Connect with us
Fortinet has confirmed ongoing exploitation of a FortiCloud single sign-on (SSO) authentication bypass affecting fully patched FortiGate firewalls. The issue follows reports of attackers successfully bypassing...
Cybersecurity researchers have uncovered a sophisticated phishing campaign leveraging LinkedIn private messages to deliver remote access trojan (RAT) malware through a technique known as DLL sideloading....
Zoom and GitLab have issued urgent security updates to address multiple vulnerabilities that could allow remote code execution (RCE), denial-of-service (DoS) attacks, and two-factor authentication (2FA)...
A sophisticated Linux malware framework, VoidLink, has been identified as one of the first major malware projects largely developed with the assistance of artificial intelligence (AI)....
LastPass has issued a warning about a new phishing campaign impersonating the password management service, aiming to trick users into revealing their master passwords. The campaign,...
Security researchers have disclosed three vulnerabilities in mcp-server-git, the official Git Model Context Protocol (MCP) server maintained by Anthropic, that could allow attackers to read, overwrite,...
Cybersecurity researchers have disclosed a critical prompt injection vulnerability in Google Gemini that allowed threat actors to bypass privacy controls and exfiltrate private Google Calendar data....
This week’s cybersecurity threats highlight a growing trend: attackers don’t always need new exploits—they leverage ordinary tools, trusted workflows, and routine services in the wrong hands....
Google Threat Intelligence Group (GTIG) has uncovered three new malware families developed by the Russian-linked hacking group COLDRIVER, signaling an accelerated “operations tempo” since May 2025....
State-sponsored Chinese threat actors leveraged Anthropic’s AI tools to conduct a highly sophisticated, largely automated cyber espionage campaign targeting global organizations in mid-September 2025. Anthropic described...
