Cybersecurity News
Stay informed about the latest cybersecurity incidents, vulnerabilities, and threat landscape changes. We cover data breaches, ransomware campaigns, critical CVEs, and regulatory updates – with context on what it means for you and how to protect yourself.
GitLab Releases Emergency Security Update to Address Critical SAML Authentication Flaws
GitLab has released an urgent security update addressing multiple critical vulnerabilities in its Community Edition (CE) and Enterprise Edition (EE) ...
Unprecedented DDoS Attack on X Platform: Technical Analysis and Security Response
On March 10, 2024, the social media platform X (formerly Twitter) experienced a severe distributed denial-of-service (DDoS) attack, resulting in ...
Dangerous Android Spyware KoSpy Linked to North Korean Hackers Detected in Official App Stores
Cybersecurity researchers at Lookout have uncovered a sophisticated Android spyware campaign dubbed “KoSpy,” attributed to the North Korean state-sponsored threat ...
Mozilla Issues Critical Security Alert: Firefox Users Must Update Before Certificate Expiration
Mozilla has issued a critical security advisory regarding an impending root certificate expiration that could significantly impact Firefox browser security ...
Critical PHP-CGI Vulnerability Threatens Windows Systems: Experts Warn of Active Exploitation
Cybersecurity researchers from GreyNoise and Cisco Talos have uncovered a large-scale exploitation campaign targeting a critical vulnerability in PHP-CGI implementations. ...
Microsoft Discovers Large-Scale Malvertising Campaign Compromising Windows Systems
Microsoft’s security researchers have uncovered a sophisticated malvertising campaign that has compromised approximately one million Windows devices worldwide. The attack, ...
Critical Remote Code Execution Vulnerability Discovered in FreeType Library
Security researchers have identified a severe vulnerability (CVE-2025-27363) in the widely-used FreeType font rendering library, affecting all versions prior to ...
Microsoft Reverses Decision on Material Theme Extensions Following Security Review
Microsoft has reinstated two widely-used Visual Studio Code extensions – Material Theme – Free and Material Theme Icons – Free ...
Critical Backdoor Discovered in Legacy Juniper Networks Routers: Advanced Persistent Threat Analysis
Cybersecurity researchers at Mandiant have uncovered a sophisticated backdoor campaign targeting legacy Juniper Networks routers running Junos OS. The attack ...
Sophisticated Crypto-Stealing Package Discovered in Python Package Index
Security researchers at Socket Security have uncovered a sophisticated supply chain attack targeting cryptocurrency developers through the Python Package Index ...
