ZerOwl

Attackers Take Over Canadian Digital Services, Putting Millions of Users at Risk

Because of their heavy reliance on digital services for travel, taxes, packages, and traffic fines, Canadian citizens are increasingly at risk from

Attackers Take Over Canadian Digital Services, Putting Millions of Users at Risk

CYBER ATTACKJan 28, 2026

Because of their heavy reliance on digital services for travel, taxes, packages, and traffic fines, Canadian citizens are increasingly at risk from

TP-Link Archer Vulnerability Allows Attackers to Seize Control of Routers

CYBER ATTACKZerowl

The TP-Link Archer MR600 a well-known 4G+ Cat6 AC1200 Wireless Dual Band Gigabit Router has been identified as a command injection issue.

TP-Link Archer Vulnerability Allows Attackers to Seize Control of Routers

CYBER ATTACKJan 28, 2026

The TP-Link Archer MR600 a well-known 4G+ Cat6 AC1200 Wireless Dual Band Gigabit Router has been identified as a command injection issue.

Password Reuse in Disguise: An Often-Missed Risky Workaround

CYBERSECURITYZerowl

Threats like ransomware, malware, and phishing are usually the main topics of discussion when security teams talk about credential-related risk

Password Reuse in Disguise: An Often-Missed Risky Workaround

CYBERSECURITYJan 28, 2026

Threats like ransomware, malware, and phishing are usually the main topics of discussion when security teams talk about credential-related risk

Massive SoundCloud Data Breach Exposes Personal Details of 29.8 Million Users

CYBER ATTACKZerowl

A major security incident involving the unapproved disclosure of user data has affected SoundCloud, a central audio streaming platform This article

Massive SoundCloud Data Breach Exposes Personal Details of 29.8 Million Users

CYBER ATTACKJan 28, 2026

A major security incident involving the unapproved disclosure of user data has affected SoundCloud, a central audio streaming platform This article

Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan

CYBERSECURITYZerowl

Two malicious packages that pose as spellcheckers but have the ability to distribute a remote access trojan (RAT) have been found by cybersecurity

Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan

CYBERSECURITYJan 28, 2026

Two malicious packages that pose as spellcheckers but have the ability to distribute a remote access trojan (RAT) have been found by cybersecurity

Fake CAPTCHA Attack Leverages Microsoft Application Virtualization (App-V) to Deploy Malware

CYBER ATTACKZerowl

A recently identified campaign uses a combination of social engineering and genuine Windows components to deliver information-stealing malware in a

Fake CAPTCHA Attack Leverages Microsoft Application Virtualization (App-V) to Deploy Malware

CYBER ATTACKJan 28, 2026

A recently identified campaign uses a combination of social engineering and genuine Windows components to deliver information-stealing malware in a

A Critical Flaw in Check Point Harmony SASE Permits Windows Local Privilege Escalation

CYBER ATTACKZerowl

Local attackers can obtain system-level privileges due to a significant vulnerability in Check Point's Harmony SASE Windows client This article

A Critical Flaw in Check Point Harmony SASE Permits Windows Local Privilege Escalation

CYBER ATTACKJan 28, 2026

Local attackers can obtain system-level privileges due to a significant vulnerability in Check Point's Harmony SASE Windows client This article

WhatsApp New Strict Account Settings Option to Protect Your Account from Hackers

CYBER ATTACKZerowl

Strict Account Settings is a lockdown-style security feature that WhatsApp has implemented to shield users from extremely sophisticated

WhatsApp New Strict Account Settings Option to Protect Your Account from Hackers

CYBER ATTACKJan 28, 2026

Strict Account Settings is a lockdown-style security feature that WhatsApp has implemented to shield users from extremely sophisticated

Microsoft App-V Exploited In Sneaky CAPTCHA Phishing Campaign

CYBER ATTACKZerowl

Microsoft's Application Virtualization (App-V) script, SyncAppvPublishingServer.vbs, is used as a living-off-the-land binary (LOLBIN) in a

Microsoft App-V Exploited In Sneaky CAPTCHA Phishing Campaign

CYBER ATTACKJan 28, 2026

Microsoft's Application Virtualization (App-V) script, SyncAppvPublishingServer.vbs, is used as a living-off-the-land binary (LOLBIN) in a

