Cybersecurity News

Stay informed about the latest cybersecurity incidents, vulnerabilities, and threat landscape changes. We cover data breaches, ransomware campaigns, critical CVEs, and regulatory updates – with context on what it means for you and how to protect yourself.

Graphic highlighting CISA vulnerabilities CVE-2025-34291 and CVE-2026-34926.
Cybersecurity News

Langflow RCE and Apex One directory traversal added to CISA KEV

CyberSecureFox Editorial Team

On May 21, 2026, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) added two vulnerabilities to the Known Exploited Vulnerabilities ...

Microsoft Defender shield being compromised by CVE-2026-41091 and -45498.
Cybersecurity News

Active exploitation of Microsoft Defender CVE-2026-41091 and CVE-2026-45498

CyberSecureFox Editorial Team

Microsoft has confirmed active exploitation of two vulnerabilities in Microsoft Defender: CVE-2026-41091 (privilege escalation to SYSTEM, CVSS 7.8) and CVE-2026-45498 ...

Cybersecurity News

How Microsoft’s RAMPART and Clarity Bring Security into AI Agent Development

CyberSecureFox Editorial Team

Microsoft has introduced two open-source tools — RAMPART and Clarity — designed to test the security of AI agents directly ...

Visual representation of AI-driven identity management risks and security.
Cybersecurity News

How Hidden Identities and AI Agents Undermine Enterprise IAM

CyberSecureFox Editorial Team

The company Orchid Security has published the report Identity Gap: Snapshot 2026, according to which 57% of corporate identity infrastructure ...

Graphics showing VPN censorship concepts related to user privacy and restrictions.
Cybersecurity News

Why Mozilla Warns UK VPN Restrictions Threaten Online Privacy

CyberSecureFox Editorial Team

Mozilla has submitted an official appeal to the Ministry of Science, Innovation and Technology of the United Kingdom (DSIT), in ...

Illustration depicting Android ad fraud with download icons and coins.
Cybersecurity News

How Trapdoor Turned Android Utility Apps into a Massive Ad Fraud

CyberSecureFox Editorial Team

The HUMAN Satori Threat Intelligence team has uncovered a large-scale fraudulent operation named Trapdoor, targeting Android users. According to the ...

Nx Console logo connected to security symbols and a hacker figure.
Cybersecurity News

How the Nx Console VS Code Extension Was Used to Steal Dev Credentials

CyberSecureFox Editorial Team

The popular Nx Console extension for Visual Studio Code (version 18.95.0) was compromised and used to deliver multi-stage malware that ...

GitHub logo breaking through a wall, Python container spreading malware to laptops.
Cybersecurity News

TeamPCP’s Mini Shai-Hulud Campaign and the Compromise of GitHub and durabletask

CyberSecureFox Editorial Team

GitHub is investigating unauthorized access to its internal repositories, while at the same time the TeamPCP group is continuing a ...

Illustration of a phishing attack involving OAuth and Microsoft 365 with devices.
Cybersecurity News

How EvilTokens Abuses OAuth Device Codes to Bypass MFA in Microsoft 365

CyberSecureFox Editorial Team

The EvilTokens platform, operating under a “phishing as a service” (PhaaS) model, according to Cloud Security Alliance data, exploits the ...

Blue shield with Drupal logo cracking under a red beam, signifying security alert.
Cybersecurity News

Upcoming Drupal Core Security Fix for High-Severity Vulnerability

CyberSecureFox Editorial Team

Drupal has announced a planned release of a core security update for all supported branches, scheduled for May 20, 2026, ...

123196 Next

CyberSecureFox

© 2026 INFO

About

About

Authors

Contact

Editorial

Editorial Standards

Corrections

Legal

Privacy Policy

Terms of Service