BeyondTrust Security Update 🚨 BeyondTrust has patched a critical pre-auth flaw in its Remote Support and Privileged Remote Access (PRA) products that could allow attackers to execute code remotely...
🚨 Beware of Fake 7-Zip Downloads! 🚨 A convincing lookalike of the popular 7-Zip archiver site has been serving a trojanized installer that silently converts victims’ machines into residential prox...
LocalGPT – A Secure Local Device Focused AI Assistant Built in Rust In an era where AI assistants like ChatGPT and Claude dominate cloud infrastructures, exposing user data to remote breaches, a n...
UK Construction Firm Hit by Prometei Botnet 🚧 In January 2026, a UK construction firm discovered a digital “tenant from hell” hiding on its Windows Server. Security experts from the eSentire Threa...
Italian University La Sapienza Offline After Cyber Attack 🚨 Rome’s La Sapienza University has been severely impacted by a cyberattack that disrupted its IT systems and caused significant operation...
DOGE May Have Misused Social Security Data, DOJ Admits 🚨 The Trump administration recently acknowledged in court documents that operatives from the Department of Government Efficiency (DOGE) may h...
BridgePay Confirms Ransomware Attack Behind Outage 🚨 A major U.S. payment gateway and solutions provider, BridgePay, has confirmed that a ransomware attack has knocked key systems offline, trigger...
Nearly 5 Million Web Servers Found Exposing Git Metadata 🚨 A new 2026 study by the Mysterium VPN research team reveals that nearly 5 million public web servers are exposing Git repository metadata...
Eradicating Trivial Vulnerabilities at Scale In the NCSC’s 2024 Annual Review, we described how fixing foundational vulnerabilities in software code is required to improve digital resilience acros...
Eradicating Trivial Vulnerabilities at Scale In the NCSC’s 2024 Annual Review, we described how fixing foundational vulnerabilities in software code is essential to improve digital resilience acro...
Web Traffic Hijacking Nginx Configuration Malicious 🚨 Datadog Security Research has identified an active web traffic hijacking campaign targeting NGINX installations and management panels like Bao...
The Shadow Campaigns - Uncovering Global Espionage 🚀 This investigation unveils a new cyberespionage group that Unit 42 tracks as TGR-STA-1030, with activity referred to as the Shadow Campaigns. W...
Spain’s Ministry of Science Shuts Down Systems After Breach Claims 🚨 Spain’s Ministry of Science (Ministerio de Ciencia) has announced a partial shutdown of its IT systems, impacting several servi...
Knife Cutting The Edge: Unveiling the DKnife Framework Cisco Talos has uncovered a sophisticated framework known as DKnife, which is designed for gateway monitoring and adversary-in-the-middle (Ai...
Italy Blames Russia-Linked Hackers for Cyberattacks Ahead of Winter Olympics Italy has successfully thwarted a series of cyberattacks of Russian origin targeting diplomatic missions abroad and sit...
Deadvax Threat Research Security Advisory 🚨 Source: Securonix Date Published: February 5, 2026 Securonix Threat Research has been tracking a stealthy malware campaign that utilizes an uncommon ch...
The Double-Edged Sword of Non-Human Identities In a sweeping analysis conducted in late 2025, Flare researchers uncovered more than 10,000 Docker Hub container images leaking secrets (including pr...
Paris Raid on X 🚨 French prosecutors, supported by France’s National Gendarmerie and Europol, raided the X offices in Paris as part of a criminal investigation into allegations that the platform f...
Hiding in Plain Sight: Tracking Bulletproof Hosting and Abused RDP Infrastructure Bulletproof hosting enables long-term malicious activity by providing infrastructure that consistently dodges abus...
APT28 - Geofencing as a Targeting Signal (CVE-2026-21509 Campaign) Since the beginning of this year, we have observed an increased number of attacks by APT28 targeting various European countries. ...