risk
-
511,000+ End-of-Life IIS Instances Found Online, Raising Security Risks
Security researchers at The Shadowserver Foundation have identified a massive internet-facing attack surface, discovering more than 511,000 End-of-Life Microsoft Internet…
Read More » -
AstraZeneca Data Breach Allegedly Claimed by LAPSUS$ as Internal Data Access Reported
The notorious hacking collective known as LAPSUS$ has resurfaced, allegedly claiming responsibility for a significant data breach involving multinational pharmaceutical…
Read More » -
Oracle Fixes High-Severity RCE Vulnerability Affecting Identity and Web Services Platforms
Oracle recently issued an urgent security alert regarding a critical Remote Code Execution (RCE) flaw that impacts both Oracle Identity…
Read More » -
New Critical Jenkins Vulnerabilities Put CI/CD Servers at Risk of RCE Exploits
Jenkins disclosed a critical security advisory addressing multiple vulnerabilities impacting its core automation server and the LoadNinja plugin. These flaws…
Read More » -
ExpressVPN Uncovers Massive AI Data Leak: 3.7M Records Exposed in Plain Sight
A recent investigation published by ExpressVPN has uncovered a staggering 3.7 million pieces of private user data that were made…
Read More » -
CISA Calls on Organizations to Strengthen Microsoft Intune Security After Stryker Incident
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert calling on organizations to aggressively harden their endpoint…
Read More » -
LeakNet boosts ransomware with ClickFix lures, stealthy Deno loader
Ransomware group LeakNet is scaling its operation by integrating mass-market social engineering lures via ClickFix techniques with a stealthy Deno-based…
Read More » -
Google Warns Ransomware Groups Shift to Data Theft as Profits Decline
Google is warning that ransomware gangs are reinventing their business model as traditional encryption‑for‑ransom attacks become less profitable and data‑theft…
Read More » -
CISA Alerts Users to Exploited Chrome 0-Day Flaws
The Cybersecurity and Infrastructure Security Agency (CISA) has released an urgent security advisory concerning two highly critical zero-day vulnerabilities currently…
Read More » -
Google Unveils Android 17 Advanced Protection Mode to Stop Malicious Services
Google is preparing to launch Android 17, introducing a comprehensive suite of new features aimed at dramatically enhancing device security,…
Read More » -
CamelClone Uses Public File-Sharing Sites in Government Cyberattacks
A new cyber espionage campaign dubbed Operation CamelClone is targeting government and strategic sectors across several geopolitically significant regions. The…
Read More » -
New Critical AdGuard Home Flaw Lets Attackers Bypass Authentication
AdGuard Home, a widely adopted network-wide solution for blocking advertisements and trackers, recently released an urgent security patch to address…
Read More » -
New Critical MediaTek Vulnerability Exposes Android Phone PINs to Theft in 45 seconds
A newly discovered hardware vulnerability in the MediaTek Dimensity 7300 chipset is putting millions of Android users at risk. By…
Read More » -
4,000+ Routers Compromised by KadNap Malware Exploiting Vulnerabilities
A newly uncovered malware campaign known as KadNap has silently infected over 14,000 internet-connected routers and edge devices, primarily targeting…
Read More » -
AI-Driven Phishing Attacks Bypass Email Filters, Land in Inboxes
AI-generated phishing is rapidly reshaping email risk, with more attacks slipping past filters and landing directly in users’ inboxes, even…
Read More » -
Microsoft .NET 0-Day Flaw Opens Doors for Denial of Service Attacks
Microsoft released it’s March 2026 Patch Tuesday update addressing the critical zero-day vulnerability tracked as CVE-2026-26127 within the .NET framework.…
Read More » -
UNC6426 Hackers Exploit NPM Package to Gain AWS Admin Access in 72 Hours
Attackers turned a routine NPM update into a direct path to full AWS administrator access in under 72 hours, highlighting…
Read More »