US Agencies Told to Scrap End of Support Edge Devices
CISA has issued a new directive requiring federal agencies to decommission all end of support edge devices within 12 months to reduce ongoing exploitation risks
Information Security Magazine
Chinese-Made Malware Kit Targets Chinese-Based Routers and Edge Devices
6 days 13 hours ago
DKnife is a Chinese made malware framework that targets Chinese-based users
Substack Confirms Data Breach, "Limited User Data" Compromised
6 days 14 hours ago
Substack did not specify the number of users affected by the data breach
New Cyber Startup Programme to Debut at Infosecurity Europe 2026
6 days 22 hours ago
Infosecurity Europe 2026 will debut a new Cyber Startup Programme, featuring a dedicated show-floor zone for early-stage cybersecurity companies to showcase innovations, connect with investors and highlight emerging technologies
Malicious Commands in GitHub Codespaces Enable RCE
1 week ago
Flaws in GitHub Codespaces allow RCE via crafted repositories or pull requests
Smartphones Now Involved in Nearly Every Police Investigation
1 week ago
Cellebrite data confirms digital evidence is now central to almost all cases
New Hacking Campaign Exploits Microsoft Windows WinRAR Vulnerability
1 week ago
Researchers at Check Point link ‘Amarath-Dragon’ attacks to prolific Chinese cyber-espionage operation
AI-Enabled Voice and Virtual Meeting Fraud Surges 1000%+
1 week ago
Pindrop warns of 1210% increase in AI-powered fraud last year
Global SystemBC Botnet Found Active Across 10,000 Infected Systems
1 week 1 day ago
SystemBC malware linked to 10,000 infected IPs, posing risks to sensitive government infrastructure
New Technical Markers Reveal Expanding ShadowSyndicate Cybercriminal Infrastructure
1 week 1 day ago
ShadowSyndicate cluster expands with new SSH fingerprints connecting servers to other ransomware ops
AI Drives Doubling of Phishing Attacks in a Year
1 week 1 day ago
Cofense claims AI is making phishing emails more personalized and sophisticated
Two Critical Flaws in n8n AI Workflow Automation Platform Allow Complete Takeover
1 week 1 day ago
Pillar Security discovered two new critical vulnerabilities in n8n that could lead to supply chain compromise, credential harvesting and complete takeover attacks
SolarWinds Web Help Desk Vulnerability Actively Exploited
1 week 1 day ago
CISA has added a critical CVE in SolarWinds Web Help Desk to its KEV Catalog
Hundreds of Malicious Crypto Trading Add-Ons Found in Moltbot/OpenClaw
1 week 2 days ago
A security researcher found 386 malicious ‘skills’ published on ClawHub, a skill repository for the popular OpenClaw AI assistant project
SQL Injection Flaw Affects 40,000 WordPress Sites
1 week 2 days ago
40,000 WordPress sites are vulnerable to SQL injection in Quiz and Survey Master plugin
DockerDash Exposes AI Supply Chain Weakness In Docker's Ask Gordon
1 week 2 days ago
DockerDash vulnerability allows RCE and data exfiltration via unverified metadata in Ask Gordon
UK ICO Launches Investigation into X Over AI Generated Non-Consensual Sexual Imagery
1 week 2 days ago
UK Data Protection Watchdog has “serious concerns” over data privacy on Elon Musk’s social platform
Researchers Warn of New “Vect” RaaS Variant
1 week 2 days ago
A new ransomware-as-a-service operation dubbed “Vect” features custom malware
Cybercrime Unit of Paris Prosecutors Raid Elon Musk’s X Offices in France
1 week 2 days ago
Elon Musk and X’s former CEO were summoned for voluntary interviews in Paris on April 20, 2026
New Password-Stealing Phishing Campaign Targets Corporate Dropbox Credentials
1 week 2 days ago
Multi-stage attack begins with fake message relating to business requests and evades detection with link hidden in a PDF
Checked
7 hours 47 minutes ago