News

Over 84,000 Roundcube instances vulnerable to actively exploited flaw
Over 84,000 instances of the Roundcube webmail software are vulnerable to CVE-2025-49113, a critical remote code execution ...
Linux Foundation unveils decentralized WordPress plugin manager
A collective of former WordPress developers and contributors backed by the Linux Foundation has launched the FAIR Package ...
SentinelOne shares new details on China-linked breach attempt
SentinelOne has shared more details on an attempted supply chain attack by Chinese hackers through an IT services and ...
Sensata Technologies says personal data stolen by ransomware gang
Sensata Technologies is warning former and current employees it suffered a data breach after concluding an investigation into ...
Grocery wholesale giant United Natural Foods hit by cyberattack
North America's largest publicly traded wholesale distributor, was forced to shut down some systems following a recent ...
Designing Blue Team playbooks with Wazuh for proactive incident response
Blue Team playbooks are essential—but tools like Wazuh take them to the next level. From credential dumping to web shells and ...
Google patched bug leaking phone numbers tied to accounts
A vulnerability allowed researchers to brute-force any Google account's recovery phone number simply by knowing a their profile name and an easily retrieved partial phone number, creating a massive ...
Bleeping Computer13h
Prepare for the CISSP exam with this at-home prep course deal
According to Statista, the Certified Information Systems Security Professional (CISSP) is the most popular security certification held by cybersecurity professionals worldwide—38% of poll respondents ...
New Mirai botnet infect TBK DVR devices via command injection flaw
A new variant of the Mirai malware botnet is exploiting a command injection vulnerability in TBK DVR-4104 and DVR-4216 ...
Malicious npm packages posing as utilities delete project directories
Two malicious packages have been discovered in the npm JavaScript package index, which masquerades as useful utilities but, ...
Malware found in NPM packages with 1 million weekly downloads
A significant supply chain attack hit NPM after 15 popular Gluestack packages with over 950,000 weekly downloads were ...