Cybersecurity

Attacker identified as Mr_Rot13 exploits critical cPanel flaw (CVE-2024-41940) allowing remote authentication bypass and system takeover Deploys Filemanager backdoor via Go-based infector...

Google confirmed cybercriminals used an AI model to develop a zero-day exploit targeting a popular open-source web administration tool, a first-of-its-kind discovery.The exploit bypassed...

A trending malicious repository on Hugging Face impersonated OpenAI's Privacy Filter model to deploy a sophisticated information stealer.The stealer harvested data from Discord, cryptocurrency...

Cybersecurity researchers have uncovered a new Brazilian banking trojan named TCLBANKER, which targets 59 banking, fintech, and cryptocurrency platforms.The malware spreads via malicious MSI...

A new Linux malware, Quasar Linux RAT (QLNX), is stealthily targeting developers to steal credentials for software supply chains.The malware can hide itself, harvest...

A new, actively exploited flaw (CVE-2026-6973) in Ivanti Endpoint Manager Mobile allows authenticated admins remote code execution.The U.S. Cybersecurity and Infrastructure Security Agency (CISA)...

Cybersecurity's greatest challenge is human vulnerability, not technology.AI-generated phishing attacks are making the initial malicious "click" nearly impossible to detect.A rapid containment plan focused...

vm2 Node.js library users must urgently update to version 3.11.2 to patch twelve critical sandbox escape vulnerabilities.The flaws allow attackers to break out of...