyle March 3, 2026
Understand how deepfake and injection attacks affect identity verification processes and what enterprises can do to defend against them.
OpenClaw Vulnerability Allowed Websites to Hijack AI Agents
Cybersecurity
OpenClaw Vulnerability Allowed Websites to Hijack AI Agents
Gabby Lee March 3, 2026
Malicious websites exploited a WebSocket flaw to hijack AI agents via OpenClaw.
Microsoft Teams Is Adding Automatic Bot Tagging in Meeting Lobbies
Application Security
Microsoft Teams Is Adding Automatic Bot Tagging in Meeting Lobbies
Gabby Lee March 13, 2026
England Hockey Investigates Possible Data Breach by AiLock Ransomware Group
Cybersecurity
England Hockey Investigates Possible Data Breach by AiLock Ransomware Group
Gabby Lee March 13, 2026
VENON Banking Malware Targets Brazilian Users With Rust-Based Code
Cybersecurity
VENON Banking Malware Targets Brazilian Users With Rust-Based Code
Gabby Lee March 13, 2026
Slopoly Malware Linked to Interlock Ransomware Attack
News
Slopoly Malware Linked to Interlock Ransomware Attack
Mitchell Langley March 13, 2026

TOP CYBERSECURITY HEADLINES

Apple Releases iOS and iPadOS Updates to Patch Coruna Exploits
Application Security
Apple Releases iOS and iPadOS Updates to Patch Coruna Exploits
Veeam Software Fixes Critical RCE Vulnerabilities in Backup & Replication Solution
Application Security
Veeam Software Fixes Critical RCE Vulnerabilities in Backup & Replication Solution
England Hockey Investigates Possible Data Breach by AiLock Ransomware Group
Cybersecurity
England Hockey Investigates Possible Data Breach by AiLock Ransomware Group
International Operation Dismantles the Dangerous SocksEscort Proxy Service
Cybersecurity
International Operation Dismantles the Dangerous SocksEscort Proxy Service

This Week’s Security Spotlight

Canadian Outsourcing Leader Telus Digital Faces a Severe Data Breach
Cybersecurity
Canadian Outsourcing Leader Telus Digital Faces a Severe Data Breach
Andrew Doyle March 13, 2026
Senate Confirms Joshua Rudd to Lead the NSA and US Cyber Command
Cybersecurity
Senate Confirms Joshua Rudd to Lead the NSA and US Cyber Command
Andrew Doyle March 12, 2026
Critical Security Vulnerabilities Patched in n8n Workflow Automation Platform
CVE Vulnerability Alerts
Critical Security Vulnerabilities Patched in n8n Workflow Automation Platform
Mitchell Langley March 12, 2026
OpenClaw Security Issues Persist as SecureClaw Open Source Tool Debuts
Cybersecurity
OpenClaw Security Issues Persist as SecureClaw Open Source Tool Debuts
Andrew Doyle February 19, 2026
More In News
Trending
Law Enforcement Dismantles Tycoon2FA Phishing-as-a-Service Platform
Phishing Attack Masquerades as Google Security Page to Steal Sensitive Information
Optimizely Suffers a Data Breach Through a Voice Phishing Attack
Cybercriminals Exploit OAuth 2.0 Device Authorization Flow in Vishing Campaigns

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Featured Videos​

Podcasts

Podcasts
Microsoft Rushes Emergency Fix for WSUS Remote Code Execution Flaw (CVE-2025-59287)
October 27, 2025
Podcasts
Perplexity Comet AI Browser Launch Exploited in Coordinated Impersonation Scam
October 27, 2025
Podcasts
Lazarus Group Targets European UAV Firms in North Korea’s Drone Espionage Push
October 27, 2025