HoneyMyte’s CoolClient Malware Now Steals Browser Logins In Latest Variant

CYBER ATTACKZerowl

The HoneyThe Myte APT group, also referred to as Mustang Panda, has added sophisticated surveillance tools and browser login stealers to its

HoneyMyte’s CoolClient Malware Now Steals Browser Logins In Latest Variant

CYBER ATTACKJan 28, 2026

The HoneyThe Myte APT group, also referred to as Mustang Panda, has added sophisticated surveillance tools and browser login stealers to its

Top 5 this week

North Korean Hackers Compromise Popular Axios Package to Infect Windows, macOS, and Linux

CYBER ATTACKZerowl

North Korean Hackers Compromise Popular Axios Package to Infect Windows, macOS, and Linux

LinkedIn Hidden Code Secretly Searches Your Browser for Installed Extensions

CYBER ATTACKZerowl

LinkedIn Hidden Code Secretly Searches Your Browser for Installed Extensions

Hackers Weaponize Claude Code Leak to Spread Vidar and GhostSocks Malware

CYBER ATTACKZerowl

Hackers Weaponize Claude Code Leak to Spread Vidar and GhostSocks Malware

Fortinet Patches Actively Exploited CVE-2026-35616 in FortiClient EMS

CYBERSECURITYZerowl

Fortinet Patches Actively Exploited CVE-2026-35616 in FortiClient EMS

Anthropic Officially Terminates Claude Subscriptions Used by Tools Like OpenClaw

CYBER ATTACKZerowl

LATEST

Attackers Take Over Canadian Digital Services, Putting Millions of Users at Risk

Attackers Take Over Canadian Digital Services, Putting Millions of Users at Risk

TP-Link Archer Vulnerability Allows Attackers to Seize Control of Routers

TP-Link Archer Vulnerability Allows Attackers to Seize Control of Routers

Password Reuse in Disguise: An Often-Missed Risky Workaround

Password Reuse in Disguise: An Often-Missed Risky Workaround

Massive SoundCloud Data Breach Exposes Personal Details of 29.8 Million Users

Massive SoundCloud Data Breach Exposes Personal Details of 29.8 Million Users

Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan

Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan

Fake CAPTCHA Attack Leverages Microsoft Application Virtualization (App-V) to Deploy Malware

Fake CAPTCHA Attack Leverages Microsoft Application Virtualization (App-V) to Deploy Malware

A Critical Flaw in Check Point Harmony SASE Permits Windows Local Privilege Escalation

A Critical Flaw in Check Point Harmony SASE Permits Windows Local Privilege Escalation

WhatsApp New Strict Account Settings Option to Protect Your Account from Hackers

WhatsApp New Strict Account Settings Option to Protect Your Account from Hackers

Microsoft App-V Exploited In Sneaky CAPTCHA Phishing Campaign

Microsoft App-V Exploited In Sneaky CAPTCHA Phishing Campaign

HoneyMyte’s CoolClient Malware Now Steals Browser Logins In Latest Variant

HoneyMyte’s CoolClient Malware Now Steals Browser Logins In Latest Variant

Top 5 this week

North Korean Hackers Compromise Popular Axios Package to Infect Windows, macOS, and Linux

North Korean Hackers Compromise Popular Axios Package to Infect Windows, macOS, and Linux

LinkedIn Hidden Code Secretly Searches Your Browser for Installed Extensions

LinkedIn Hidden Code Secretly Searches Your Browser for Installed Extensions

Hackers Weaponize Claude Code Leak to Spread Vidar and GhostSocks Malware

Hackers Weaponize Claude Code Leak to Spread Vidar and GhostSocks Malware

Fortinet Patches Actively Exploited CVE-2026-35616 in FortiClient EMS

Fortinet Patches Actively Exploited CVE-2026-35616 in FortiClient EMS

Anthropic Officially Terminates Claude Subscriptions Used by Tools Like OpenClaw

Anthropic Officially Terminates Claude Subscriptions Used by Tools Like OpenClaw