risk
-
OpenAI Launches GPT-5.4-Cyber to Bolster Cyber Defenses
OpenAI has introduced GPT-5.4-Cyber, a purpose-built variant of its flagship GPT-5.4 model, fine-tuned specifically for advanced defensive cybersecurity workflows. The…
Read More » -
Ivanti Neurons for ITSM Vulnerabilities Let Remote Attackers Hijack User Sessions
Ivanti has issued a security advisory detailing two medium-severity vulnerabilities affecting its Neurons for IT Service Management (ITSM) platform. These…
Read More » -
Fortinet Releases Critical Security Patches for 11 Vulnerabilities
Fortinet has announced a comprehensive security update addressing 11 newly identified vulnerabilities across several of its core enterprise products. These…
Read More » -
Microsoft Releases April 2026 Patch Tuesday Update: 168 Vulnerabilities Patched Including Active Zero-Day Exploit
Microsoft has addressed a critical security gap by releasing its April 2026 Patch Tuesday updates, covering 168 vulnerabilities across its…
Read More » -
Emerging Android Banking Trojan Mirax: A Stealthy RAT with Residential Proxy Capabilities
A new Android banking trojan called Mirax is rapidly gaining traction in the cybercrime ecosystem, combining powerful remote access features…
Read More » -
AI Security Agent Uncovers Critical Auth Bypass in etcd
An autonomous AI security agent built by Strix has pinpointed a serious authorization flaw in etcd, the popular distributed key-value…
Read More » -
CISA Warns of Two Actively Exploited Microsoft Vulnerabilities
The Cybersecurity and Infrastructure Security Agency (CISA) has added two newly confirmed, actively exploited security flaws in Microsoft products to…
Read More » -
Critical ShowDoc Vulnerability Exposes Organizations to Unauthenticated RCE
Cybersecurity researchers have uncovered a severe vulnerability in ShowDoc, a widely used online document-sharing platform designed for IT teams. Tracked…
Read More » -
CISA Warns of Critical Fortinet Vulnerability: CVE-2026-21643
On April 13, 2026, the Cybersecurity and Infrastructure Security Agency (CISA) added CVE-2026-21643 to its Known Exploited Vulnerabilities (KEV) catalog.…
Read More » -
Rockstar Games Data Breach: ShinyHunters Leaks 78.6 Million Records
Rockstar Games has suffered a significant data breach after the infamous threat group ShinyHunters leaked over 78.6 million internal records…
Read More » -
Critical Security Flaws Discovered in Synology SSL VPN Client
In a significant development for cybersecurity, Synology has released a critical security update addressing dangerous vulnerabilities in its widely-used SSL…
Read More » -
Basic-Fit Data Breach Exposes Personal Data of 1 Million European Members
European fitness giant Basic-Fit has confirmed a major data breach compromising approximately 1 million member accounts across its operating regions.…
Read More » -
SaaS Platforms Abused: GitHub and Jira Become Phishing Proxies
Threat actors are weaponizing GitHub and Jira’s internal notification systems to craft undetectable phishing campaigns. By hijacking official mail servers,…
Read More » -
Critical Apache Tomcat Security Updates Patch Three High-Risk Vulnerabilities
The Apache Software Foundation has issued critical security updates for Tomcat to address three newly disclosed vulnerabilities affecting widely deployed…
Read More » -
EngageSDK Vulnerability puts millions of crypto wallets at risk
A recently identified flaw in the popular Android library EngageSDK has sparked serious worries within the cryptocurrency sector, potentially endangering…
Read More » -
5,219 Rockwell PLCs exposed online
Censys has warned that more than 5,000 Rockwell Automation/Allen-Bradley PLCs are currently exposed to the internet, as Iranian-affiliated APT actors…
Read More » -
TP-Link Devices at Risk as Multiple Security Flaws Enable Takeover
Cybersecurity researchers have uncovered five significant security vulnerabilities in the TP-Link Archer AX53 v1.0 router. If left unpatched, these critical…
Read More » -
ClickFix, Malicious DMGs Push notnullOSX to macOS Users
Hackers are abusing ClickFix commands and booby-trapping DMG installers to deliver a new macOS stealer called notnullOSX, built to loot…
Read More »