CYBER ATTACK

In December 2025, security researchers at Zscaler ThreatLabz found a new command-and-control (C2) framework implant called SnappyClient This article.

Discover how A new piece of malware called SnappyClient is a big threat to Windows users. It combines remote access, data theft, and advanced evasion.

As hackers focus more on network infrastructure instead of traditional endpoints, the attack surface of businesses is changing quickly. Researchers in the.

A joint US-Israeli military operation began strikes inside Iran on February 28, 2026 This article explores world cyber escalation. . This started a huge.

Discover how A threat actor with ties to Iran has had their entire working infrastructure exposed after carelessly leaving an open directory on their own.

Hackers are using poorly set up OpenWebUI servers to spread AI-generated payloads that steal credentials and mine cryptocurrency on both Linux and Windows.

Security researchers have revealed a serious multi-stage attack chain that affects Anthropic's Claude.ai platform This article explores redirect.

CISA warns that Microsoft SharePoint is vulnerable to attacks A serious security hole in Microsoft SharePoint has been found to be actively used, and on.

A well-known code editor extension on the Open VSX registry was found to have hidden malware that quietly downloads and runs a remote access trojan (RAT).

UIDAI Bug Bounty Program Makes Aadhaar More Secure The Unique Identification Authority of India (UIDAI) has officially started its first organized Bug.

The Unique Identification Authority of India (UIDAI) has started its first structured bug bounty program as part of its ongoing work to make the Aadhaar.

ConnectWise has sent out an urgent security alert for its ScreenConnect remote desktop software This article explores keys screenconnect vulnerability.

Another blow to network security. Two new types of malware have appeared that can quietly turn routers, IoT devices, and enterprise network equipment into.

LeakNet is a ransomware group that has been quietly working on a more dangerous way to attack This article explores leaknet ransomware. . The group used.

ForceMemo is a new malware campaign that is quietly hacking hundreds of GitHub accounts and adding hidden harmful code to Python repositories, leaving.

FancyBear, a Russian state-linked hacking group, made a big mistake in operational security that gave security researchers an unusually clear picture of.

The GNU Inetutils telnetd daemon has a serious buffer overflow flaw. This flaw, which is tracked as CVE-2026-32746, lets an unauthenticated remote.

Apple WebKit Vulnerability Lets Bad Web Content Bypass on iOS and macOS Apple has released important security updates to fix a serious WebKit.

Vidar 2.0, a new version of the Vidar infostealer, is spreading quickly through hundreds of fake game cheat repositories on GitHub and targeted posts on.

Weaknesses in Ubuntu Desktop Systems A Local Privilege Escalation (LPE) flaw in default installations of Ubuntu Desktop 24.04 and later lets an attacker.

Discover how There is a security hole in the Windows Registry called RegPwn. The "RegPwn" (CVE-2026-24291) Windows vulnerability is a high-severity flaw.

OpenAI has released GPT-5.4 Mini and Nano, two small-footprint models that promise answers that are up to twice as fast as previous GPT-5 Mini models.

Discover how Microsoft has stopped the automatic installation of the Microsoft 365 Copilot app on Windows devices for the time being. Microsoft 365.

The Microsoft Detection and Response Team talks about a complex voice phishing (vishing) campaign that broke into a business setting in November 2025 This.

Discover how A fake Telegram download site is actively spreading dangerous malware by hiding a malicious installer as a real setup file. The site, which.

Boggy Serpens, also known as MuddyWater, is a cyberespionage group that is currently running hacking campaigns against targets all over the world. This.

A newly revealed serious security hole in GNU The telnetd daemon in Inetutils could let attackers who aren't logged in take full control of affected.

FortiClient SQL Injection flaw A serious SQL injection hole in Fortinet's FortiClient Endpoint Management Server (EMS). This serious flaw has a CVSS score.

The Iranian nation-state group Boggy Serpens, also known as MuddyWater, has greatly increased its cyberespionage activities This article explores.

A new wave of targeted attacks is quietly hitting Argentina's judicial system This article explores hitting argentina judicial. . They use fake court.