Mastodon Mastodon Mastodon Mastodon

Cybersecurity News

Stay informed about the latest cybersecurity incidents, vulnerabilities, and threat landscape changes. We cover data breaches, ransomware campaigns, critical CVEs, and regulatory updates – with context on what it means for you and how to protect yourself.

Graphic depicting a hacked alert system with a warning message in Brazil.

False Extreme Alert Sent via Brazil’s Defesa Civil System

CyberSecureFox Editorial Team

On June 20, 2026, an unidentified attacker gained unauthorized access to Brazil’s national emergency alert system Defesa Civil Alerta and ...

Visual representation of a YouTube adblock extension with data flow imagery.

How Adblock for YouTube Put 10 Million Chrome Users at Risk

CyberSecureFox Editorial Team

Researchers at Island reported that the browser extension Adblock for YouTube (identifier cmedhionkhpnakcndndgjdbohmhepckk) contains a dormant mechanism that allows arbitrary ...

Phishing attack targeted at Signal users with a Russian theme.

Russian intelligence shifts Signal phishing to backup recovery keys

CyberSecureFox Editorial Team

FBI and CISA have updated their March warning about a Russian intelligence phishing campaign targeting Signal users. According to the ...

Visual representation of cyber threats linked to TinyRCT in Asia.

Unit 42 Links TinyRCT Backdoor to CL-STA-1062 Asian Government Attacks

CyberSecureFox Editorial Team

Researchers at Palo Alto Networks Unit 42 have linked a cluster of intrusions tracked as CL-STA-1062 to a previously undocumented ...

Illustration of a Linux penguin with a root exploit concept and code.

Local Privilege Escalation via Linux act_pedit Page Cache Bug

CyberSecureFox Editorial Team

The CVE-2026-46331 vulnerability in the Linux kernel traffic control subsystem allows a local unprivileged user to gain root privileges on ...

Visualization of a cyber exploit affecting PTC Windchill software.

CISA Confirms Active RCE Exploits Targeting PTC Windchill and FlexPLM

CyberSecureFox Editorial Team

On June 25, 2026, CISA added vulnerability CVE-2026-12569 (CVSS 9.3) to the Known Exploited Vulnerabilities catalog, confirming active exploitation in ...

Cisco SD-WAN device with CVE-2026-20245 and security vulnerability graphics.

CVE-2026-20245: Zero-Day Attack on Cisco Catalyst SD-WAN Analyzed

CyberSecureFox Editorial Team

The CVE-2026-20245 (CVSS 7.8) vulnerability in Cisco Catalyst SD-WAN was exploited by an unknown attacker at least two months before ...

Visual representation of Linux kernel vulnerability and privilege escalation.

DirtyClone Linux Kernel Vulnerability Enables Stealthy Root Escalation

CyberSecureFox Editorial Team

The CVE-2026-43503 vulnerability (CVSS 8.8), dubbed DirtyClone, allows a local user to corrupt file contents in the Linux kernel page ...

Giant worm emerging from boxes representing npm and Go, surrounded by floating packages.

Mini Shai-Hulud/Miasma npm campaign expands to Go and CI/CD secrets

CyberSecureFox Editorial Team

Security researchers from several companies have recorded a new wave of supply chain attacks linked to the Mini Shai-Hulud, Miasma, ...