Mastodon Mastodon Mastodon Mastodon

Cybersecurity News

Stay informed about the latest cybersecurity incidents, vulnerabilities, and threat landscape changes. We cover data breaches, ransomware campaigns, critical CVEs, and regulatory updates – with context on what it means for you and how to protect yourself.

** NPM package signifies risk, showcasing a key and wallet symbols in a dark setting.

Backdoored Injective Labs SDK Targets Private Keys and Seed Phrases

CyberSecureFox Editorial Team

Attackers compromised the official GitHub repository of the Injective Labs project and published a malicious version of the SDK package ...

ShareFile storage zone controller displaying shutdown alert and security icons.

Why Progress Is Forcing ShareFile Storage Zone Controllers Offline

CyberSecureFox Editorial Team

Progress Software has instructed ShareFile customers to immediately shut down Windows servers running the Storage Zone Controller component, citing a ...

Laser targeting a shielded card, representing security flaws in Tangem Cards.

Tangem Hardware Wallets Exposed to Costly Laser PIN Reset Attack

CyberSecureFox Editorial Team

The Ledger Donjon research team has disclosed a vulnerability in Tangem cryptocurrency wallets: a precisely timed laser pulse aimed at ...

Graphic depicting cybersecurity vulnerabilities with lock and shield icons.

BeyondTrust Remote Support and PRA: four flaws and AI discovery

CyberSecureFox Editorial Team

BeyondTrust has released updates for its Remote Support (RS) and Privileged Remote Access (PRA) products that fix four vulnerabilities, two ...

Illustration showing phishing targeting Microsoft 365 users and login credentials.

How Device Code Phishing-as-a-Service Threatens Microsoft 365 Tenants

CyberSecureFox Editorial Team

In late June – early July 2026, a phishing campaign using the Device Code Flow mechanism was observed, targeting Microsoft ...

Graphic depicting a laptop with hacking elements and handcuffs, relating to cybersecurity.

Windows Device ID Links Scattered Spider Suspect to Jewelry Retailer Hack

CyberSecureFox Editorial Team

US prosecutors linked an alleged member of the Scattered Spider group to the breach of a major jewelry retailer, using ...

Visual representation of GitLost Attack on secure coding workflows.

How the GitLost Attack Can Leak Private GitHub Repositories via AI Agents

CyberSecureFox Editorial Team

Researchers from Noma Security have demonstrated the GitLost attack technique, which makes it possible to extract the contents of an ...

Tenda router with a security breach illustration and CVE-2026-11405 label.

CERT/CC warns of hidden admin backdoor in Tenda router firmware

CyberSecureFox Editorial Team

The CERT Coordination Center (CERT/CC) has published an advisory about an undocumented backdoor in the firmware of several router models ...

Visual representation of KVM Januscape bug in Linux Kernel highlighting security risks.

How CVE-2026-53359 Lets KVM Guests Crash the Host

CyberSecureFox Editorial Team

A use-after-free vulnerability (CVE-2026-53359) has been discovered in the KVM hypervisor of the Linux kernel, allowing a guest virtual machine ...