web

April 20, 2026

Nexcorium Botnet Exploiting Critical TBK DVR Vulnerabilities

The IoT landscape is once again facing a significant surge in automated exploitation. A new, highly capable Mirai-based botnet, dubbed…
Read More »
April 20, 2026

Hybrid Threat Analysis: Dual-Payload Campaign Bundling Gh0st RAT with CloverPlus Adware

A sophisticated new malware campaign has surfaced, utilizing a multi-stage delivery mechanism that bundles a high-impact Remote Access Trojan (RAT)…
Read More »
April 20, 2026

Inside MiningDropper: Unpacking the Sophisticated Modular Framework Targeting Android Ecosystems

In the ever-evolving landscape of mobile threats, a new player has emerged that operates less like a traditional piece of…
Read More »
April 20, 2026

The Core of AI Safety: A Systemic Vulnerability in Anthropic’s MCP Protocol

On April 15, 2026, a critical discovery was made regarding the Model Context Protocol (MCP). Research by OX Security reveals…
Read More »
April 20, 2026

Notion Data Leak Exposes Editor Email Addresses Without Authentication

Security researchers have confirmed that any public Notion page now leaks the full names, email addresses, and profile pictures of…
Read More »
April 17, 2026

Critical FortiSandbox Vulnerability CVE-2026-39808: Public Exploit Now Available

A proof-of-concept (PoC) exploit has been publicly released for a critical security flaw in Fortinet’s FortiSandbox, putting thousands of networks…
Read More »
April 17, 2026

Exploitation of CVE-2026-39987 in Marimo: A Multi-Stage Attack Campaign Targeting AI/ML Developer Infrastructure

Threat actors are actively exploiting CVE-2026-39987, a critical pre-authentication remote code execution (RCE) vulnerability in the marimo Python notebook platform,…
Read More »
April 16, 2026

Proton VPN Impersonation Exposes NWHStealer: A Sophisticated Malware Campaign

Multiple ongoing malware campaigns are deploying the sophisticated information-stealing trojan, designated as NWHStealer, via deceptive VPN installer packages, gaming modifications,…
Read More »
April 16, 2026

Critical Vulnerabilities in Cisco ISE Pose Remote Code Execution Risk

Networking giant Cisco has issued an urgent security advisory warning of two newly discovered vulnerabilities impacting its Identity Services Engine…
Read More »
April 16, 2026

Chrome’s Privacy Flaws Exposed: How Fingerprinting & Headers Bypass Your Safeguards

A new technical review of Google Chrome’s privacy posture reveals that modern tracking no longer depends solely on cookies. Websites…
Read More »
April 16, 2026

Critical Nginx-UI Vulnerability CVE-2026-33032 Allows Full Server Takeover

A Critical-rated security flaw (CVE-2026-33032) in nginx-ui – a widely deployed open-source interface for Nginx server management – is actively…
Read More »
April 16, 2026

Google Releases Critical Chrome Security Update Patching 31 Vulnerabilities

Google has released an urgent security update addressing a substantial vulnerability landscape in its Chrome web browser, patching 31 distinct…
Read More »
April 16, 2026

Splunk Rattles with High-Severity Flaw Enabling Remote Server Takeover (CVE-2026-20204)

Splunk has issued a security advisory for a critical vulnerability affecting its Enterprise and Cloud Platform environments. Tracked as CVE-2026-20204…
Read More »
April 15, 2026

Your Privacy Opt-Out Is Being Ignored by Google, Microsoft, and Meta

A bombshell independent audit has caught some of the world’s biggest technology companies red-handed — continuing to track users who…
Read More »
April 15, 2026

Threat Group Disrupts Middle East Critical Sectors in Cyber Reconnaissance Operation

Cybersecurity researchers have identified a persistent threat group operating with high fidelity to the tradecraft of MuddyWater. This actor recently…
Read More »
April 15, 2026

Attackers Weaponize Google Cloud Storage to Deliver Remcos RAT Through Phishing Campaigns

Cybercriminals are increasingly leveraging Google Cloud Storage infrastructure to circumvent email and web content filters, deploying Remcos Remote Access Trojan…
Read More »
April 15, 2026

Agentic LLM Browsers: Productivity Gains Intensify Security Battlefield

AI-powered browsers are quietly rewriting the rules of web security — and not in our favor. By embedding large language…
Read More »
April 15, 2026

Fortinet Releases Critical Security Patches for 11 Vulnerabilities

Fortinet has announced a comprehensive security update addressing 11 newly identified vulnerabilities across several of its core enterprise products. These…
Read More »
April 14, 2026

Exposed Botnet Panel Reveals Live Twitter/X Credential-Stuffing Operation With No Authentication

A fully operational credential-stuffing botnet targeting Twitter/X accounts has been discovered running entirely without authentication, leaving its command-and-control infrastructure, worker…
Read More »
April 14, 2026

New Malware Campaign Abuses Obsidian Vaults to Target Crypto and Finance Professionals

A sophisticated new malware campaign is exploiting the popular note-taking app Obsidian to deliver a powerful remote access trojan called…
Read More »

Previous page Next page