-
A sophisticated malware campaign that abuses the Deno JavaScript runtime to deliver CastleRAT, a powerful remote access trojan designed for espionage and data theft. The campaign demonstrates how attackers are increasingly combining social engineering,…
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
A high-severity Remote Command Execution (RCE) vulnerability has been discovered in Splunk Enterprise and Splunk Cloud Platform, exposing systems to severe security risks. Tracked officially as CVE-2026-20163 with a CVSS score of 8.0, this critical fla…
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Cisco has issued high-severity software updates to address two high-severity privilege escalation vulnerabilities in its IOS XR Software. Network administrators must take immediate action, as these security flaws could allow an authenticated, local att…
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Iran-linked cyber actors are increasingly working with the broader cybercrime ecosystem, using criminal tools, infrastructure, and business models to support state-backed operations and hide their involvement. For years, Iranian intelligence services h…
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
On March 11, 2026, the global medical technology giant Stryker suffered a devastating cyberattack that brought its worldwide IT operations to a sudden halt. Iranian-linked threat actors breached the company’s network. They deployed highly destruc…
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Google has officially rolled out a crucial update for its Chrome browser, promoting version 146 to the stable channel for Windows, Mac, and Linux users. Many of these flaws involve deep-seated memory corruption issues that, if left unpatched, could all…
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Meta has rolled out a new wave of anti‑scam protections across WhatsApp, Facebook, and Messenger, combining AI‑driven detection, stricter advertiser controls, and public awareness campaigns to tackle fast‑evolving online fraud at scale. The new tools a…
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Google Cloud has officially completed its acquisition of cloud security leader Wiz, marking a significant consolidation in the cybersecurity landscape. Operating under its retained brand within Google Cloud, Wiz will integrate its code-to-cloud securit…
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
UNC6426 hackers turned a routine NPM update into a direct path to full AWS administrator access in under 72 hours, highlighting how fragile CI/CD-to-cloud trust can become when roles are overly permissive. When a developer at the victim organization u…
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Microsoft has disclosed a critical security flaw in its Microsoft Office suite, officially tracked as CVE-2026-26110. Released on March 10, 2026, this Remote Code Execution (RCE) vulnerability poses a significant threat to organizations and individuals…
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
