Live Feeds
-
GootLoader Returns with Novel WOFF2 Font Obfuscation and WordPress Exploits
GootLoader returns with novel WOFF2 font obfuscation and WordPress exploits, rapidly compromising networks. The malware uses custom WOFF2 fonts and exploits WordPress comment sections to deliver malicious payloads.
-
Russia Claims to Foil Anglo-Ukrainian Fighter Jet Hijack Plot
Russia’s Federal Security Service (FSB) claims to have foiled an Anglo-Ukrainian plot to hijack a Russian MiG-31 fighter jet equipped with Kinzhal hypersonic missiles, highlighting the ongoing intelligence efforts in the conflict.
-
Critical XSS Flaw Found in GitHub Enterprise Server: Immediate Update Recommended
A critical DOM-based Cross-Site Scripting (XSS) vulnerability, identified as CVE-2025-11892, has been uncovered in GitHub Enterprise Server, posing a significant risk of privilege escalation and unauthorized workflow triggers. Immediate update to affected systems is highly recommended to mitigate this high-severity flaw.
-
Critical Flaw in Combodo iTop Exposes Systems to Remote Code Execution
A critical security flaw in Combodo iTop, a widely adopted IT service management platform, could allow attackers to achieve remote code execution (RCE) and gain full control over affected systems.
-
Swiss NCSC Warns of iPhone Phishing Scams After Device Loss
The Swiss National Cyber Security Centre (NCSC) has warned iPhone users about a sophisticated phishing campaign that targets owners of lost devices. Scammers send convincing messages to steal Apple ID credentials, enabling them to bypass critical security features like Activation Lock. Users are advised against clicking unsolicited links and to activate Lost Mode immediately for…
-
AI, Quantum, and Data Sovereignty: Reshaping 2026 Cybersecurity Landscape
The year 2026 is poised to redefine enterprise cybersecurity, as experts predict significant shifts driven by the maturation of artificial intelligence, the looming threat of quantum computing, and an increasingly complex global regulatory landscape. These converging forces will necessitate a fundamental re-evaluation of digital trust and security protocols across industries.
-
Russia Detains Eight in Bashkortostan Over Alleged Telecom Sabotage Plot
Russian authorities have detained eight individuals in the republic of Bashkortostan, alleging their involvement in a plot to sabotage telecommunications infrastructure. The detentions signal a heightened focus on internal security amidst ongoing international tensions.
-
Critical Cisco Firewall Flaws Exploited for Denial-of-Service Attacks
Cisco firewalls are facing new denial-of-service attacks exploiting critical vulnerabilities, CVE-2025-20333 and CVE-2025-20362. These flaws in Cisco’s Secure Firewall ASA and FTD software allow attackers to gain control and force device reloads, disrupting network services. The ongoing exploitation highlights the urgent need for timely patching and continuous vigilance in network security.
-
Arctic Wolf Acquires UpSight Security, Bolstering Ransomware Prevention with Predictive AI
Arctic Wolf acquires UpSight Security to enhance ransomware prevention with predictive AI, integrating advanced capabilities into its Aurora endpoint platform for proactive threat neutralization and rapid recovery.
-
Google’s AI “Big Sleep” Uncovers Five Critical WebKit Vulnerabilities in Apple Software
Google’s advanced artificial intelligence, dubbed “Big Sleep,” has reportedly identified five critical vulnerabilities within Apple’s widely used WebKit rendering engine, raising fresh questions about the evolving role of AI in cybersecurity and the relentless challenge of securing omnipresent software platforms.