CYBER ATTACK

Discover how On March 24, 2026, Mozilla released Firefox 149, which included one of the biggest security warnings in the browser's recent history. The.

There is a serious flaw in Magento and Adobe Commerce stores that lets anyone upload files without any restrictions This article explores files.

A serious security hole in GoHarbor's popular Harbor container registry is putting businesses at high risk of supply chain attacks. The flaw is known as.

The stable channel now has Firefox 149.0 from Mozilla This article explores stable channel firefox. . The update adds a lot of privacy-first features.

F5 has found a serious security hole in NGINX that could let attackers run any code they want or stop services by using a specially made MP4 file This.

On March 4, 2026, Europol and its partners around the world said that Tycoon2FA, a major phishing-as-a-service platform, had been technically shut down.

The security research team has found a serious flaw in ClawHub, the public skills registry for the OpenClaw agentic ecosystem This article explores.

Google Authenticator's widely used passwordless architecture creates a hybrid model that combines hardware security with cloud-based key management This.

The Python Package Index (PyPI) was hacked, and a popular open-source Python library was affected This article explores python used compromised.

Hackers are taking advantage of a serious security hole in Magento and Adobe Commerce known as "PolyShell." The flaw lets attackers who aren't logged in.

Google's passkey system doesn't work like a regular hardware authenticator that only works with one device This article explores google passkey doesn.

Five bad packages were found that stole private wallet keys and sent them straight to a Telegram bot This article explores threat bad packages. . The.

The Federal Communications Commission (FCC) made a big change to its Covered List, which means that new consumer-grade network routers made in other.

The threat group TeamPCP has released a very dangerous version of the CanisterWorm malware that is specifically designed to destroy Iranian systems while.

Discover how The popular penetration testing distribution Kali Linux 2026.1 has been officially released. This is the first big update of the year. This.

Taking away trust in the quickly growing OpenClaw ecosystem, Researchers at Silverfort have found a serious flaw in the ClawHub skills marketplace that.

The first big update of the year for Offensive Security's popular penetration testing distribution, Kali Linux 2026.1, is now available This article.

The U.S This article explores foreign routers. . Federal Communications Commission (FCC) has made a big move to protect the country's technology supply.

TeamPCP, a group that has been linked to high-impact supply chain attacks in the past, has hacked the popular Python library litellm on PyPI. This affects.

HackerOne, a well-known platform for coordinating vulnerabilities and bug bounties, has confirmed that a data breach has affected its employees after a.

Threat researchers have found a new malware campaign that uses Google Forms to spread the PureHVNC Remote Access Trojan (RAT). Instead of using fake.

Because generative AI models can be used so quickly, companies need to find a balance between innovation and strong security. To solve this problem.

Aqua Security has revealed a complex supply chain attack that put its popular open-source Trivy vulnerability scanner at risk, showing that modern CI/CD.

A complex supply chain attack that targets Aqua Security's Trivy, a popular open-source vulnerability scanner This article explores aqua security trivy.

Elastic Security Labs has found a new bad campaign that uses an undocumented loader called SILENTCONNECT to send out the ScreenConnect Remote Monitoring.

A recent security study showed that linking together what seem like small logic flaws in Dell Wyse Management Suite (WMS) On-Premises can lead to a full.

Discover how Cybercriminals behind Tycoon2FA, a phishing-as-a-service (PhaaS) platform, have started going after cloud accounts again with almost full.

TeamPCP, a group of hackers, has gone from stealing credentials or installing backdoors to something much worse with a new payload This article explores.

A persistent threat actor called Larva-26002 has been going after Microsoft SQL (MS-SQL) servers that aren't well managed This article explores ransomware.

Attackers have found a new way to spread malware by using Google Forms, which is one of the most trusted tools people use every day This article explores.