data

March 9, 2026

Nginx UI Vulnerabilities Let Attackers Download Full System Backups

A critical security flaw has been identified in Nginx UI that permits unauthorized threat actors to download and decrypt entire…
Read More »
March 7, 2026

China-Nexus Hackers Target Telecommunication Providers with New Malware Attack

A highly sophisticated China-linked threat actor, identified as UAT-9244, has been actively targeting critical telecommunications infrastructure across South America since…
Read More »
March 7, 2026

Malicious Browser Add‑on Targets imToken Users’ Private Keys

Socket’s Threat Research Team has uncovered a highly deceptive Google Chrome extension designed to steal private keys and seed phrases…
Read More »
March 7, 2026

Claude AI Exposes 22 Firefox Vulnerabilities in Just Two Weeks

Artificial intelligence has officially entered the realm of advanced vulnerability research, moving beyond simple code assistance to autonomous threat hunting.…
Read More »
March 4, 2026

FBI Seizes LeakBase Cybercrime Forum in Global “Operation Leak” Takedown Coordinated by Europol

The FBI has seized the LeakBase cybercrime forum, which had over 142,000 members, as part of an international operation called…
Read More »
March 4, 2026

Perplexity’s Comet Browser Breached Through Calendar Invite Attack

Security researchers at Zenity Labs disclosed a critical flaw in Perplexity’s Comet “agentic” browser that allowed attackers to steal local…
Read More »
March 4, 2026

AI Accelerates High-Velocity Cyber Attacks

Cyberattacks are shifting from “breaking in” to simply “logging in,” with AI now automating high-speed operations that overwhelm human defenders.…
Read More »
March 4, 2026

AzCopy Utility Misused for Data Exfiltration in Ongoing Ransomware Attacks

Ransomware operators are increasingly abusing Microsoft’s trusted Azure data transfer utility, AzCopy, to quietly exfiltrate sensitive data before encryption, turning…
Read More »
March 4, 2026

Windows 11 23H2 to 25H2 Upgrade Reportedly Disrupts Internet Connectivity for Users

A persistent bug in Windows 11 in-place upgrades is reportedly wiping critical 802.1X wired authentication configurations, leaving enterprise workstations completely…
Read More »
March 3, 2026

New Starkiller Phishing Framework Uses Real Login Pages to Bypass MFA Security

A new phishing framework called Starkiller is raising the bar for “phishing-as-a-service” by serving victims the real login pages of major brands through attacker…
Read More »
March 3, 2026

Google Chrome Introduces Merkle Tree Certificates to Protect HTTPS from Quantum Attacks

Google Chrome’s Secure Web and Networking Team has announced a new effort to protect HTTPS traffic from upcoming quantum‑computing attacks.…
Read More »
March 3, 2026

AuraStealer Infostealer Targeting Users with 48 C2 Domains in Ongoing Campaigns

Threat actors are actively deploying a new infostealer dubbed “AuraStealer,” backed by a growing customer base, 48 identified command‑and‑control (C2)…
Read More »
December 23, 2025

Arcane Werewolf Hacker Group Expands Arsenal with Loki 2.1 Malware Toolkit

The cyber espionage group known as Arcane Werewolf (also tracked as Mythic Likho) has significantly upgraded its offensive capabilities, targeting…
Read More »
December 23, 2025

Docker Releases Free, Production-Grade Hardened Container Images

In a significant move to enhance software supply chain security, Docker has made its production-grade hardened container images available as…
Read More »
December 22, 2025

Microsoft Brokering File System Vulnerability Enables Local Privilege Escalation

Microsoft has recently patched a critical vulnerability in its Brokering File System (BFS) driver, which could have allowed attackers to…
Read More »
December 22, 2025

Nissan Discloses Data Breach Linked to Compromised Red Hat Infrastructure

Nissan Motor Co., Ltd. has revealed a significant data breach impacting around 21,000 customers of Nissan Fukuoka Sales Co., Ltd.…
Read More »
December 20, 2025

New Kibana Vulnerabilities Allow Attackers to Embed Malicious Scripts

Elastic has recently released critical security updates to address a severe cross-site scripting (XSS) vulnerability that affects multiple versions of…
Read More »
December 20, 2025

Iranian APT Targeting Networks and Critical Infrastructure Organizations

A new wave of sophisticated malware campaigns has been launched by Iranian state-sponsored threat actors, targeting critical infrastructure organizations worldwide.…
Read More »
December 20, 2025

Apache Log4j Flaw Enables Interception of Sensitive Logging Data

The Apache Software Foundation has released a critical security update for its widely used Log4j logging library. A newly discovered…
Read More »
December 20, 2025

Mapping the Emerging Alliance Between Qilin, DragonForce, and LockBit

In mid-September 2025, the ransomware landscape witnessed a significant development when DragonForce announced an alliance with Qilin and LockBit on…
Read More »

Previous page Next page