Cybersecurity News
Stay informed about the latest cybersecurity incidents, vulnerabilities, and threat landscape changes. We cover data breaches, ransomware campaigns, critical CVEs, and regulatory updates – with context on what it means for you and how to protect yourself.
ChatGPT DNS Data Exfiltration Vulnerability and OpenAI Codex Command Injection Raise AI Security Concerns
Recent research by Check Point and BeyondTrust Phantom Labs has revealed critical security weaknesses in two widely used OpenAI services: ...
GitGuardian State of Secrets Sprawl 2026: AI, DevOps and the Explosion of Machine Identities
The latest GitGuardian State of Secrets Sprawl 2026 report shows that hardcoded secrets in code and infrastructure are not just ...
Chinese Cyber Espionage Operation Targets Southeast Asian Government with USB Malware and Advanced RATs
A government organization in Southeast Asia has been hit by a large-scale cyber espionage campaign that Palo Alto Networks’ Unit ...
Iran-Linked Handala Hack Team Targets FBI Email and Stryker in Destructive Cyber Attacks
The Iran-aligned Handala Hack Team, believed to be operating on behalf of Iran’s Ministry of Intelligence and Security (MOIS), has ...
Citrix NetScaler CVE-2026-3055: Critical SAML IDP Vulnerability Under Active Reconnaissance
A new critical vulnerability in Citrix NetScaler ADC and Citrix NetScaler Gateway, tracked as CVE-2026-3055 with a CVSS score of ...
CVE-2025-53521: Critical F5 BIG-IP APM Vulnerability Added to CISA KEV
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical flaw in F5 BIG-IP Access Policy Manager (APM), ...
Apple Issues Urgent Security Warnings Over Coruna and DarkSword iOS Exploits
Apple has begun displaying critical system alerts directly on the lock screen of iPhone and iPad devices running outdated versions ...
Telnyx PyPI Supply Chain Attack Uses Audio Steganography to Target Python Developers
A new phase in an ongoing software supply chain attack campaign has compromised the popular Python package Telnyx, with malicious ...
TikTok for Business AitM Phishing and SVG Malware: How Attackers Hijack Brand Accounts
Cybercriminals have launched a new wave of adversary‑in‑the‑middle (AitM) phishing attacks targeting TikTok for Business accounts, aiming to steal credentials ...
LangChain and LangGraph Vulnerabilities Expose LLM Applications to Sensitive Data Leaks
Security researchers have disclosed three vulnerabilities in the popular AI development frameworks LangChain and LangGraph that can lead to leakage ...
