Main Menu
Cyber Security
Microsoft Disrupts Fox Tempest Malware-Signing Service
B1ack’s Stash Releases 4.6M Stolen Credit Cards Free
Trapdoor Android Ad Fraud Scheme Generated 659M Fake Bids
Nx Console VS Code Extension Poisoned to Steal 1Password, AWS Keys
Storm-2949 Abuses Azure Password Reset to Seize Cloud Accounts
Drupal Issues Highly Critical Patch, Exploits Expected Within Hours
SEPPMail Gateway Hit with 7 CVEs, Including CVSS 10.0 RCE Flaw
Grafana Breach Traced to TanStack npm Supply Chain Attack
CISA Orders Patch for Sixth Cisco SD-WAN Zero-Day of 2026
Exchange Server XSS CVE-2026-42897 Exploited via Crafted Email
Ghostwriter APT Deploys Cobalt Strike in Geofenced Ukraine Campaign
OpenAI Confirms Breach via Mini Shai-Hulud npm Supply Chain Attack
KongTuke IAB Uses Microsoft Teams to Deploy ModeloRAT in 5 Minutes
node-ipc npm Package Hid Credential Stealer Across Three Versions
PraisonAI CVE-2026-44338 Exploited 3h44m After Public Disclosure
Burst Statistics CVE-2026-8181 Draws 7,400 Attacks in 24 Hours
NGINX CVE-2026-42945 Under Active Exploitation After F5 Patch Drop
CoinbaseCartel Steals Grafana Source Code via GitHub Token
MiniPlasma Windows Exploit Grants SYSTEM Access with No Patch
Leaked Shai-Hulud Code Fuels npm Infostealer Wave Targeting Devs
INTERPOL Operation Ramz: 201 Arrests in 13-Nation MENA Sweep
Pwn2Own Berlin 2026 Closes with $1.3M in Zero-Day Prizes
GitHub Actions Supply Chain Attack Hijacks actions-cool Tags
ShinyHunters Claims 600,000-Record 7-Eleven Salesforce Breach
Tycoon2FA Adds Device-Code Attack to Bypass Microsoft 365 MFA
18-Year NGINX Flaw CVE-2026-42945 Enables Unauthenticated RCE
FamousSparrow APT Hit Azerbaijani Energy Firm in Three Waves
MuddyWater Targeted South Korean Electronics Maker via DLL Sideloading
Linux Kernel Fragnesia CVE-2026-46300 Grants Root via Page Cache
YellowKey and GreenPlasma: Unpatched Windows Zero-Days Released
GutenKit, Hunk Companion, WP Ghost Exploits Drive New WordPress RCE Surge
Application Security
GutenKit, Hunk Companion, WP Ghost Exploits Drive New WordPress RCE Surge
Andrew Doyle October 27, 2025
A global wave of remote code execution attacks is targeting outdated WordPress plugins, including GutenKit, Hunk Companion, and WP Ghost. Despite available patches, sluggish updates ...
Exploitable Bug in Rust async-tar Library — TARmageddon Gives Attackers RCE
Application Security
Exploitable Bug in Rust async-tar Library — TARmageddon Gives Attackers RCE
Mitchell Langley October 27, 2025
The TARmageddon flaw (CVE-2025-62518) in Rust’s async-tar and tokio-tar libraries allows remote code execution via desynchronized TAR parsing. Exploited through nested archives, it threatens CI/CD, ...
Critical WSUS Flaw (CVE-2025-61884) Drives Elevated RCE Attacks on Windows Server
CVE Vulnerability Alerts
Critical WSUS Flaw (CVE-2025-61884) Drives Elevated RCE Attacks on Windows Server
Mitchell Langley October 27, 2025
A critical RCE flaw, CVE-2025-59287, in Microsoft WSUS allows unauthenticated attackers to gain SYSTEM access via unsafe deserialization. Despite patches, active exploitation continues, prompting urgent ...
Hackers Exploit “SessionReaper” Flaw in Adobe Magento to Hijack E-Commerce Stores
Application Security
Hackers Exploit “SessionReaper” Flaw in Adobe Magento to Hijack E-Commerce Stores
Gabby Lee October 27, 2025
SessionReaper (CVE-2025-54236) is being actively exploited in Adobe Commerce and Magento stores, enabling account takeover and web-shell deployment as more than 60% of installations remain ...
Blue Cross Blue Shield of Montana Breach Exposes Data of 462,000 Members
Cybersecurity
Blue Cross Blue Shield of Montana Breach Exposes Data of 462,000 Members
Andrew Doyle October 27, 2025
A cyberattack on Blue Cross Blue Shield of Montana exposed personal and medical data of 462,000 members, prompting legal investigations and renewed scrutiny of healthcare ...
Post-Patch 'ToolShell' Exploit CVE-2025-53770 Abused in Microsoft SharePoint
Application Security
Post-Patch ‘ToolShell’ Exploit: CVE-2025-53770 Abused in Microsoft SharePoint
Mitchell Langley October 27, 2025
Chinese state-backed hackers are exploiting a critical Microsoft SharePoint flaw, CVE-2025-53770 “ToolShell,” enabling unauthenticated remote code execution and data theft. Despite emergency patches, exploitation persists, ...
CISA Warns of Lanscope Endpoint Manager Vulnerability Exploited in Attacks
CVE Vulnerability Alerts
CISA Warns of Lanscope Endpoint Manager Vulnerability Exploited in Attacks
Andrew Doyle October 27, 2025
CISA warns that a critical Lanscope Endpoint Manager flaw (CVE-2025-61932) is being exploited in the wild, prompting urgent patching and endpoint management lockdowns globally.
Moroccan Cybercriminals Employ Advanced Deception to Steal Gift Cards
Cybersecurity
Moroccan Cybercriminals Employ Advanced Deception to Steal Gift Cards
Mitchell Langley October 27, 2025
Moroccan cybercriminals—tracked as Jingle Thief/Atlas Lion/Storm-0539—use sophisticated phishing and Entra ID abuse to hijack Microsoft 365 workflows and issue fraudulent gift cards at scale. Their ...
