Cyber Security
Cybersecurity
Meta Implements Enhanced Security Measures on WhatsApp
WhatsApp rolls out Strict Account Settings to secure high-risk users against advanced, targeted cyber threats. Meta's focus is on enhancing user safety amid increasing cyber ...
CVE Vulnerability Alerts
Exploitations of WinRAR Vulnerability CVE-2025-8088 Emerge as a Major Threat
Cyber attackers leverage the CVE-2025-8088 high-severity WinRAR vulnerability. This security loophole is targeted for initial access and malware delivery, affecting numerous organizations globally.
Application Security
Meta Introduces Enhanced WhatsApp Security for High-Risk Users
Meta's initiative to enhance the security of high-risk individuals on WhatsApp involves a trade-off between functionality and security, providing an extra layer of defense through ...
Application Security
ShinyHunters Allegedly Breach Panera Bread and Other Companies via Microsoft Entra SSO
ShinyHunters, an extortionist gang, claims to have accessed data from Panera Bread, CarMax, and Edmunds, using Microsoft Entra Single Sign-On (SSO). Understanding the technical breach ...
Cybersecurity
Memcyco Secures $37 Million to Expand Anti-Impersonation Technology Globally
Memcyco has successfully raised $37 million to expand its cutting-edge anti-impersonation technology worldwide, with a focus on Latin America. This significant investment will accelerate the ...
CVE Vulnerability Alerts
Major Security Flaw Found in vm2 Node.js Sandbox Tool
A serious vulnerability in the vm2 Node.js sandbox library, identified as CVE-2026-22709, could jeopardize system security by enabling the execution of arbitrary code outside the ...
News
Nebraska Grand Jury Indicts Additional Members in Tren de Aragua ATM Scheme
Nebraska federal authorities charge 31 more individuals linked to a Venezuelan crime syndicate for their part in a widespread ATM fraud operation. This development brings ...
Cybersecurity
Crunchbase Data Breach Raises Security Concerns After ShinyHunters Attack
Cybercriminal group ShinyHunters reportedly compromised Crunchbase, stealing over 2 million personal records. The breach involved a 402 MB data file being leaked, prompting concerns about ...
Cybersecurity
NPM Security Measures Post-‘Shai-Hulud’ Attacks Show Vulnerabilities
Despite enhanced defense mechanisms by NPM following the 'Shai-Hulud' supply-chain attacks, Git dependencies reveal key vulnerabilities that threat actors could exploit, casting doubt over the ...
Cybersecurity
Phishing Attacks Target Indian Users with a Multi-Stage Backdoor
Cybersecurity researchers from eSentire uncovered an ongoing campaign targeting Indian users using a multi-stage backdoor. Phishing emails mimic the Income Tax Department to deceive victims.
Cybersecurity
Upwind Secures $250 Million to Expand Its Cloud Security Solutions
Upwind, a cloud-native application protection platform (CNAPP) provider, has attracted $250 million in fresh investment. This funding elevates the company’s valuation to $1.5 billion and ...
Cybersecurity
Microsoft Releases Emergency Patch to Mitigate Office Zero-Day Vulnerability
Microsoft has released urgent updates to address an actively exploited security flaw, CVE-2026-21509, impacting several Office versions. This vulnerability allows attackers to bypass security features, ...
Cybersecurity
Vulnerabilities in Dormakaba Systems Expose Security Flaws
Dormakaba's access control systems exhibited significant vulnerabilities, leading to security risks at major European firms. Over 20 flaws, including six critical ones, allowed unauthorized access ...
Cybersecurity
EU Investigates AI Risk Management: Scrutiny Over Grok AI’s Content Generation
The European Commission launches an investigation into X's Grok AI, questioning the company's risk assessment process following its controversial use in generating explicit imagery. This ...
Cybersecurity
Cloudflare Analyzes the Impact of a Recent BGP Route Leak
Cloudflare recently detailed a BGP route leak lasting 25 minutes. The incident resulted in noticeable network disruptions, with packet loss and roughly 12 Gbps of ...
