Cyber Reports Cybersecurity News & Information

Cisco Releases Security Updates for Actively Exploited SD-WAN Manager Flaw

Cisco has released urgent security updates to address a medium-severity vulnerability in its Catalyst SD-WAN Manager platform after confirming that the flaw is being actively exploited...

Cloud Security1 day ago

Chinese Hackers Abused Google Workspace Rules to Steal Research and Defense Emails

A China-linked espionage campaign has been uncovered targeting North American medical, academic, and defense-related institutions, where attackers reportedly remained undetected for more than a year while...

Cybersecurity News1 day ago

North Korean Hackers Are Turning Developer Tools Into Malware Delivery Channels

Cybersecurity researchers have uncovered an evolving wave of campaigns linked to North Korean state-backed threat actors that are increasingly abusing developer tools and software ecosystems to...

Artificial Intelligence2 days ago

Critical LiteLLM Security Flaws Enable Full AI Gateway Takeover via Privilege Escalation Chain

A newly disclosed set of security flaws in the widely used open-source AI gateway LiteLLM could allow a low-privileged user to escalate access to full administrative...

Cybersecurity2 days ago

One-Click Microsoft 365 Copilot Flaw Could Have Let Attackers Steal Emails, Files, and MFA Codes

A newly disclosed vulnerability chain in Microsoft 365 Copilot Enterprise Search could have allowed attackers to extract sensitive emails, files, and even multi-factor authentication (MFA) codes...

Anthropic MCP vulnerability3 days ago

⚡ Weekly Recap: Chrome 0-Day, UniFi Exploits, macOS Stealers, VPN Flaw and More

Cybersecurity activity this week paints a familiar but escalating picture: attackers are leaning heavily on unpatched systems, trusted platforms, and software supply chains. From a Chrome...

Cybersecurity3 days ago

The Onboarding Password Mistake That Creates Unnecessary Risk

Employee onboarding is often treated as a routine IT task—but security researchers are increasingly warning that the way organizations handle first-day passwords can quietly introduce serious...

Cybersecurity4 days ago

CISA Adds Cisco, Chrome, and Arista Flaws to KEV Catalog Amid Active Exploitation

The U.S. cybersecurity authorities have added three newly exploited security flaws affecting Cisco, Google Chrome, and Arista Networks products to its official list of actively exploited...

Artificial Intelligence Security4 days ago

Unpatched Langflow Flaw CVE-2026-5027 Exploited for Unauthenticated RCE

A newly discovered and actively exploited security vulnerability in the open-source AI development platform Langflow is putting thousands of publicly exposed systems at risk of remote...

Cybersecurity5 days ago

Ivanti, Fortinet, and SAP Release Patches for Multiple Critical Vulnerabilities

Major enterprise software vendors Fortinet, Ivanti, and SAP have released urgent security updates addressing multiple critical vulnerabilities that could enable remote code execution, privilege escalation, and...

Hackers email stolen student data to parents of Nevada school district

BIG-IP Vulnerability Allows Attackers to Execute Remote Code

CISA needs more money and less red tape, report says

CISA and HHS look to help the health sector ramp up cyber hygiene

Latest

CISA Flags LiteSpeed cPanel Plugin Flaw Exploited for Root Privilege Escalation

Cisco Releases Security Updates for Actively Exploited SD-WAN Manager Flaw

Chinese Hackers Abused Google Workspace Rules to Steal Research and Defense Emails

North Korean Hackers Are Turning Developer Tools Into Malware Delivery Channels

Critical LiteLLM Security Flaws Enable Full AI Gateway Takeover via Privilege Escalation Chain

One-Click Microsoft 365 Copilot Flaw Could Have Let Attackers Steal Emails, Files, and MFA Codes

⚡ Weekly Recap: Chrome 0-Day, UniFi Exploits, macOS Stealers, VPN Flaw and More

Trending

Cisco Releases Security Updates for Actively Exploited SD-WAN Manager Flaw

Critical LiteLLM Security Flaws Enable Full AI Gateway Takeover via Privilege Escalation Chain

North Korean Hackers Are Turning Developer Tools Into Malware Delivery Channels

Chinese Hackers Abused Google Workspace Rules to Steal Research and Defense Emails

⚡ Weekly Recap: Chrome 0-Day, UniFi Exploits, macOS Stealers, VPN Flaw and More

One-Click Microsoft 365 Copilot Flaw Could Have Let Attackers Steal Emails, Files, and MFA Codes

Cyber Security

Pentagon cyber official calls advanced AI ‘revolutionary warfare’

Brazil’s LofyGang Returns After Three Years With Minecraft LofyStealer Malware Campaign Targeting Gamers

Authorities takedown global proxy network SocksEscort

Critical Google Chrome Flaw Enabled Malicious Extensions to Hijack Gemini AI Panel

TikTok Secures U.S. Future With New Joint Venture Under 2025 Executive Order

Your Digital Footprint Can Lead Right to Your Front Door

Business

RSAC 2026 Conference Announcements Summary (Days 3-4)

ServiceNow to Acquire Armis for $7.75 Billion in Cash

CISA Warns of ScadaBR Vulnerability After Hacktivist ICS Attack

IoT security threats highlight the need for zero trust principles

New infosec products of the week: October 27, 2023

Raven: Open-source CI/CD pipeline security scanner

Tech

IoT security threats highlight the need for zero trust principles

New infosec products of the week: October 27, 2023

Raven: Open-source CI/CD pipeline security scanner

Apple news: iLeakage attack, MAC address leakage bug

Hackers earn over $1 million for 58 zero-days at Pwn2Own Toronto

HackerOne paid ethical hackers over $300 million in bug bounties

More News

Cisco Releases Security Updates for Actively Exploited SD-WAN Manager Flaw

Chinese Hackers Abused Google Workspace Rules to Steal Research and Defense Emails

North Korean Hackers Are Turning Developer Tools Into Malware Delivery Channels

Critical LiteLLM Security Flaws Enable Full AI Gateway Takeover via Privilege Escalation Chain

One-Click Microsoft 365 Copilot Flaw Could Have Let Attackers Steal Emails, Files, and MFA Codes

⚡ Weekly Recap: Chrome 0-Day, UniFi Exploits, macOS Stealers, VPN Flaw and More

The Onboarding Password Mistake That Creates Unnecessary Risk

CISA Adds Cisco, Chrome, and Arista Flaws to KEV Catalog Amid Active Exploitation

Unpatched Langflow Flaw CVE-2026-5027 Exploited for Unauthenticated RCE

Ivanti, Fortinet, and SAP Release Patches for Multiple Critical Vulnerabilities

Categories

Recent Posts

Recent Comments

CISA Flags LiteSpeed cPanel Plugin Flaw Exploited for Root Privilege Escalation

Cisco Releases Security Updates for Actively Exploited SD-WAN Manager Flaw

Chinese Hackers Abused Google Workspace Rules to Steal Research and Defense Emails

Melis Platform CMS patched for critical RCE flaw

Warning: Google Alerts abused to push fake Adobe Flash updater

MaginotDNS attacks exploit weak checks for DNS cache poisoning

Illinois’ financial crisis could bring the state to a halt

The final 6 ‘Game of Thrones’ episodes might feel like a full season

New Season 8 Walking Dead trailer flashes forward in time