Iran-Linked APT Deploys Phoenix Backdoor Against 100+ Government Organisations
Cybersecurity
Iran-Linked APT Deploys Phoenix Backdoor Against 100+ Government Organisations
Mitchell Langley October 27, 2025
Iran-linked MuddyWater deployed Phoenix v4 backdoor via spear-phishing to over 100 government organisations, using trusted tools and stealth techniques to enable global espionage operations.
Spoofed AI Sidebars Pose New Cyber Risks for Atlas and Comet Browser Users
Application Security
Spoofed AI Sidebars Pose New Cyber Risks for Atlas and Comet Browser Users
Gabby Lee October 27, 2025
Researchers warn of rising “AI sidebar spoofing” attacks in browsers like Atlas and Comet, where fake AI panels mimic trusted interfaces to steal credentials, deploy ...
Maryland Paratransit Ransomware Disrupts Mobility New Ride Requests Halted
News
Maryland Paratransit Ransomware Disrupts Mobility: New Ride Requests Halted
Andrew Doyle October 27, 2025
A ransomware attack on Maryland’s Transit Administration crippled paratransit scheduling, disrupting transportation for disabled riders. The Rhysida group claimed responsibility, demanding ransom after locking key ...
LG Uplus Confirms Major Server Breach Following Industrywide Cyberattacks
Cybersecurity
LG Uplus Confirms Major Server Breach Following Industrywide Cyberattacks
Mitchell Langley October 27, 2025
A cyberattack on Blue Cross Blue Shield of Montana exposed personal and medical data of 462,000 members, prompting legal investigations and renewed scrutiny of healthcare ...
Toys “R” Us Canada Data Breach Customer Records Exposed to Cyber Threats
Data Security
Toys “R” Us Canada Data Breach: Customer Records Exposed to Cyber Threats
Gabby Lee October 27, 2025
Toys “R” Us Canada confirmed a cyber incident exposing customer names, addresses, emails, and phone numbers. While no financial data was leaked, experts warn the ...
PhantomCaptcha ClickFix Attack Targets Ukraine War-Relief Organizations
Cybersecurity
PhantomCaptcha ClickFix Attack Targets Ukraine War-Relief Organizations
Andrew Doyle October 27, 2025
PhantomCaptcha spear-phishing campaign targeted over a dozen Ukraine relief organisations using fake CAPTCHA and WebSocket RAT chains to infiltrate humanitarian networks and steal intelligence.
Lithuanian Police Dismantle Massive Bot Farm, Seizing 75,000 SIM Cards
Cybersecurity
Lithuanian Police Dismantle Massive Bot Farm, Seizing 75,000 SIM Cards
Mitchell Langley October 27, 2025
Lithuanian police dismantled a massive bot farm in Vilnius, seizing 75,000 SIM cards and hundreds of SIM boxes used for large-scale cyber fraud and fake ...
FinWise Data Breach Shows Why Encryption Must Remain the Final Line of Defense
Cybersecurity
FinWise Data Breach Shows Why Encryption Must Remain the Final Line of Defense
Gabby Lee October 27, 2025
FinWise’s insider breach exposed nearly 700,000 customer records and revealed weak encryption controls, underscoring that data encryption—and key governance—must stand as the final line of ...
Hackers Target Hundreds of Federal Agents in Targeted Attacks
Cybersecurity
Hackers Target Hundreds of Federal Agents in Targeted Attacks
Andrew Doyle October 22, 2025
Hackers exposed data of nearly 1,000 DHS, DOJ, and FBI staff, escalating threats against federal officers amid politically charged cyberattacks and cartel-linked bounty schemes.
Hackers Threaten to Leak 47GB of Data from Leading Golf Apparel Company
Cybersecurity
Hackers Threaten to Leak 47GB of Data from Leading Golf Apparel Company
Syed Arslan October 22, 2025
INC Ransom claims to have stolen 47GB of data from Summit Golf Brands, threatening a public leak as part of its escalating multi-extortion ransomware campaign.
Attackers Exploit OAuth Tokens After Password Resets
Cybersecurity
Attackers Exploit OAuth Tokens After Password Resets
Andrew Doyle October 22, 2025
Proofpoint warns hackers are abusing internal OAuth apps to maintain access even after password resets and MFA, enabling persistent control of Microsoft 365 mailboxes and ...
Hackers Exploit Windows SMB Flaw to Gain SYSTEM Privileges
Cybersecurity
Hackers Exploit Windows SMB Flaw to Gain SYSTEM Privileges
Mitchell Langley October 22, 2025
Attackers are exploiting CVE-2025-33073 in Windows SMB to gain SYSTEM privileges, prompting CISA to mandate urgent patching and SMB signing enforcement before November 10.
TeamPCP Claims Breach of 4,000 GitHub Private Repositories
Cybersecurity
TeamPCP Claims Breach of 4,000 GitHub Private Repositories
Mitchell Langley May 20, 2026
TeamPCP Claims Breach of 4,000 GitHub Private Repositories
Cybersecurity
TeamPCP Claims Breach of 4,000 GitHub Private Repositories
Mitchell Langley May 20, 2026
Microsoft Disrupts Fox Tempest Malware-Signing Service
Cybersecurity
Microsoft Disrupts Fox Tempest Malware-Signing Service
Andrew Doyle May 20, 2026
Cybersecurity
KongTuke IAB Uses Microsoft Teams to Deploy ModeloRAT in 5 Minutes
Gabby Lee May 19, 2026