Application Security
Microsoft’s Out-of-Band Updates Resolve Microsoft Outlook Issue With Cloud-Hosted PST Files
Microsoft has issued crucial out-of-band updates for Windows 10, Windows 11, and Windows Server to address a specific problem affecting Microsoft Outlook. This issue resulted ...
News
The ShinyHunters and Their Voice Phishing Tactics Target Okta, Microsoft, and Google
ShinyHunters are deploying voice phishing to breach SSO accounts and access corporate data in platforms like Okta, Microsoft, and Google. This tactic aids in stealing ...
Application Security
Windows 11 Boot Failures After Patch Tuesday Updates
Recent updates from January 2026 rendered some Windows 11 devices unusable, throwing an “UNMOUNTABLE_BOOT_VOLUME” error. Microsoft is actively examining these issues and working on a ...
Cybersecurity
US Cybersecurity Agency Opts Out of RSA Conference While Jen Easterly Plans Attendance
The US Cybersecurity and Infrastructure Security Agency (CISA) confirmed it will not be attending the upcoming RSA Conference in March. However, new RSA CEO and ...
News
Osiris Ransomware Disables Security Tools in Novel Attack
Researchers have uncovered the Osiris ransomware, deployed in a late 2025 cyberattack targeting a Southeast Asian food service franchise. Utilizing BYOVD tactics and exploiting the ...
Cybersecurity
WantToCry Ransomware Hits SMB Ports, Evades EDR Tools
Cybersecurity
Microsoft Disrupts Fox Tempest Malware-Signing Service
TOP CYBERSECURITY HEADLINES
Cybersecurity
Deleted Google API Keys Stay Active for Up to 23 Minutes
Application Security
Chromium Service Worker PoC Exploit Published for 42-Month-Old Bug
Cybersecurity
Texas AG Sues Meta Over WhatsApp Encryption Claims
This Week’s Security Spotlight
CVE Vulnerability Alerts
Cisco Secure Workload CVE-2026-20223 Earns CVSS 10.0
Application Security
Anthropic Silently Fixed Claude Code Null-Byte Sandbox Escape
Application Security
CVE-2026-3102: ExifTool Image Injection Runs Shell Commands on macOS
Trending
Daily Briefing Newsletter
Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.
Featured Videos
Podcasts
Cyber Security News
- All
- Application Security
- Blog
- CVE Vulnerability Alerts
- Cybersecurity
- Cybersecurity Newsletter
- Data Security
- Endpoint Security
- Identity and Access Management
- Information Security
- Network Security
- News
- Phishing
- Podcasts
- Product Reviews
- Ransomware
- Ransomware Victims
- Resources
- Security Spotlight
- Sponsored
- Threat Actors
- Threat Actors
- Threat Detection Tools
ShinyHunters Allegedly Breach Panera Bread and Other Companies via Microsoft Entra SSO
ShinyHunters, an extortionist gang, claims to have accessed data from Panera Bread, CarMax, and Edmunds, using Microsoft Entra Single Sign-On (SSO). Understanding the technical breach ...
Memcyco Secures $37 Million to Expand Anti-Impersonation Technology Globally
Memcyco has successfully raised $37 million to expand its cutting-edge anti-impersonation technology worldwide, with a focus on Latin America. This significant investment will accelerate the ...
Major Security Flaw Found in vm2 Node.js Sandbox Tool
A serious vulnerability in the vm2 Node.js sandbox library, identified as CVE-2026-22709, could jeopardize system security by enabling the execution of arbitrary code outside the ...
Nebraska Grand Jury Indicts Additional Members in Tren de Aragua ATM Scheme
Nebraska federal authorities charge 31 more individuals linked to a Venezuelan crime syndicate for their part in a widespread ATM fraud operation. This development brings ...
