Overview Earlier this month, security sleuth and researcher “Chaotic Eclipse” (also known as Nightmare-Eclipse) published a zero-day exploit known as YellowKey, which allowed them to access BitLoc...
Overview of the First VPN Service 🚀 The Federal Bureau of Investigation (FBI) has released a FLASH report to share indicators of compromise (IOCs) and tactics related to the First VPN Service. Thi...
🚨 Important Security Alert! An attachment in an email impersonating DHL about a shipment contains a link to a preconfigured SimpleHelp remote access tool—an ideal starting point for attackers to e...
CVE-2026-15506 - SecureAge CatchPulse Driver Vulnerability
CVE-2026-15506 - SecureAge CatchPulse Driver Vulnerability A security vulnerability, identified as CVE-2026-15506, has been detected in SecureAge CatchPulse up to version 10.9.3. The affected elem...
Apple Sues OpenAI and Former Employees for Alleged Theft of Trade Secrets
Apple Sues OpenAI for Alleged Theft of Trade Secrets 🚀 Apple has filed a federal lawsuit against OpenAI, accusing the ChatGPT maker of orchestrating a systematic campaign to steal confidential har...
Critical U-Boot Bugs Undermine Secure Boot on Millions of Devices
Critical U-Boot Bugs Undermine Secure Boot on Millions of Devices Binarly’s research team has discovered six vulnerabilities in U-Boot, the open-source bootloader that powers home routers, smart c...
CVE-2026-10660 - Memory Corruption in Bluetooth BAP Broadcast Assistant
CVE-2026-10660 - Memory Corruption in Bluetooth BAP Broadcast Assistant CVE-2026-10660 addresses a critical issue concerning a shared reassembly buffer in the Bluetooth BAP Broadcast Assistant. Th...
Progress Urges ShareFile Admins to Shut Down Servers Over Credible Threat
Urgent Action Required! 🚨 Progress Software is reaching out to ShareFile customers using Storage Zone Controllers, urging them to immediately shut down their servers. This action comes after the i...
Post-quantum HTTPS Migration Faces Enterprise Browser Challenges
Post-quantum HTTPS Migration Faces Enterprise Browser Challenges Published on: July 10, 2026 Chromium’s Post-Quantum HTTPS Authentication Roadmap reads, on its surface, like a straightforward mig...
Laser Attack Resets Tangem Wallet Passwords on Cards That Can't Be Patched
Laser Attack Resets Tangem Wallet Passwords Researchers at Ledger’s Donjon security team have demonstrated a serious vulnerability in Tangem crypto wallet cards. A precisely timed laser pulse aime...
Researcher Finds 9 Vulnerabilities in ATM Security Software
Researcher Finds 9 Vulnerabilities in ATM Security Software According to coverage from Dark Reading, a researcher has discovered nine vulnerabilities in the CryptWare CryptoPro Secure Disk softwar...
2026-07-10 Daily Vulns
This iPhone Bug Won't Let Me Save Cropped Screenshots - But I Found a Fix
This iPhone Bug Won’t Let Me Save Cropped Screenshots - But I Found a Fix Unfortunately, while running iOS 26.5.2, I noticed an even more annoying bug: My cropped screenshots wouldn’t save. Normal...
Malicious Go Module Exposes GitHub Malware Lure Network
Malicious Go Module Exposes GitHub Malware Lure Network Our investigation began with a malicious Go module, github.com/kaleidora/dnsub-scanning-tool, that posed as a DNS/subdomain scanner. The mod...
Operation Dragonreturn China Nexus Cyber Espionage Campaign Targeting Indian Tax Infrastructure
Operation Dragonreturn: China Nexus Cyber Espionage Campaign As part of our latest investigation, we uncovered a campaign that demonstrates operational and technical similarities to a China-nexus ...
OpenPLC v3 Vulnerability Advisory
OpenPLC v3 Vulnerability Advisory 🚨 Source: CISA Date Published: July 9, 2026 A critical vulnerability has been identified in OpenPLC v3 that could allow an authenticated attacker to write arbitr...
One Target, Two Flags | Rival Espionage Actors Converge On Pakistani Law Enforcement
One Target, Two Flags: Rival Espionage Actors Converge On Pakistani Law Enforcement SentinelLABS has been tracking sustained cyberespionage activity against several Pakistani law enforcement organ...
New GigaWiper Windows Backdoor Bundles Disk Wiping, Fake Ransomware, and Spyware
New GigaWiper Windows Backdoor 🚨 Microsoft has dismantled a destructive Windows backdoor known as GigaWiper. What makes it unique is its construction: it combines three older destructive programs ...
GodDamn Ransomware Latest Beast Rebrand Uses Malicious Driver to Disable Defenses
GodDamn Ransomware: Latest Beast Rebrand Uses Malicious Driver to Disable Defenses 🚨 Analysis of a recent GodDamn ransomware attack indicates that this seemingly new ransomware is, in fact, the la...
6.9 Million Driver's License Numbers Stolen from AssuranceAmerica
🚨 Data Breach Alert: 6.9 Million Driver’s License Numbers Stolen! Insurance provider AssuranceAmerica has confirmed a significant data breach affecting the personal information and driver’s licens...