Cybersecurity News
Stay up-to-date with the latest cybersecurity news and developments in the cybersecurity landscape. Be the first to know about the latest threats, current innovations, and major trends in the cyber universe. Check our Cyber News section for the freshest information.

Apple Opens Applications for SRDP 2026: Research iPhones and High-Value Bug Bounties
Apple has opened applications for the Security Research Device Program (SRDP) 2026, its flagship initiative that provides vetted researchers with ...

Phantom Papa phishing campaign delivers Phantom stealer via RAR→IMG/ISO, adds webcam extortion module
In June 2025, researchers documented a new phishing wave dubbed Phantom Papa that distributes the Phantom information stealer. The campaign ...

Drift OAuth Token Theft Expands Beyond Salesforce, Impacts Google Workspace; Mandiant Ties Activity to UNC6395
Google Threat Intelligence (Mandiant) has linked a wave of intrusions to the theft and reuse of OAuth and refresh tokens ...

FreePBX Zero‑Day (CVE-2025-57819) Exploited in the Wild: What to Do Now
Sangoma Technologies has confirmed in-the-wild exploitation of a critical zero‑day in FreePBX, the open-source PBX platform built on Asterisk and ...

Critical Vulnerabilities in Pudu Robotics’ Service Robots Exposed and Remediated
An independent security researcher known as BobDaHacker disclosed critical weaknesses in the Pudu Robotics ecosystem that could allow attackers to ...

VS Code Marketplace Name Reuse Opens Door to Brandjacking and Malware Loaders
ReversingLabs has identified an integrity gap in the Visual Studio Code Marketplace: when an extension is hard-deleted, its name can ...

Jaguar Land Rover Confirms Cyber Incident: Operations Disrupted, Customer Data Unaffected
Jaguar Land Rover (JLR) has confirmed a cyber incident that prompted the company to proactively take a portion of its ...

Cloudflare Thwarts Record 11.5 Tbps DDoS as UDP Flood Hits 5.1 Billion PPS
Cloudflare reports neutralizing the largest hyper‑volumetric distributed denial‑of‑service (DDoS) attack observed to date, with peak bandwidth hitting 11.5 Tbps and ...

Hacktivists and Three Threat Clusters Are Shaping Attacks on Russia, Belarus, and Neighboring States
Kaspersky researchers have released a technical review of 14 threat groups most actively targeting organizations in Russia, Belarus, and several ...

Salesloft Drift OAuth Attack Exposes Salesforce Data at Major Firms
A large-scale supply-chain intrusion involving the Salesloft Drift integration platform led to the theft of OAuth and refresh tokens and ...