TOP CYBERSECURITY HEADLINES

Microsoft Disrupts Fox Tempest Malware-Signing Service
Cybersecurity
Microsoft Disrupts Fox Tempest Malware-Signing Service
Cybersecurity
B1ack’s Stash Releases 4.6M Stolen Credit Cards Free
Trapdoor Android Ad Fraud Scheme Generated 659M Fake Bids
Cybersecurity
Trapdoor Android Ad Fraud Scheme Generated 659M Fake Bids
Nx Console VS Code Extension Poisoned to Steal 1Password, AWS Keys
Application Security
Nx Console VS Code Extension Poisoned to Steal 1Password, AWS Keys

This Week’s Security Spotlight

Drupal Issues Highly Critical Patch, Exploits Expected Within Hours
Application Security
Drupal Issues Highly Critical Patch, Exploits Expected Within Hours
Andrew Doyle May 20, 2026
Cybersecurity
Tycoon2FA Adds Device-Code Attack to Bypass Microsoft 365 MFA
Andrew Doyle May 19, 2026
Application Security
SAP S/4HANA SQL Injection CVE-2026-34260 Rated CVSS 9.6
Gabby Lee May 13, 2026
CVE Vulnerability Alerts
Dell DSA-2026-047: CVSS 9.8 Hard-Coded Credentials in ECS Storage
Mitchell Langley May 13, 2026
More In News
Trending
Operation HookedWing: 4-Year Campaign Compromises 500 Orgs
ShinyHunters Leaks 50GB After Vishing Breach at Cushman & Wakefield
MacSync Infostealer Weaponizes Google Ads and Claude.ai Chats
TCLBanker Trojan Spreads via WhatsApp and Outlook, Hits 59 Banks

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Featured Videos​

Podcasts

Podcasts
Cisco ISE Critical Flaws Now Actively Exploited: No Workarounds, Just Root Access
July 23, 2025
Podcasts
ToolShell: SharePoint Zero-Day Chain Gives Hackers Full Remote Access
July 22, 2025
Podcasts
CVE-2025-54309: CrushFTP Zero-Day Exploited in Global Admin Access Attacks
July 22, 2025

