Cybersecurity News

Stay informed about the latest cybersecurity incidents, vulnerabilities, and threat landscape changes. We cover data breaches, ransomware campaigns, critical CVEs, and regulatory updates – with context on what it means for you and how to protect yourself.

Illustration of a bomb labeled “HTTP/2 BOMB” targeting servers, depicting a DoS concept.
Cybersecurity News

How the HTTP/2 Bomb Attack Exploits HPACK to Exhaust Server Memory

CyberSecureFox Editorial Team

Researchers from the company Calif have published a description of a new remote denial-of-service attack technique dubbed HTTP/2 Bomb. According ...

Minecraft-themed graphic showing malware threat with screens and icons.
Cybersecurity News

McAfee uncovers Weedhack, a Minecraft malware-as-a-service platform

CyberSecureFox Editorial Team

McAfee Labs has uncovered the Weedhack campaign — a “malware-as-a-service” (MaaS) platform targeting Minecraft players. According to the researchers, attackers ...

Android logo on a smartphone with a security bug and CVE-2025-48595 reference.
Cybersecurity News

CVE-2025-48595: Actively Exploited Android Privilege Escalation

CyberSecureFox Editorial Team

As part of the June 2026 Android Security Bulletin, Google has fixed 124 vulnerabilities, one of which — CVE-2025-48595 — ...

Oracle WebLogic Server graphic highlighting CVE-2024-21182 vulnerability.
Cybersecurity News

Oracle WebLogic CVE-2024-21182: CISA Confirms Active Exploitation

CyberSecureFox Editorial Team

On June 1, 2026, CISA added vulnerability CVE-2024-21182 to the Known Exploited Vulnerabilities (KEV) catalog, confirming active exploitation of this ...

Xeno RAT targets Afghan finance ministry in a digital illustration.
Cybersecurity News

Operation XENOFISCAL: Xeno RAT phishing hits Afghan public finance

CyberSecureFox Editorial Team

Researchers at Seqrite Labs have disclosed details of a targeted phishing campaign against Afghanistan’s Ministry of Finance, provincial revenue and ...

Dark illustration of a box with npm branding, emitting ominous smoke and eyes.
Cybersecurity News

Miasma malware campaign compromises @redhat-cloud-services npm

CyberSecureFox Editorial Team

Numerous npm packages in the @redhat-cloud-services namespace were compromised as part of a campaign codenamed Miasma. According to researchers from ...

Illustration of a malicious npm package stealing tokens from a server.
Cybersecurity News

Supply-chain attack targets OpenAI Codex users via npm and Android

CyberSecureFox Editorial Team

Researchers from Aikido Security discovered a malicious campaign targeting developers using OpenAI Codex. The npm package codexui-android, promoted as a ...

Illustration of a botnet being dismantled with servers and connected devices.
Cybersecurity News

How Dutch Authorities Took Down a 17 Million-Device Botnet

CyberSecureFox Editorial Team

The Dutch Police, together with the National Cyber Security Centre (NCSC), announced the dismantling of one of the largest botnets ...

Visual representation of CVE-2026-0257 with network security elements.
Cybersecurity News

Active Exploitation of Palo Alto GlobalProtect Auth Bypass CVE-2026-0257

CyberSecureFox Editorial Team

Palo Alto Networks has confirmed active exploitation of the CVE-2026-0257 vulnerability (CVSS 7.8) in PAN-OS and Prisma Access products. The ...

123200 Next

CyberSecureFox

© 2026 INFO

About

About

Authors

Contact

Editorial

Editorial Standards

Corrections

Legal

Privacy Policy

Terms of Service