Connect with us
A newly identified cyber espionage group known as GREYVIBE has been linked to sustained and evolving cyberattacks targeting Ukraine and related entities, with researchers reporting the...
A high-severity security vulnerability has been discovered in Gogs, a widely used open-source self-hosted Git service, that allows authenticated users to execute arbitrary code on affected...
Microsoft has strongly criticized the public disclosure of multiple zero-day vulnerabilities affecting Windows systems, reaffirming its support for Coordinated Vulnerability Disclosure (CVD) and warning that premature...
A critical security vulnerability in FortiClient Endpoint Management Server (EMS) is being actively exploited by threat actors to distribute a newly identified credential-stealing malware known as...
A high-severity vulnerability in the KnowledgeDeliver LMS platform has been actively exploited as a zero-day to deliver web shells and post-exploitation malware, including Cobalt Strike Beacon....
Advanced Phishing, SEO Poisoning, and Fake Software Installers Used to Spread MiniFast and MiniJunk V2 A state-linked Iranian cyber espionage group identified as Nimbus Manticore, also...
From long-ignored Linux vulnerabilities to AI-driven phishing campaigns and supply chain compromises, this week’s cybersecurity landscape highlights one clear trend: attackers are moving faster than defenders...
MAY 23, 2026 — A coordinated software supply chain attack has compromised eight packages on Packagist, the main repository for PHP dependencies, after attackers injected malicious...
SAN FRANCISCO — GitHub has launched a new set of security upgrades for npm designed to reduce software supply chain attacks, introducing two-factor authentication (2FA)-gated publishing...
A serious software supply chain attack has been uncovered targeting multiple PHP packages within the Laravel-Lang ecosystem, raising alarm across the developer and cybersecurity communities. The...