Cyber Security News

PromptSpy Android Malware Abuses Gemini AI at Runtime for Persistence
Cybersecurity
PromptSpy Android Malware Abuses Gemini AI at Runtime for Persistence
February 20, 2026
Former Google Engineers Indicted for Alleged Trade Secret Theft Linked to Iran
Cybersecurity
Former Google Engineers Indicted for Alleged Trade Secret Theft Linked to Iran
February 20, 2026
Operation Red Card 2.0 Dismantles Online Scam Networks Across Africa
Cybersecurity
Operation Red Card 2.0 Dismantles Online Scam Networks Across Africa
February 20, 2026
MIT CSAIL's 2025 AI Agent Index Puts System Transparency Under the Microscope
Cybersecurity
MIT CSAIL’s 2025 AI Agent Index Puts System Transparency Under the Microscope
February 20, 2026
FBI Issues Warning on Escalating ATM Jackpotting Losses
Cybersecurity
FBI Issues Warning on Escalating ATM Jackpotting Losses
February 20, 2026
Microsoft Addresses High-Severity Flaw in Windows Admin Center
Cybersecurity
Microsoft Addresses High-Severity Flaw in Windows Admin Center
February 20, 2026
  • All
  • Application Security
  • Blog
  • CVE Vulnerability Alerts
  • Cybersecurity
  • Cybersecurity Newsletter
  • Data Security
  • Endpoint Security
  • Identity and Access Management
  • Information Security
  • Network Security
  • News
  • Phishing
  • Podcasts
  • Product Reviews
  • Ransomware
  • Ransomware Victims
  • Resources
  • Security Spotlight
  • Sponsored
  • Threat Actors
  • Threat Actors
  • Threat Detection Tools
NPC Probes GCash Data Breach As E-Wallet Denies Leakage
October 27, 2025
The Philippine privacy regulator is investigating GCash over unauthorized user transactions while the e-wallet operator denies any data leak, raising concerns about mobile wallet security ...
WhatsApp Hack Uncovers 2 Low-Risk Vulnerabilities, No Arbitrary Code Execution
October 27, 2025
Meta has patched two low-risk WhatsApp flaws—CVE-2025-55177 and CVE-2025-30401—affecting desktop and mobile sync features. Both required user interaction and posed no remote code execution risk, ...
$1 Million WhatsApp Exploit Withdrawn—Researcher Silent, Meta Calls It “Low-Risk”
October 27, 2025
The Pwn2Own Ireland 2025 hacking competition was set to feature one of its most anticipated moments — a $1 million zero-click remote code execution exploit ...
OpenAI Atlas Omnibox Jailbreak Exposes New AI Security Flaw
October 27, 2025
A serious vulnerability has been discovered in the OpenAI Atlas omnibox, a hybrid interface designed to handle both URLs and user prompts. Researchers at NeuralTrust ...
Microsoft Rushes Emergency Fix for WSUS Remote Code Execution Flaw (CVE-2025-59287)
October 27, 2025
A critical remote code execution (RCE) flaw, tracked as CVE-2025-59287, has put thousands of enterprise networks at risk by exposing the Windows Server Update Service ...
TP-Link Patches Critical Omada Gateway Vulnerabilities Preventing Remote Attacks
October 27, 2025
TP-Link has patched four critical flaws—two enabling unauthenticated remote code execution—affecting Omada gateway devices. The vulnerabilities (CVE-2025-6542, -6541, -7850, -7851) impact multiple ER, G, and ...
CoPhish Exploit via Microsoft Copilot: OAuth Token Theft Exposes Trusted Domains
October 27, 2025
A new phishing technique called “CoPhish” exploits Microsoft Copilot Studio to deliver OAuth-based attacks through legitimate Microsoft domains. By embedding malicious login flows in Copilot ...
GutenKit, Hunk Companion, WP Ghost Exploits Drive New WordPress RCE Surge
October 27, 2025
A global wave of remote code execution attacks is targeting outdated WordPress plugins, including GutenKit, Hunk Companion, and WP Ghost. Despite available patches, sluggish updates ...
Exploitable Bug in Rust async-tar Library — TARmageddon Gives Attackers RCE
October 27, 2025
The TARmageddon flaw (CVE-2025-62518) in Rust’s async-tar and tokio-tar libraries allows remote code execution via desynchronized TAR parsing. Exploited through nested archives, it threatens CI/CD, ...
Critical WSUS Flaw (CVE-2025-61884) Drives Elevated RCE Attacks on Windows Server
October 27, 2025
