A new version of the "Kazuar" malware; a tool attributed to Russian hackers designed for covert infiltration, espionage, and information gathering.
Australians among 560 million users around the world caught in Ticketmaster hack.
Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt.
INTERPOL’s Operation Ramz led to 201 arrests across 13 MENA countries, with 382 suspects and 3,867 victims identified.
Authorities seized 53 servers while targeting phishing, malware, and cyber scam operations.
Authorities seized 53 servers while targeting phishing, malware, and cyber scam operations.
Clean-looking phishing emails are bypassing filters and hitting US orgs hard.
Fake invitations + CAPTCHA tricks lead to credential theft, OTP capture & RMM tools.
Fake invitations + CAPTCHA tricks lead to credential theft, OTP capture & RMM tools.
Four malicious npm packages with 3,006 downloads were found delivering infostealers and Phantom Bot DDoS malware.
One package clones leaked Shai-Hulud worm code, while others steal SSH keys, cloud credentials and wallet data.
One package clones leaked Shai-Hulud worm code, while others steal SSH keys, cloud credentials and wallet data.
NGINX bug (CVE-2026-42945) now under active exploitation.
Critical heap overflow in rewrite module. Attackers can crash workers with one request (possible RCE).
Critical heap overflow in rewrite module. Attackers can crash workers with one request (possible RCE).
AudioHijack: adversarial audio attacks on generative voice models transfer from open weights to Microsoft and Mistral production systems.
Public Amazon bucket leaks sensitive guest data from Japanese hotel platform Tabiq.
Poland directs officials to ditch Signal in favor of 'secure' state-developed alternative.
Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flaws.
Mozilla warns UK: Breaking VPNs will not magically fix Britain's age-check mess.