security
-
Fortinet Releases Critical Security Patches for 11 Vulnerabilities
Fortinet has announced a comprehensive security update addressing 11 newly identified vulnerabilities across several of its core enterprise products. These…
Read More » -
New PlugX USB Worm Variant Spreads Globally Using Stealthy DLL Sideloading Techniques
A new variant of the PlugX USB worm is causing renewed concern as it spreads across several continents, leveraging DLL…
Read More » -
Janela RAT: Financial Cybercrime Campaign Using Fake MSI Installers and Malicious Browser Extensions
Janela Remote Access Trojan (RAT) campaigns leverage fake Windows MSI installers and malicious browser extensions to infiltrate financial networks and…
Read More » -
AI Security Agent Uncovers Critical Auth Bypass in etcd
An autonomous AI security agent built by Strix has pinpointed a serious authorization flaw in etcd, the popular distributed key-value…
Read More » -
Critical ShowDoc Vulnerability Exposes Organizations to Unauthenticated RCE
Cybersecurity researchers have uncovered a severe vulnerability in ShowDoc, a widely used online document-sharing platform designed for IT teams. Tracked…
Read More » -
CISA Warns of Critical Fortinet Vulnerability: CVE-2026-21643
On April 13, 2026, the Cybersecurity and Infrastructure Security Agency (CISA) added CVE-2026-21643 to its Known Exploited Vulnerabilities (KEV) catalog.…
Read More » -
Rockstar Games Data Breach: ShinyHunters Leaks 78.6 Million Records
Rockstar Games has suffered a significant data breach after the infamous threat group ShinyHunters leaked over 78.6 million internal records…
Read More » -
SAP April 2026 Security Patch Day: Critical Vulnerabilities Demand Immediate Action
SAP released its monthly Security Patch Day updates for April 2026, addressing 19 new security notes and one update to…
Read More » -
China-Linked APT41 Deploys Stealthy Linux Backdoor with SMTP Command-Control
Security researchers have uncovered a previously undocumented Linux backdoor attributed to China-linked APT41 (Winnti) group, actively targeting cloud workloads across…
Read More » -
The Emergence of Okta Vishing: Identity-Centric Cloud Attacks on the Rise
Hackers are increasingly abandoning email phishing in favor of a more sophisticated threat vector: voice-based social engineering targeting identity platforms…
Read More » -
Critical Security Flaws Discovered in Synology SSL VPN Client
In a significant development for cybersecurity, Synology has released a critical security update addressing dangerous vulnerabilities in its widely-used SSL…
Read More » -
Critical Axios Vulnerability Enables Full Cloud Infrastructure Compromise
A severe security flaw has been identified in Axios, one of the internet’s most popular HTTP client libraries. This vulnerability…
Read More » -
Basic-Fit Data Breach Exposes Personal Data of 1 Million European Members
European fitness giant Basic-Fit has confirmed a major data breach compromising approximately 1 million member accounts across its operating regions.…
Read More » -
SaaS Platforms Abused: GitHub and Jira Become Phishing Proxies
Threat actors are weaponizing GitHub and Jira’s internal notification systems to craft undetectable phishing campaigns. By hijacking official mail servers,…
Read More » -
Booking.com Suffers Data Breach Affecting Customer Booking Information
The accommodation reservation platform Booking.com has experienced a data breach in which unauthorised parties gained access to customer booking details.…
Read More » -
APT37 Campaign: Social Engineering via Facebook & Tampered PDFelement Targets Defense Sector
North Korea-linked threat actor APT37 is conducting a sophisticated intrusion campaign that weaponizes Facebook and Telegram to deliver a tampered…
Read More » -
Critical Apache Tomcat Security Updates Patch Three High-Risk Vulnerabilities
The Apache Software Foundation has issued critical security updates for Tomcat to address three newly disclosed vulnerabilities affecting widely deployed…
Read More » -
EDR Killers Broaden Ransomware Tactics, ESET Warns
Ransomware gangs are rapidly expanding their use of EDR killers, moving beyond vulnerable drivers to a broader mix of scripts,…
Read More »