News Feed
- Max-severity flaw in ChromaDB for AI apps allows server hijacking
- Cybercrime service disrupted for abusing Microsoft platform to sign malware
- Discord rolls out end-to-end encryption on voice, video calls
- FBI: Americans lost over $388 million to scams using crypto ATMs in 2025
- Microsoft Self-Service Password Reset abused in Azure data theft attacks
- Microsoft plans to improve Windows 11 driver quality in 2026
- Microsoft blames macOS update for undismissible Teams location prompts
- New Shai-Hulud malware wave compromises 600 npm packages
- 7-Eleven confirms data breach claimed by the ShinyHunters gang
- Critical Microsoft Vulnerabilities Doubled: From Exposure to Escalation
- Webinar: The hidden bottlenecks in network incident response
- Microsoft confirms patching issues in restricted Windows networks
- INTERPOL ‘Operation Ramz’ seizes 53 malware, phishing servers
- SHub macOS infostealer variant spoofs Apple security updates
- 5 Steps to Managing Shadow AI Tools Without Slowing Down Employees
- GitHub Source Code Breach – TeamPCP Claims Access to Internal Source Code
- Max-severity flaw in ChromaDB for AI apps allows server hijacking
- UAC-0184 Malware Chain Uses bitsadmin and HTA Files for Gated Payload Delivery
- macOS Malware Installs Fake Google Software Update LaunchAgent for Persistence
- Cybercrime service disrupted for abusing Microsoft platform to sign malware
- Discord rolls out end-to-end encryption on voice, video calls
- The Gentlemen Ransomware Attacks Windows, Linux, NAS, BSD, and ESXi Attacks
- FBI: Americans lost over $388 million to scams using crypto ATMs in 2025
- Microsoft Self-Service Password Reset abused in Azure data theft attacks
- Kimsuky Hackers Use LNK and JSE Lures to Target Recruiters, Crypto Users, and Defense Officials
- Criminal IP Returns to Infosecurity Europe 2026 with Advanced AI-Driven TI & ASM
- Malware Campaign Uses JavaScript, PowerShell, and Shellcode to Deliver Crypto Clipper
- DirtyDecrypt Linux Kernel Vulnerability PoC Exploit Code Released
- 3 Tactics Elite SOCs Use to Operationalize Threat Intelligence
- Operation Ramz Seizes 53 Servers Linked to Cyber Scams and Malware Threats
- GitHub Source Code Breach – TeamPCP Claims Access to Internal Source Code
- UAC-0184 Malware Chain Uses bitsadmin and HTA Files for Gated Payload Delivery
- macOS Malware Installs Fake Google Software Update LaunchAgent for Persistence
- The Gentlemen Ransomware Attacks Windows, Linux, NAS, BSD, and ESXi Attacks
- Kimsuky Hackers Use LNK and JSE Lures to Target Recruiters, Crypto Users, and Defense Officials
- Criminal IP Returns to Infosecurity Europe 2026 with Advanced AI-Driven TI & ASM
- Malware Campaign Uses JavaScript, PowerShell, and Shellcode to Deliver Crypto Clipper
- DirtyDecrypt Linux Kernel Vulnerability PoC Exploit Code Released
- 3 Tactics Elite SOCs Use to Operationalize Threat Intelligence
- Operation Ramz Seizes 53 Servers Linked to Cyber Scams and Malware Threats
- Critical PostgreSQL Vulnerabilities Enables Code Execution and SQL Injections
- Two-Thirds of Nonhuman Accounts Are Unseen and Unmanaged, According to Orchid Security’s Identity Gap Report
- 600+ npm Packages Compromised in New Mini Shai-Hulud Supply Chain Attack
- Hackers Hijacking Four-Faith Industrial Routers for Botnet Activity
- Compromised GitHub Action Exfiltrates Workflow Credentials to Attacker Domain
- Trapdoor Android Ad Fraud Scheme Hit 659 Million Daily Bid Requests Using 455 Apps
- DirtyDecrypt PoC Released for Linux Kernel CVE-2026-31635 LPE Vulnerability
- The New Phishing Click: How OAuth Consent Bypasses MFA
- Drupal to Release Urgent Core Security Updates on May 20, Sites Told to Prepare
- SEPPMail Secure E-Mail Gateway Vulnerabilities Enable RCE and Mail Traffic Access
- Compromised Nx Console 18.95.0 Targeted VS Code Developers with Credential Stealer
- GitHub Actions Supply Chain Attack Redirects Tags to Steal CI/CD Credentials
- Mini Shai-Hulud Pushes Malicious AntV npm Packages via Compromised Maintainer Account
- INTERPOL Operation Ramz Disrupts MENA Cybercrime Networks with 201 Arrests
- ⚡ Weekly Recap: Exchange 0-Day, npm Worm, Fake AI Repo, Cisco Exploit and More
- How to Reduce Phishing Exposure Before It Turns into Business Disruption
- Developer Workstations Are Now Part of the Software Supply Chain
- Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flaws
- Four Malicious npm Packages Deliver Infostealers and Phantom Bot DDoS Malware
- Pre-Stuxnet Fast16 Malware Tampered with Nuclear Weapons Simulations