Crunchbase Data Breach Raises Security Concerns After ShinyHunters Attack
Cybercriminal group ShinyHunters reportedly compromised Crunchbase, stealing over 2 million personal records. The breach involved a 402 MB data file being leaked, prompting concerns about ...
NPM Security Measures Post-‘Shai-Hulud’ Attacks Show Vulnerabilities
Despite enhanced defense mechanisms by NPM following the 'Shai-Hulud' supply-chain attacks, Git dependencies reveal key vulnerabilities that threat actors could exploit, casting doubt over the ...
Phishing Attacks Target Indian Users with a Multi-Stage Backdoor
Cybersecurity researchers from eSentire uncovered an ongoing campaign targeting Indian users using a multi-stage backdoor. Phishing emails mimic the Income Tax Department to deceive victims.
Upwind Secures $250 Million to Expand Its Cloud Security Solutions
Upwind, a cloud-native application protection platform (CNAPP) provider, has attracted $250 million in fresh investment. This funding elevates the company’s valuation to $1.5 billion and ...
Microsoft Releases Emergency Patch to Mitigate Office Zero-Day Vulnerability
Microsoft has released urgent updates to address an actively exploited security flaw, CVE-2026-21509, impacting several Office versions. This vulnerability allows attackers to bypass security features, ...
Vulnerabilities in Dormakaba Systems Expose Security Flaws
Dormakaba's access control systems exhibited significant vulnerabilities, leading to security risks at major European firms. Over 20 flaws, including six critical ones, allowed unauthorized access ...
EU Investigates AI Risk Management: Scrutiny Over Grok AI’s Content Generation
The European Commission launches an investigation into X's Grok AI, questioning the company's risk assessment process following its controversial use in generating explicit imagery. This ...
Cloudflare Analyzes the Impact of a Recent BGP Route Leak
Cloudflare recently detailed a BGP route leak lasting 25 minutes. The incident resulted in noticeable network disruptions, with packet loss and roughly 12 Gbps of ...
Microsoft’s Out-of-Band Updates Resolve Microsoft Outlook Issue With Cloud-Hosted PST Files
Microsoft has issued crucial out-of-band updates for Windows 10, Windows 11, and Windows Server to address a specific problem affecting Microsoft Outlook. This issue resulted ...
The ShinyHunters and Their Voice Phishing Tactics Target Okta, Microsoft, and Google
ShinyHunters are deploying voice phishing to breach SSO accounts and access corporate data in platforms like Okta, Microsoft, and Google. This tactic aids in stealing ...
Windows 11 Boot Failures After Patch Tuesday Updates
Recent updates from January 2026 rendered some Windows 11 devices unusable, throwing an “UNMOUNTABLE_BOOT_VOLUME” error. Microsoft is actively examining these issues and working on a ...
US Cybersecurity Agency Opts Out of RSA Conference While Jen Easterly Plans Attendance
The US Cybersecurity and Infrastructure Security Agency (CISA) confirmed it will not be attending the upcoming RSA Conference in March. However, new RSA CEO and ...
Osiris Ransomware Disables Security Tools in Novel Attack
Researchers have uncovered the Osiris ransomware, deployed in a late 2025 cyberattack targeting a Southeast Asian food service franchise. Utilizing BYOVD tactics and exploiting the ...
UK Home Office Invests Heavily in Tech to Mitigate Channel Immigration Challenges
The UK Home Office embarks on a £100 million investment in cutting-edge technology to address the complex challenges posed by the influx of small boats ...
CISA Identifies Critical Broadcom VMware vCenter Vulnerability CVE-2024-37079
CISA has added a significant vulnerability, CVE-2024-37079, found in Broadcom VMware vCenter Server to its Known Exploited Vulnerabilities catalog. This move emphasizes the critical nature ...
Nike Investigates Breach as Hackers Threaten Data Disclosure
Nike is investigating a possible security breach as the WorldLeaks cybercrime group claims to have accessed and stolen sensitive data. The hackers are threatening to ...