CYBER ATTACK

Apple has put out emergency security updates to fix a serious WebKit flaw that makes iPhone, iPad, and Mac users vulnerable to advanced web-based attacks.

MDSec researchers have revealed a new Windows vulnerability called "RegPwn" that lets attackers go from being a low-privileged user to having full SYSTEM.

A serious security hole in Fortinet's FortiClient Enterprise Management Server (EMS) is causing a lot of worry in business settings, especially those that.

Researchers found a coordinated supply chain attack on two popular React Native npm packages on March 16, 2026. The infected releases add an install-time.

Researchers have shown a way to get around the sandbox isolation of AWS Bedrock AgentCore Code Interpreter, which has raised serious concerns about a.

On March 16, 2026, a coordinated supply chain attack hit the developer community This article explores backdoored popular react. . A hacker known as.

The UK government's official business register, Companies House, has found a serious security hole in its WebFiling service This article explores agency.

Stop wasting time on false positives to avoid alert overload This article explores suspicious alerts prioritized. . At first glance, false positives in.

A new way to attack that takes advantage of a basic flaw in AI web assistants: the difference between what a browser shows a user and what an AI tool.

The Windows 11 25H2/24H2 Update fixes problems with Bluetooth devices not being able to see each other This article explores bluetooth fix microsoft.

Recently, ANY.RUN, a top provider of interactive malware analysis and threat intelligence solutions, has seen a rise in phishing activity that takes.

Kubernetes CSI Driver NFS Security Hole The Kubernetes Container Storage Interface (CSI) Driver for NFS has a path traversal vulnerability that could let.

Discover how AWS Bedrock AgentCore Code Interpreter's "Sandbox" network mode has a major security flaw that lets threat actors set up hidden.

Storm-2561 is a financially motivated hacker who has been stealing credentials since May 2025 This article explores storm 2561 uses. . They do this by.

Discover how Web apps are at risk because of an Angular XSS vulnerability. There is a serious Cross-Site Scripting (XSS) flaw in the popular Angular.

Microsoft has released an out-of-band hotpatch, KB5084897, to fix a serious problem with Bluetooth device visibility that affects Windows 11 versions 24H2.

Stryker, a global leader in medical technology, has confirmed a large-scale cyberattack that wiped out tens of thousands of corporate devices around the.

Ways Decrypt and misuse encrypted Palo Alto Cortex XDR BIOC rules to get around them This article explores decrypt behavioral rules. . Cybersecurity.

Phishing attackers have figured out how to use a normal security feature against the people it was meant to protect This article explores exploits kali.

A new phishing campaign is using real customer service software to steal sensitive user data. Attackers have been using LiveChat, a popular.

Payload is a new type of ransomware that is attacking businesses. It uses encryption methods that are similar to those in the leaked Babuk ransomware.

A new type of ransomware called "Payload" has become a major threat to businesses in many fields This article explores ransomware called payload. . It.

Microsoft has said that Microsoft Purview Data Lifecycle Management (DLM) will soon have an AI-powered troubleshooting feature This article explores.

PylangGhost, a remote access trojan, has been found for the first time on the npm registry, hidden inside two harmful JavaScript packages This article.

CISA warns that hackers can take advantage of a flaw in Wing FTP Server On March 16, 2026, a critical flaw in Wing FTP Server was added to the Known.

CISA warns about Chrome 0-Day vulnerabilities that can be used to hack into systems An urgent warning about two very serious zero-day security holes that.

A phishing campaign with multiple vectors that uses hacked WordPress sites to steal Microsoft Teams and Xfinity login information This article explores.

More and more, threat actors are using email security features against the people they are meant to protect This article explores email defenses linking.

A new supply chain attack has hit OphimCMS, a Vietnamese-language Laravel content management system that is very popular for making movie streaming sites.

On March 11, 2026, Stryker Corporation, a major player in medical technology, confirmed that it had been hit by a major cyberattack that disrupted its.