web

April 14, 2026

Exposed Botnet Panel Reveals Live Twitter/X Credential-Stuffing Operation With No Authentication

A fully operational credential-stuffing botnet targeting Twitter/X accounts has been discovered running entirely without authentication, leaving its command-and-control infrastructure, worker…
Read More »
April 14, 2026

New Malware Campaign Abuses Obsidian Vaults to Target Crypto and Finance Professionals

A sophisticated new malware campaign is exploiting the popular note-taking app Obsidian to deliver a powerful remote access trojan called…
Read More »
April 14, 2026

Critical ShowDoc Vulnerability Exposes Organizations to Unauthenticated RCE

Cybersecurity researchers have uncovered a severe vulnerability in ShowDoc, a widely used online document-sharing platform designed for IT teams. Tracked…
Read More »
April 14, 2026

Rockstar Games Data Breach: ShinyHunters Leaks 78.6 Million Records

Rockstar Games has suffered a significant data breach after the infamous threat group ShinyHunters leaked over 78.6 million internal records…
Read More »
April 14, 2026

SAP April 2026 Security Patch Day: Critical Vulnerabilities Demand Immediate Action

SAP released its monthly Security Patch Day updates for April 2026, addressing 19 new security notes and one update to…
Read More »
April 14, 2026

China-Linked APT41 Deploys Stealthy Linux Backdoor with SMTP Command-Control

Security researchers have uncovered a previously undocumented Linux backdoor attributed to China-linked APT41 (Winnti) group, actively targeting cloud workloads across…
Read More »
April 14, 2026

Critical Security Flaws Discovered in Synology SSL VPN Client

In a significant development for cybersecurity, Synology has released a critical security update addressing dangerous vulnerabilities in its widely-used SSL…
Read More »
April 13, 2026

Critical Apache Tomcat Security Updates Patch Three High-Risk Vulnerabilities

The Apache Software Foundation has issued critical security updates for Tomcat to address three newly disclosed vulnerabilities affecting widely deployed…
Read More »
April 10, 2026

Hackers Exploit GitHub Copilot Flaw to Exfiltrate Sensitive Data

A high-severity flaw in GitHub Copilot Chat recently allowed attackers to silently steal sensitive data like API keys and private…
Read More »
April 10, 2026

5,219 Rockwell PLCs exposed online

Censys has warned that more than 5,000 Rockwell Automation/Allen-Bradley PLCs are currently exposed to the internet, as Iranian-affiliated APT actors…
Read More »
April 9, 2026

ClickFix Campaign Abuses macOS Script Editor to Deploy Atomic Stealer

A refreshed ClickFix campaign that swaps macOS Terminal for Script Editor to deliver an Atomic Stealer payload to unsuspecting Mac users quietly.…
Read More »
April 9, 2026

Microsoft Details How Defender Protects High-Value Assets in Real-World Attacks

Microsoft has significantly upgraded its Defender platform to automatically detect and block sophisticated cyberattacks targeting High-Value Assets (HVAs) like domain…
Read More »
April 8, 2026

Anthropic Launches Claude Mythos Preview Focused on Zero-Day Vulnerability Discovery

Anthropic recently unveiled Claude Mythos Preview, a groundbreaking general-purpose language model demonstrating an unprecedented, emergent ability to autonomously discover and…
Read More »
April 8, 2026

FBI Takes Down Russian Campaign That Compromised Thousands of Routers

U.S. Justice Department and FBI actions disrupted a worldwide network of hacked SOHO routers controlled by Russia’s GRU intelligence agency…
Read More »
April 8, 2026

Russian State-Sponsored Hackers Targeting Global Router Networks

Russian military-linked hackers are actively compromising poorly secured home and small-office routers to hijack internet traffic and conduct espionage on…
Read More »
April 8, 2026

Fiber Optic Cables Turned Into Hidden Microphones to Spy on Private Conversations

Internet users worldwide rely on fiber optic cables for blazing-fast and secure web connections. However, a groundbreaking discovery reveals that…
Read More »
April 8, 2026

Claude Identifies Critical 13-Year-Old RCE Vulnerability in Apache ActiveMQ

An AI assistant recently uncovered a critical remote code execution (RCE) vulnerability in Apache ActiveMQ Classic that went unnoticed for…
Read More »
April 7, 2026

Critical Ninja Forms File Upload Vulnerability Allows Unauthenticated Remote Code Execution

A critical vulnerability in the Ninja Forms File Uploads premium add-on for WordPress enables attackers to upload arbitrary files without…
Read More »
April 7, 2026

Hackers Exploit Next.js React2Shell Vulnerability, Breach 766 Hosts in 24 Hours

Hackers are abusing a critical React2Shell vulnerability in Next.js applications to run an automated credential‑theft operation that has already compromised…
Read More »
April 7, 2026

Attackers Exploit Flowise Injection Vulnerability as 15,000+ Instances Remain Exposed

A critical security flaw in Flowise, a widely used open-source AI development platform, is currently being actively exploited in the…
Read More »

Previous page Next page