Skip to main content
← All Tags

Cybersecurity

629 articles in this category (Page 14 of 27)

AI NewsCybersecurityThreat Intelligence

China-Linked UAT-7290 Targets Telecoms with Linux Malware and ORB Nodes

Cisco Talos identified China-linked UAT-7290 compromising telecoms since 2022 via Linux malware, exploits, and ORB infrastructure.

Read more
AI NewsCybersecurityVulnerability Management

CISA Flags Microsoft Office and HPE OneView Bugs as Actively Exploited

CISA added two vulnerabilities – CVE-2009-0556 in Microsoft Office and CVE-2025-37164 in HPE OneView – to its KEV catalog, requiring patching by January 28, 2026.

Read more
AI NewsCybersecurityNetwork Security

Cisco Patches ISE Security Vulnerability After Public PoC Exploit Release

Cisco addressed CVE-2026-20029, a medium-severity flaw in ISE and Snort 3, after a public proof-of-concept exploit became available.

Read more
AI NewsCybersecurityVulnerability

Coolify Vulnerabilities Allow Full Server Compromise

Coolify discloses 11 critical flaws, including command injection vulnerabilities, potentially enabling full server compromise for self-hosted instances.

Read more
AI NewsCybersecurityMergers & Acquisitions

CrowdStrike to Acquire SGNL for $740M to Bolster Identity Security

CrowdStrike’s acquisition of SGNL for nearly $740 million highlights the growing importance of identity security in a landscape increasingly reliant on cloud services and AI.

Read more
AI NewsCloud SecurityCybersecurity

Fake AI Chrome Extensions Stole 900K Users' Data

Nearly 900,000 users had their ChatGPT and DeepSeek data stolen via malicious Chrome extensions mimicking legitimate AI tools.

Read more
AI NewsCloud SecurityCybersecurity

Cloud Security’s Future: AI Adoption and the Commoditization of Security Features

99% of organizations are using or planning to use cloud services for AI workloads, driving a shift towards commoditized security features and increased collaboration between CSPs and customers.

Read more
AI NewsCybersecurityVulnerability Management

Maximum Severity HPE OneView Flaw Exploited in the Wild

CVE-2025-37164, a critical remote code execution vulnerability in HPE OneView, is now being actively exploited in the wild.

Read more
AI NewsCybersecurityMalware

NodeCordRAT Delivered via Malicious npm Packages

Researchers discovered NodeCordRAT, a new RAT delivered through three npm packages (bitcoin-main-lib, bitcoin-lib-js, bip40) with over 3,290 total downloads.

Read more
AI NewsCybersecuritySupply Chain

The State of Trusted Open Source: 98% of CVEs Reside Outside Top Projects

Analysis of nearly half a billion builds reveals a critical shift: 98% of vulnerabilities are found in longtail open source images, demanding broader security focus.

Read more
AI NewsCybersecurityVulnerability Management

RustFS Flaw, Iranian Ops, and Cloud Leaks Dominate Recent Cybersecurity Headlines

A critical RustFS vulnerability allowing remote code execution, alongside increased Iranian cyberattacks and widespread cloud data leaks, highlight escalating cybersecurity threats.

Read more
AI NewsCybersecurityIoT

Attackers Exploit Zero-Day in End-of-Life D-Link Routers

Hackers are exploiting a critical zero-day flaw in unsupported D-Link routers, enabling arbitrary command execution and potentially broader network compromise.

Read more
AI NewsCybersecuritySoftware Vulnerability

Critical n8n Vulnerability (CVSS 10.0) Allows Unauthenticated Server Takeover

A critical CVSS 10.0 vulnerability, dubbed 'Ni8mare', in n8n allows unauthenticated attackers to gain full control of servers.

Read more
AI NewsCybersecurityThreat Intelligence

DDoSia Powers Affiliate-Driven Hacktivist Attacks

Pro-Russian group NoName057(16) leverages the DDoSia tool to mobilize volunteers, resulting in 7,939 DDoS attack commands in a single week.

Read more
AI NewsCloud SecurityCybersecurity

Lack of MFA Enables Vast Cloud Credential Heist Affecting 50 Enterprises

A threat actor named 'Zestix' compromised 50 enterprises by exploiting stolen credentials on file-sharing platforms lacking multifactor authentication.

Read more
AI NewsCybersecurityPhishing

Microsoft Warns Misconfigured Email Routing Can Enable Internal Domain Phishing

Microsoft reports a surge in phishing attacks exploiting email misconfigurations, with over 13 million malicious emails blocked in October 2025.

Read more
AI NewsCybersecuritySoftware Updates

n8n Warns of CVSS 10.0 RCE Vulnerability Affecting Self-Hosted and Cloud Versions

n8n disclosed CVE-2026-21877, a critical authenticated RCE flaw with a CVSS score of 10.0, impacting versions prior to 1.121.3.

Read more
AI NewsCybersecurityIoT Security

Active Exploitation of Critical RCE in Legacy D-Link DSL Routers

A critical remote code execution vulnerability (CVE-2026-0625) in D-Link DSL routers is under active exploitation, allowing attackers to hijack DNS.

Read more
AI NewsCybersecurityIAM

The Future of Cybersecurity Includes Non-Human Employees

Non-Human Identities (NHIs) are redefining how organizations secure access, with 51% of respondents now considering NHI security as critical as human account security.

Read more
AI NewsCybersecurityVulnerability Management

Veeam Patches Critical RCE Vulnerability with CVSS 9.0 in Backup & Replication

Veeam addressed CVE-2025-59470, a critical remote code execution flaw (CVSS 9.0) in Backup & Replication, requiring updates to version 13.0.1.1071.

Read more
AI NewsCybersecurityZero Trust

AI-Powered Zero Trust Detects Fileless Attacks

Webinar reveals how AI addresses the increasing threat of fileless attacks abusing trusted tools, representing a critical blind spot for traditional security.

Read more
AI NewsCybersecurityNode.js

Critical AdonisJS Bodyparser Flaw (CVSS 9.2) Enables Arbitrary File Write on Servers

A critical CVSS 9.2 vulnerability in AdonisJS bodyparser allows attackers to write arbitrary files via path traversal when uploads are misconfigured.

Read more
AI NewsCybersecurityMalware

PHALT#BLYX Campaign Targets European Hotels with DCRat Malware

A new PHALT#BLYX campaign is exploiting European hotels with fake Booking.com emails leading to DCRat malware deployment.

Read more
AI NewsCybersecurityThreat Intelligence

Scattered Lapsus$ Hunters Snared in Cyber Researcher Honeypot

Scattered Lapsus$ Hunters were lured into a honeypot using synthetic data, revealing their tactics and leading to information shared with law enforcement.

Read more