Phishing Attacks Leverage TikTok, Instagram Reels
Phishing Attacks Leverage TikTok, Instagram Reels Short-form videos on social media apps are currently being leveraged by threat actors as a phishing vector, utilizing tutorial-style content with ...
Phishing Attacks Leverage TikTok, Instagram Reels Short-form videos on social media apps are currently being leveraged by threat actors as a phishing vector, utilizing tutorial-style content with ...
Fighting Spyware: An Update From WhatsApp Last year, WhatsApp made history by securing a landmark verdict and permanent injunction barring NSO Group – a spyware firm blacklisted for actions contra...
CVE-2026-9746 - Server Crashes Due to Exchange Option DNB reports on CVE-2026-9746, a server vulnerability identified where, when using $changestreams and $_requestReshardingResumeToken with the e...
BLUERABBIT - A Golang-Based Backdoor with Ransomware and Destructive Capabilities 🚨 A full-featured backdoor with file encryption, drive wiping, and a C2 channel that resembles normal message brok...
75% of Firms Deploy Vulnerable Code Amid Pressure on CISOs, Report Finds 🚨 A new report reveals that nearly all Chief Information Security Officers (CISOs) have faced pressure to suppress or delay...
Microsoft’s Open Source Tools Hacked 🚨 Microsoft has cut off access to dozens of its open source projects hosted on GitHub as it investigates how hackers apparently breached the projects and injec...
CISA Flags Fresh SolarWinds Serv-U Flaw as Actively Exploited 🚨 CISA has added CVE-2026-28318 in SolarWinds Serv-U to its KEV catalog on June 5, 2026, confirming active exploitation of a DoS vulne...
New EDRChoker Tool 🚀 A newly released open-source red team tool called EDRChoker introduces a novel technique for silencing cloud-connected Endpoint Detection and Response (EDR) agents. Instead of...
CVE-2026-11459 - SecureAge CatchPulse IOCTL Vulnerability Disclosed 🚨 A new security vulnerability, tracked as CVE-2026-11459, has been detected in SecureAge CatchPulse up to version 10.9.1. This ...
Oxford University Student Data Breach 🚨 Oxford University students seeking work will be dismayed to learn that crooks have breached a second external platform provider for the university in as man...
Former Cyber Executive Turns Whistleblower Against IBM for Data Breach Cover-Up A former IBM cybersecurity executive has made serious allegations against the company, claiming it covered up multip...
Claude Opus Uncovers Critical Flaw in Zcash’s Privacy Layer 🚨 Claude Opus 4.8 has revealed a four-year-old critical flaw in Zcash that could have allowed the undetectable creation of counterfeit c...
The Smart TV in Your LivingRoom Is a Node in the AIScraping Economy What you might not be aware of are the distributed efforts to train AI that could be using the devices inside your home. Bright ...
Dark Web Nemesis Market Vendor Sentenced to 26 Years for Drug Trafficking A California man has been sentenced to more than 26 years in federal prison for trafficking fentanyl and methamphetamine t...
C-Suite Impersonation in the Gulf: How Threat Actors Are Targeting UAE & Saudi Executives in 2026 When a senior executive at a Dubai-based energy conglomerate receives a WhatsApp message that ...
New Extortion Tactics by Pink 🚨 A new extortion brand called Pink is making waves by using voice phishing and fake help-desk calls to gain initial access to organizations’ IT environments. This gr...
Magecart Skimmer Turns Stripe into a Malware Command Server 🚨 Sansec has uncovered a Magecart family that operates its skimmer directly through Stripe. The attacker cleverly stores the card steale...
iFood Confirms Data Breach Affecting 1.2 Million Users in Brazil 🚨 Brazilian food delivery app iFood has confirmed that it fell victim to a data breach in December 2025, impacting 1.2 million user...
VerdantBamboo: Just Another BRICKSTORM in the Firewall 🚀 In September 2025, Volexity conducted an incident response engagement after suspicious network traffic was observed from a Linux-based virt...
NAVTOR NavBox Vulnerability Advisory 🚨 A vulnerability, CVE-2026-21404, has been identified in NAVTOR NavBox through version 4.16.1.20. Successful exploitation of this vulnerability could allow a ...