Aggregator

A new and previously undocumented Linux threat has emerged, targeting software developers in a way that could put entire supply chains at risk. Named Quasar Linux, or QLNX, this malware operates as a full-featured remote access trojan built specifically for Linux systems. It combines stealth techniques with targeted credential theft, making it one of the […]

The post QLNX Targets Developers With Credential Theft Designed for Supply Chain Compromise appeared first on Cyber Security News.

Три тонны груза, ноль взрывов, один конкурент.

ShinyHunters breached Instructure and Vimeo, exposing millions of student and user records through direct and supply chain attacks.

The initiative, named CI Fortify, focuses on isolation and recovery efforts that would see critical infrastructure organizations proactively disconnect from third-party dependencies and find ways to operate without reliable telecommunications and internet.

A Latvian national operating out of Moscow was sentenced to 102 months in federal prison for his central role in a sprawling Russian ransomware syndicate. Deniss Zolotarjovs, 35, served as a primary extortionist and negotiator for a highly organized cybercriminal network that attacked over 54 companies worldwide. The United States Justice Department announced the sentencing, […]

The post Member of Prolific Russian Ransomware Group Sentenced to 102 Months in Prison appeared first on Cyber Security News.

A critical cybersecurity vulnerability has been uncovered in Argo CD, a widely used declarative GitOps continuous delivery tool for Kubernetes environments. Tracked as CVE-2026-43824, this high-severity flaw allows low-privileged users to extract plaintext Kubernetes Secrets directly from a cluster. According to security analysis from Devoriales, the vulnerability carries a severe CVSS score of 9.6, as […]

The post Argo CD’s ServerSideDiff Vulnerability Enables Kubernetes Secret Extraction appeared first on Cyber Security News.

On the final night of the Qingming Festival holiday, three Taiwan High Speed Rail trains were forced into emergency stops due to a sophisticated radio signal spoofing attack. The malicious transmission triggered false alarms across the network, causing a nearly hour-long delay for passengers. Authorities have since apprehended a 23-year-old college student in connection with […]

The post Taiwan High Speed Rail Hacked Using Radio Signal Spoofing Attack That Halted Three Trains appeared first on Cyber Security News.

A newly disclosed flaw exposes internet-facing MajorDoMo servers to unauthenticated remote code execution via a broken authentication flow and unsafe dynamic PHP evaluation. The vulnerability (CVE-2026-27174) stems from the /admin.php request flow, where improper handling of unauthorized access allows execution to continue even after a redirect, effectively bypassing access controls. That continued execution exposes an […]

The post New MajorDoMo RCE Vulnerability Exposes Servers to Code Execution Attacks appeared first on Cyber Security News.

When most people picture a darknet drug bust, they imagine cinematic scenes of hooded figures and underground servers. The reality, as a New South Wales Police operation revealed this week, looks a lot more mundane: a quiet street in Sydney's southwest, a 6:40am knock on the door, and a hard drive holding the keys to a multimillion-dollar bitcoin wallet.

Защита стала декорацией, пока хакеры присваивают чужое имущество.

A vulnerability classified as problematic was found in Foxit PDF Editor and PDF Reader. This impacts the function std::invalid_argument. Such manipulation leads to uncaught exception. This vulnerability is documented as CVE-2026-5937. The attack can be executed remotely. There is not any exploit available. Upgrading the affected component is advised.

A vulnerability classified as critical has been found in Artifex Gpl Ghostscript 8.70. Impacted is the function parser of the component Parser. Performing a manipulation results in memory corruption. This vulnerability is reported as CVE-2010-1869. The attack is possible to be carried out remotely. Moreover, an exploit is present. It is recommended to upgrade the affected component.

Read why Akamai was named the only Customers’ Choice in the 2026 Gartner Peer Insights Voice of the Customer for API Protection.

The Akamai State of AI Inference report captures real data from the field that describes how AI inference is being built and scaled in production today.

On May 5, 2026, DENIC published broken DNSSEC signatures for the .de TLD, making millions of domains unreachable. Here's what 1.1.1.1 saw, how serve stale cushioned the impact, and how we restored resolution.

ANY.RUN researchers uncovered a phishing-to-RMM campaign in which attackers use fake Microsoft, Adobe, and OneDrive pages to deliver legitimate remote management tools such as ScreenConnect and LogMeIn Rescue.  Detection is difficult because the payload and infrastructure can look legitimate in isolation. Analysts need to connect the full chain, from phishing lure to RMM execution and outbound connections, […]

The post New Phishing-to-RMM Attacks: How Analysts Can Detect Trusted-Tool Abuse Early  appeared first on Cyber Security News.

A vulnerability classified as critical was found in Devolutions Remote Desktop Manager up to 2025.3.30. Impacted is an unknown function of the component Vaults Setting. Executing a manipulation can lead to improper authentication. This vulnerability appears as CVE-2026-2590. The attack may be performed from remote. There is no available exploit. Upgrading the affected component is advised.