Cyber Security News

Senate Confirms Joshua Rudd to Lead the NSA and US Cyber Command
Cybersecurity
Senate Confirms Joshua Rudd to Lead the NSA and US Cyber Command
March 12, 2026
Police Scotland Fined £66,000 for Mishandling Sensitive Victim Data
Cybersecurity
Police Scotland Fined £66,000 for Mishandling Sensitive Victim Data
March 12, 2026
'PhantomRaven' Supply-Chain Campaign Floods npm Registry with Malicious Packages
Application Security
‘PhantomRaven’ Supply-Chain Campaign Floods npm Registry with Malicious Packages
March 12, 2026
Stryker Healthcare Faces Cybersecurity Breach Linked to Hacktivist Group
Cybersecurity
Stryker Healthcare Faces Cybersecurity Breach Linked to Hacktivist Group
March 12, 2026
Critical Security Vulnerabilities Patched in n8n Workflow Automation Platform
CVE Vulnerability Alerts
Critical Security Vulnerabilities Patched in n8n Workflow Automation Platform
March 12, 2026
Google Cloud Strengthens Its Position with the $32 Billion Acquisition of Wiz
Cybersecurity
Google Cloud Strengthens Its Position with the $32 Billion Acquisition of Wiz
March 12, 2026
  • All
  • Application Security
  • Blog
  • CVE Vulnerability Alerts
  • Cybersecurity
  • Cybersecurity Newsletter
  • Data Security
  • Endpoint Security
  • Identity and Access Management
  • Information Security
  • Network Security
  • News
  • Phishing
  • Podcasts
  • Product Reviews
  • Ransomware
  • Ransomware Victims
  • Resources
  • Security Spotlight
  • Sponsored
  • Threat Actors
  • Threat Actors
  • Threat Detection Tools
Fake OpenClaw Installers on GitHub Are Stealing User Data
March 5, 2026
Fake OpenClaw installers hosted on a malicious GitHub repository are targeting users with information stealers and GhostSocks malware to harvest sensi...
Coruna iOS Exploits Target Apple Devices in Espionage and Financial Attacks
March 5, 2026
Newly discovered Coruna iOS exploits target Apple devices in espionage and financial attacks.
FBI Seizes LeakBase and Disrupts a Major Cybercrime Forum
March 5, 2026
A recent FBI takedown of the LeakBase cybercrime forum disrupts major online criminal activities.
Zurich Forms Cyber Insurance Powerhouse with $11 Billion Beazley Acquisition
March 5, 2026
Zurich's acquisition of Beazley, valued at $11 billion, is set to reshape the cyberinsurance landscape by the second half of 2026.
Retaliatory Hacktivism Escalates Amid Epic Fury and Roaring Lion Military Operations
March 5, 2026
Hacktivist activities rise sharply following the U.S.-Israel military campaign against Iran.
University of Mississippi Medical Center Resumes Operations After Nine-Day Ransomware Attack
March 5, 2026
UMMC restores IT systems and electronic medical records access after a ransomware attack caused nine days of operational interruptions.
Phishing Warnings as LastPass Users Get Targeted by Fake Alerts
March 5, 2026
LastPass alerts users of phishing emails posing as security warnings to obtain master passwords.
Law Enforcement Dismantles Tycoon2FA Phishing-as-a-Service Platform
March 5, 2026
Europol disables Tycoon2FA, a PhaaS platform responsible for tens of millions of phishing messages monthly.
LexisNexis Data Breach Claimed by Fulcrumsec Group
March 5, 2026
LexisNexis confirms a breach in its Legal & Professional division using React2Shell, claiming 2 GB of stolen data.
Attackers Exploit Command Injection Vulnerability in Sangoma FreePBX
March 3, 2026
Hundreds of Sangoma FreePBX systems compromised with web shells due to command injection flaw.
Alabama Man Pleads Guilty to Cyberstalking and Extortion After Hijacking Hundreds of Women’s Accounts
March 3, 2026
A 22-year-old from Alabama pleaded guilty to cyberstalking, extortion, and computer fraud after hijacking the social media accounts of hundreds of you...
Phishing Attack Masquerades as Google Security Page to Steal Sensitive Information
March 3, 2026
Cybercriminals deploy fake Google security pages to harvest one-time passcodes and cryptocurrency wallet addresses.
Chrome’s Gemini Live Feature Left Users Exposed to Malicious Extensions
March 3, 2026
A Chrome vulnerability allowed malicious extensions to exploit Gemini Live, potentially hijacking the AI assistant to spy on users and steal their fil...
Google Chrome Moves to Strengthen HTTPS Certificates Against Quantum Threats
March 3, 2026
Google Chrome rolls out an experimental program to improve HTTPS certificate security against future quantum threats.
Florida Woman Gets 22 Months in Prison for Trafficking Stolen Microsoft COA Labels
March 3, 2026
Florida resident sentenced to 22 months in prison for trafficking thousands of stolen Microsoft COA labels over several years.
Deepfake and Injection Attacks Are Targeting Identity Verification Systems
March 3, 2026
Understand how deepfake and injection attacks affect identity verification processes and what enterprises can do to defend against them.
Russian APT28 Allegedly Exploited MSHTML Vulnerability Before Microsoft Patch
March 3, 2026
Russia-linked APT28 may have exploited MSHTML zero-day CVE-2026-21513, a high-severity flaw, before Microsoft issued a fix.
Criminals Exploit Dubai Crisis With Elaborate Fake Police Scheme
March 3, 2026
Scammers impersonate police in Dubai, exploiting a crisis to access bank accounts.
OpenClaw Vulnerability Allowed Websites to Hijack AI Agents
March 3, 2026
Malicious websites exploited a WebSocket flaw to hijack AI agents via OpenClaw.
Madison Square Garden Cyber Incident Revealed Months Later
March 3, 2026
Madison Square Garden disclosed a data breach months after being targeted in a hacking campaign.
Apple Releases iOS and iPadOS Updates to Patch Coruna Exploits
Veeam Software Fixes Critical RCE Vulnerabilities in Backup & Replication Solution
England Hockey Investigates Possible Data Breach by AiLock Ransomware Group
International Operation Dismantles the Dangerous SocksEscort Proxy Service
Slopoly Malware Linked to Interlock Ransomware Attack
Apple Patches Older iPhones and iPads Against Coruna Exploit Kit Attacks
Cybercriminals Target Airline Loyalty Programs: A New Threat to Travelers
Global Arrests Made in a Social Media Scam Targeting Thousands
SQL Injection Flaw in Ally WordPress Plugin Puts 400,000 Sites at Risk
WhatsApp Introduces Parent-Controlled Accounts for Younger Users
Senate Confirms Joshua Rudd to Lead the NSA and US Cyber Command
Police Scotland Fined £66,000 for Mishandling Sensitive Victim Data
‘PhantomRaven’ Supply-Chain Campaign Floods npm Registry with Malicious Packages
Stryker Healthcare Faces Cybersecurity Breach Linked to Hacktivist Group
Critical Security Vulnerabilities Patched in n8n Workflow Automation Platform
Google Cloud Strengthens Its Position with the $32 Billion Acquisition of Wiz
Fake Starlink Android Apps Spread BeatBanker Malware
ELECQ Data Breach May Have Exposed EV Charger Users’ Private Information
Ericsson Inc. Faces Data Breach Through a Third-Party Service Provider
Malicious npm Package Disguises as OpenClaw Installer for Data Theft