Security researchers have disclosed a high-severity server-side request forgery (SSRF) vulnerability in Microsoft Exchange, identified as CVE-2026-45504. This flaw, with a CVSS score of 8.8, […]
Category: Cybersecurity News
Stay informed about the ever-evolving world of digital threats and defenses with our Cyber Security News category. Here, you’ll find the latest breaking news, in-depth analysis, and expert insights on everything related to cybersecurity. From data breaches and ransomware attacks to emerging threats and innovative security solutions, we cover the critical issues impacting individuals, businesses, and governments worldwide. Keep up-to-date on the latest vulnerabilities, best practices, and trends shaping the future of online security.
North Korean Hackers Conceal JavaScript Loaders in npm Packages
North Korean state-sponsored hackers have intensified their cyber espionage activities by embedding malicious JavaScript loaders within npm packages, a tactic that poses significant risks to […]
Critical Vulnerabilities in WatchGuard Firebox OS Allow Arbitrary Code Execution
WatchGuard has identified and addressed three critical vulnerabilities in its Firebox firewall appliances running Fireware OS. These flaws, designated as CVE-2026-13053, CVE-2026-13050, and CVE-2026-13054, each […]
European Parliament Member’s Phone Infected with Pegasus Spyware
A Member of the European Parliament (MEP) has been identified as a victim of the notorious Pegasus spyware, developed by the Israeli firm NSO Group. […]
AsyncRAT Campaign Exploits Cloudflare Tunnels for Stealthy Malware Delivery
Cybersecurity researchers have identified a sophisticated malware campaign leveraging AsyncRAT, a remote access trojan, to infiltrate systems by exploiting trusted cloud services. This operation employs […]
ARToken Phishing Panel Exploits OAuth Device Code Flow to Hijack Microsoft 365 Accounts
A newly identified phishing platform, ARToken, is enabling cybercriminals to hijack Microsoft 365 accounts by exploiting the OAuth 2.0 device code flow. This method allows […]
Claude Cowork’s Sandbox Flaw Enables Root Command Execution
Anthropic’s Claude Cowork, a platform designed to assist knowledge workers in building tools and processing data, has been found to contain a critical vulnerability that […]
Ousaban Trojan Targets Iberian Bank Users with Stealthy PDF Lures
A sophisticated cyberattack campaign is currently targeting banking customers in Spain and Portugal, utilizing a malware known as Ousaban. This Brazilian banking trojan employs deceptive […]
CitrixBleed Vulnerability Exploited Within 24 Hours of Disclosure
A critical vulnerability in Citrix NetScaler appliances, identified as CVE-2026-8451 and dubbed ‘CitrixBleed,’ has been actively exploited by threat actors within 24 hours of its […]
Unpatched Argo CD Flaw Puts Kubernetes Clusters at Risk
Argo CD, a widely adopted tool for continuous deployment in Kubernetes environments, has been found to contain a critical vulnerability in its repo-server component. This […]