Chainguard, the trusted source for open source, has a unique view into how modern organizations actually consume open source software and where they run into risk and operational burdens. Across a ...

Cisco addressed a medium-severity vulnerability, tracked as CVE-2026-20029 (CVSS score: 4.9), in Identity Services Engine (ISE) and ISE Passive Identity Connector (ISE-PIC) after a public PoC explo...

Hitachi Energy is aware of a Jasper Report vulnerability that affects Asset Suite product versions 9.7 and prior. This vulnerability can be exploited to carry out a remote code execution (RCE) atta...

A member of our web research team pointed me to a fake WinRAR installer that was linked from various Chinese websites. When these links start to show up, that’s usually a good indicator of a new ca...

A China-nexus threat actor known as UAT-7290 has been attributed to espionage-focused intrusions against entities in South Asia and Southeastern Europe. This activity cluster, active since at least...

GoBruteforcer (also called GoBrut) is a modular botnet, written in Go, that brute-forces user passwords for services such as FTP, MySQL, PostgreSQL, and phpMyAdmin on Linux servers. The botnet spre...

Attackers are exploiting a critical flaw (CVE-2026-0625) in old D-Link DSL routers that allows remote command execution. The vulnerability is due to improper input sanitization in the dnscfg.cgi en...

For the upcoming Pwn2Own Automotive contest, a total of 3 head units have been selected. One of these is the double DIN Kenwood DNR1007XR that offers a variety of functionality such as Android Auto...

A cybercrime gang known as Black Cat has been attributed to a search engine optimization (SEO) poisoning campaign that employs fraudulent sites advertising popular software to trick users into down...

A recent breach involving Ledger’s e-commerce partner Global-e has led to customer data being accessed and misused in phishing campaigns, the company confirmed. While no passwords, payment details,...

A new multi-stage malware campaign targeting hospitality organizations during the peak holiday season has been observed, using social engineering techniques such as fake CAPTCHA prompts and simulat...

A high-severity security vulnerability affecting Open WebUI has been uncovered, potentially exposing users to account takeover (ATO) and, in some cases, full server compromise. The flaw, tracked as...

“Patch and change management are designed to reduce risk, yet in many organizations they evolve into something closer to change prevention. Over time, layers of approval rules, blackout windows, an...

Successful exploitation of these vulnerabilities could allow an attacker to redirect connections to an attacker-controlled device, gain admin access to the web portal, or gain limited shell access....

Police in India have arrested a former Coinbase customer service agent who is believed to have been bribed by cybercriminal gangs to access sensitive customer information. Coinbase CEO Brian Armstr...

WhatsApp’s multi-device encryption protocol has long leaked metadata, allowing attackers to fingerprint users’ device operating systems, aiding targeted malware delivery. Recent research highlights...

Cloudflare Radar’s route leak data for AS8048 on January 2nd had some interesting anomalies: 8 prefixes (blocks of IP addresses) were being routed through CANTV, with Sparkle (an Italian transit pr...

Recently, a new “breed” of IP-based KVM devices has been released. In the past, IP-based KVM devices required dedicated “server-grade” hardware using IPMI. They often cost several $100 per server a...

A hacker using the alias 1011 has claimed to breach a NordVPN development server, posting what appears to be database dumps and configuration samples on the latest version of BreachForums. The leak...

New Zealand health minister Simeon Brown has ordered a review into the cyberattack at ManageMyHealth. Brown told reporters on Monday that he asked the government to begin reviewing the incident, in...