BridgePay Confirms Ransomware Attack Behind Outage 🚨 A major U.S. payment gateway and solutions provider, BridgePay, has confirmed that a ransomware attack has knocked key systems offline, trigger...

Nearly 5 Million Web Servers Found Exposing Git Metadata 🚨 A new 2026 study by the Mysterium VPN research team reveals that nearly 5 million public web servers are exposing Git repository metadata...

Eradicating Trivial Vulnerabilities at Scale In the NCSC’s 2024 Annual Review, we described how fixing foundational vulnerabilities in software code is required to improve digital resilience acros...

Eradicating Trivial Vulnerabilities at Scale In the NCSC’s 2024 Annual Review, we described how fixing foundational vulnerabilities in software code is essential to improve digital resilience acro...

Web Traffic Hijacking Nginx Configuration Malicious 🚨 Datadog Security Research has identified an active web traffic hijacking campaign targeting NGINX installations and management panels like Bao...

The Shadow Campaigns - Uncovering Global Espionage 🚀 This investigation unveils a new cyberespionage group that Unit 42 tracks as TGR-STA-1030, with activity referred to as the Shadow Campaigns. W...

Spain’s Ministry of Science Shuts Down Systems After Breach Claims 🚨 Spain’s Ministry of Science (Ministerio de Ciencia) has announced a partial shutdown of its IT systems, impacting several servi...

Knife Cutting The Edge: Unveiling the DKnife Framework Cisco Talos has uncovered a sophisticated framework known as DKnife, which is designed for gateway monitoring and adversary-in-the-middle (Ai...

Italy Blames Russia-Linked Hackers for Cyberattacks Ahead of Winter Olympics Italy has successfully thwarted a series of cyberattacks of Russian origin targeting diplomatic missions abroad and sit...

Deadvax Threat Research Security Advisory 🚨 Source: Securonix Date Published: February 5, 2026 Securonix Threat Research has been tracking a stealthy malware campaign that utilizes an uncommon ch...

The Double-Edged Sword of Non-Human Identities In a sweeping analysis conducted in late 2025, Flare researchers uncovered more than 10,000 Docker Hub container images leaking secrets (including pr...

Paris Raid on X 🚨 French prosecutors, supported by France’s National Gendarmerie and Europol, raided the X offices in Paris as part of a criminal investigation into allegations that the platform f...

Hiding in Plain Sight: Tracking Bulletproof Hosting and Abused RDP Infrastructure Bulletproof hosting enables long-term malicious activity by providing infrastructure that consistently dodges abus...

APT28 - Geofencing as a Targeting Signal (CVE-2026-21509 Campaign) Since the beginning of this year, we have observed an increased number of attacks by APT28 targeting various European countries. ...

NEW: CVE vendor-product description metric Referenceurl title GithubURL   CVE-2019-25232 NetPCLinker - NetPCLin...

DockerDash Exposes AI Supply Chain Weakness 🚨 A critical security flaw affecting Docker’s Ask Gordon AI assistant has been disclosed by cybersecurity researchers, revealing how unverified metadata...

Overview Russian-aligned hacktivist groups are increasingly targeting industrial control systems and OT environments—and sometimes it’s shockingly easy. Daniel dos Santos, VP of Research at Foresc...

Wave of Citrix NetScaler Scans 🚀 A coordinated reconnaissance campaign targeting Citrix NetScaler infrastructure over the past week has utilized tens of thousands of residential proxies to discove...

🚨 Vulnerability Alert: Mitsubishi Electric FREQSHIP-mini for Windows A malicious code execution vulnerability exists in Mitsubishi’s small-capacity UPS shutdown software, FREQSHIP-mini for Windows...

Step Finance Suffers Major Breach 🚨 Step Finance has announced a staggering loss of $40 million in digital assets following a breach that compromised the devices of its executive team. The inciden...