A critical RCE flaw, CVE-2025-59287, in Microsoft WSUS allows unauthenticated attackers to gain SYSTEM access via unsafe deserialization. Despite patches, active exploitation continues, prompting urgent ...
Hackers Exploit “SessionReaper” Flaw in Adobe Magento to Hijack E-Commerce Stores
October 27, 2025
SessionReaper (CVE-2025-54236) is being actively exploited in Adobe Commerce and Magento stores, enabling account takeover and web-shell deployment as more than 60% of installations remain ...
Blue Cross Blue Shield of Montana Breach Exposes Data of 462,000 Members
October 27, 2025
A cyberattack on Blue Cross Blue Shield of Montana exposed personal and medical data of 462,000 members, prompting legal investigations and renewed scrutiny of healthcare ...
Post-Patch ‘ToolShell’ Exploit: CVE-2025-53770 Abused in Microsoft SharePoint
October 27, 2025
Chinese state-backed hackers are exploiting a critical Microsoft SharePoint flaw, CVE-2025-53770 “ToolShell,” enabling unauthenticated remote code execution and data theft. Despite emergency patches, exploitation persists, ...
CISA Warns of Lanscope Endpoint Manager Vulnerability Exploited in Attacks
October 27, 2025
CISA warns that a critical Lanscope Endpoint Manager flaw (CVE-2025-61932) is being exploited in the wild, prompting urgent patching and endpoint management lockdowns globally.
Moroccan Cybercriminals Employ Advanced Deception to Steal Gift Cards
October 27, 2025
Moroccan cybercriminals—tracked as Jingle Thief/Atlas Lion/Storm-0539—use sophisticated phishing and Entra ID abuse to hijack Microsoft 365 workflows and issue fraudulent gift cards at scale. Their ...
Iran-Linked APT Deploys Phoenix Backdoor Against 100+ Government Organisations
October 27, 2025
Iran-linked MuddyWater deployed Phoenix v4 backdoor via spear-phishing to over 100 government organisations, using trusted tools and stealth techniques to enable global espionage operations.
Spoofed AI Sidebars Pose New Cyber Risks for Atlas and Comet Browser Users
October 27, 2025
Researchers warn of rising “AI sidebar spoofing” attacks in browsers like Atlas and Comet, where fake AI panels mimic trusted interfaces to steal credentials, deploy ...
Maryland Paratransit Ransomware Disrupts Mobility: New Ride Requests Halted
October 27, 2025
A ransomware attack on Maryland’s Transit Administration crippled paratransit scheduling, disrupting transportation for disabled riders. The Rhysida group claimed responsibility, demanding ransom after locking key ...
LG Uplus Confirms Major Server Breach Following Industrywide Cyberattacks
October 27, 2025
A cyberattack on Blue Cross Blue Shield of Montana exposed personal and medical data of 462,000 members, prompting legal investigations and renewed scrutiny of healthcare ...
Toys “R” Us Canada Data Breach: Customer Records Exposed to Cyber Threats
October 27, 2025
Toys “R” Us Canada confirmed a cyber incident exposing customer names, addresses, emails, and phone numbers. While no financial data was leaked, experts warn the ...
Microsoft Disrupts Fox Tempest Malware-Signing Service
B1ack’s Stash Releases 4.6M Stolen Credit Cards Free
Trapdoor Android Ad Fraud Scheme Generated 659M Fake Bids
Nx Console VS Code Extension Poisoned to Steal 1Password, AWS Keys
Storm-2949 Abuses Azure Password Reset to Seize Cloud Accounts
Drupal Issues Highly Critical Patch, Exploits Expected Within Hours
SEPPMail Gateway Hit with 7 CVEs, Including CVSS 10.0 RCE Flaw
Grafana Breach Traced to TanStack npm Supply Chain Attack
CISA Orders Patch for Sixth Cisco SD-WAN Zero-Day of 2026
Exchange Server XSS CVE-2026-42897 Exploited via Crafted Email
Ghostwriter APT Deploys Cobalt Strike in Geofenced Ukraine Campaign
OpenAI Confirms Breach via Mini Shai-Hulud npm Supply Chain Attack
KongTuke IAB Uses Microsoft Teams to Deploy ModeloRAT in 5 Minutes
node-ipc npm Package Hid Credential Stealer Across Three Versions
PraisonAI CVE-2026-44338 Exploited 3h44m After Public Disclosure
Burst Statistics CVE-2026-8181 Draws 7,400 Attacks in 24 Hours
NGINX CVE-2026-42945 Under Active Exploitation After F5 Patch Drop
CoinbaseCartel Steals Grafana Source Code via GitHub Token
MiniPlasma Windows Exploit Grants SYSTEM Access with No Patch
Leaked Shai-Hulud Code Fuels npm Infostealer Wave Targeting Devs