Mastodon Mastodon Mastodon Mastodon

Cybersecurity News

Stay informed about the latest cybersecurity incidents, vulnerabilities, and threat landscape changes. We cover data breaches, ransomware campaigns, critical CVEs, and regulatory updates – with context on what it means for you and how to protect yourself.

Graphic depicting cybersecurity vulnerabilities with lock and shield icons.

BeyondTrust Remote Support and PRA: four flaws and AI discovery

CyberSecureFox Editorial Team

BeyondTrust has released updates for its Remote Support (RS) and Privileged Remote Access (PRA) products that fix four vulnerabilities, two ...

Illustration showing phishing targeting Microsoft 365 users and login credentials.

How Device Code Phishing-as-a-Service Threatens Microsoft 365 Tenants

CyberSecureFox Editorial Team

In late June – early July 2026, a phishing campaign using the Device Code Flow mechanism was observed, targeting Microsoft ...

Graphic depicting a laptop with hacking elements and handcuffs, relating to cybersecurity.

Windows Device ID Links Scattered Spider Suspect to Jewelry Retailer Hack

CyberSecureFox Editorial Team

US prosecutors linked an alleged member of the Scattered Spider group to the breach of a major jewelry retailer, using ...

Visual representation of GitLost Attack on secure coding workflows.

How the GitLost Attack Can Leak Private GitHub Repositories via AI Agents

CyberSecureFox Editorial Team

Researchers from Noma Security have demonstrated the GitLost attack technique, which makes it possible to extract the contents of an ...

Tenda router with a security breach illustration and CVE-2026-11405 label.

CERT/CC warns of hidden admin backdoor in Tenda router firmware

CyberSecureFox Editorial Team

The CERT Coordination Center (CERT/CC) has published an advisory about an undocumented backdoor in the firmware of several router models ...

Visual representation of KVM Januscape bug in Linux Kernel highlighting security risks.

How CVE-2026-53359 Lets KVM Guests Crash the Host

CyberSecureFox Editorial Team

A use-after-free vulnerability (CVE-2026-53359) has been discovered in the KVM hypervisor of the Linux kernel, allowing a guest virtual machine ...

Illustration of "Operation DragonReturn" with an envelope, dragon, and laptop.

How Operation DragonReturn Uses DCRat to Exploit India’s Tax Season

CyberSecureFox Editorial Team

Researchers at Seqrite Labs have uncovered a multi-stage phishing campaign code-named Operation DragonReturn, targeting Indian taxpayers, tax professionals, and corporate ...

Visual representation of the CVE-2026-46242 Linux kernel exploit vulnerability.

CVE-2026-46242 Bad Epoll: Local Root via Linux epoll Race

CyberSecureFox Editorial Team

A vulnerability CVE-2026-46242 has been discovered in the Linux kernel’s epoll subsystem, dubbed Bad Epoll. It is a use-after-free bug ...