Cybersecurity

North Korean PolinRider Hackers Publish 108 Malicious Packages

North Korean-linked threat actors, known as Contagious Interview, have expanded their PolinRider supply-chain campaign to 108 malicious packages and browser extensions.The campaign actively compromises...

FatFs Flaws Let Malicious Media Hijack Millions of Devices

Seven vulnerabilities (CVE-2026-6682 to CVE-2026- 6688) were found in the widely used FatFs filesystem library, with three rated as High severity.The flaws, disclosed on July...

Linux ‘Bad Epoll’ Bug Grants Any User Root Access

A critical Linux kernel flaw, Bad Epoll (CVE-2026-46242), allows a standard user to gain full root control on desktops, servers, and Android.The exploit leverages...

PamStealer Malware Targets MacOS Users, Steals Data

A new macOS malware, PamStealer, is actively targeting cryptocurrency users by stealing wallet data and system passwords.It spreads via a fake website impersonating the...

Google Degrades 2M-Device NetNut Botnet Network

Google and law enforcement have degraded the NetNut proxy network, shrinking its pool of residential devices by millions.The network, which sells access to home...

FortiBleed Credentials Linked to Ransomware Attacks

Credential theft campaign FortiBleed is now linked to INC and Lynx ransomware operations, with stolen data used for follow-on attacks.Threat actors targeted ~11,250 FortiGate...

CISA Flags Actively Exploited Microsoft SharePoint Flaw

The U.S. CISA has flagged a high-severity Microsoft SharePoint flaw, CVE-2026-45659, as actively exploited, demanding federal agency patches by July 4, 2026.This remote code...

Unpatched Argo CD flaw risks full Kubernetes takeover

An unpatched flaw in Argo CD's repo-server component allows for unauthenticated remote code execution and potential full Kubernetes cluster takeover.Disclosed by Synacktiv after 18...

Latest news

Anthropic removes hidden trackers from Claude Code after discovery

Anthropic removed hidden tracking markers from Claude Code after researchers discovered code used to identify some Chinese users.The company...

Enlivex stock hits $0.42 low; all retail investors lose

Every retail investor who ever bought Nasdaq-listed Enlivex shares has lost money as the stock hit an all-time low...

Kraken parent wins $22M arbitration award against ex-auditor Mazars

Payward, parent of crypto exchange Kraken, won a $22 million arbitration award against former auditor Mazars USA and seeks...