Cybersecurity News

Stay informed about the latest cybersecurity incidents, vulnerabilities, and threat landscape changes. We cover data breaches, ransomware campaigns, critical CVEs, and regulatory updates – with context on what it means for you and how to protect yourself.

Illustration of data flow involving RubyGems and storage misuse.

GemStuffer campaign turns RubyGems into free data infrastructure

CyberSecureFox Editorial Team

Researchers at Socket discovered a campaign called GemStuffer, in which more than 150 packages were uploaded to the RubyGems repository ...

Shield graphic featuring "138 Critical Fixes" for Microsoft software updates.

How Microsoft’s May 2026 Patch Tuesday Impacts Windows, Azure and AD

CyberSecureFox Editorial Team

Microsoft in the May Patch Tuesday 2026 closed 138 vulnerabilities in Windows and cloud services, including critical flaws in Windows ...

Quasar Linux RAT visualization connecting various tech and secrets.

Inside QLNX: a stealthy Linux implant stealing developer secrets

CyberSecureFox Editorial Team

Trend Micro researchers have described a previously undocumented Linux implant codenamed Quasar Linux RAT (QLNX), which, according to their findings, ...

Magnifying glass focusing on a low-priority alert with EDR shield graphic.

How Low-Priority Alerts and EDR ‘Mitigations’ Hide Real Threats

CyberSecureFox Editorial Team

A study covering more than 25 million security alerts in real corporate environments revealed a structural issue: almost 1% of ...

Palo Alto firewall with error message illustrating CVE-2026-0300 vulnerability.

Critical PAN-OS buffer overflow in User-ID portal under attack

CyberSecureFox Editorial Team

Palo Alto Networks has confirmed limited active exploitation of the critical vulnerability CVE-2026-0300 in its PAN-OS software. This buffer overflow ...

vm2 sandbox escapes raise concerns over JavaScript isolation

CyberSecureFox Editorial Team

Critical vulnerabilities have been discovered in the vm2 library, a popular tool for running untrusted JavaScript code in an isolated ...

Flare.io details PamDOORa PAM backdoor for persistent SSH access

CyberSecureFox Editorial Team

Researchers at Flare.io have disclosed details of a new Linux backdoor called PamDOORa, which is reportedly being sold on the ...

Apache HTTP Server graphic highlighting critical double-free bug CVE-2026-23918.

CVE-2026-23918: critical Apache HTTP/2 flaw and mitigation guidance

CyberSecureFox Editorial Team

Apache Software Foundation has released a security update for Apache HTTP Server that fixes a critical vulnerability CVE-2026-23918 (CVSS 8.8) ...

Botnet representation targeting Android ADB through connected devices.

New xlabs_v1 Mirai Botnet Exploits Android ADB for DDoS Attacks

CyberSecureFox Editorial Team

Researchers from Hunt.io have discovered a new botnet based on Mirai, identifying itself as xlabs_v1, which exploits devices with an ...

Graphic depicting cPanel WHM vulnerabilities affecting WordPress security.

Security updates for cPanel, WHM and WP Squared: three CVEs

CyberSecureFox Editorial Team

cPanel has released security updates for cPanel and Web Host Manager (WHM), addressing three vulnerabilities: arbitrary file read, arbitrary Perl ...

123193 Next