Cybersecurity News
Stay informed about the latest cybersecurity incidents, vulnerabilities, and threat landscape changes. We cover data breaches, ransomware campaigns, critical CVEs, and regulatory updates – with context on what it means for you and how to protect yourself.
ClickFix Booking.com Phishing Campaign Hits European Hotels with Fake BSOD and DCRAT Malware
A new phishing campaign dubbed PHALT#BLYX is targeting hotels across Europe by impersonating Booking.com and abusing a technique known as ...
Bitfinex Hack Architect Ilya Lichtenstein Released Early: What the Case Teaches About Crypto Security
Ilya Lichtenstein, a central figure in one of the largest cryptocurrency criminal cases to date, has been released early from ...
Apex Legends Security Incident: Anti-Cheat Exploit Lets Attackers Control Players
At the end of last week, some Apex Legends players reported an unusual and highly visible security incident: attackers were ...
Windows 11 Adds New Group Policy to Remove Microsoft Copilot on Enterprise Devices
Microsoft is testing a new Windows 11 group policy that allows organizations to centrally remove the Microsoft Copilot app from ...
BreachForums Data Leak Exposes Hacker Forum Users and Compromises PGP Key
A new chapter in the history of the underground hacker forum BreachForums has ended with an ironic twist: the forum’s ...
Cloudflare Hit with Major AGCOM Fine Over Piracy Shield DNS Blocking Demands
Italy’s communications regulator AGCOM has imposed a €14,247,698 fine on Cloudflare for refusing to block access to alleged pirate sites ...
Instagram Fixes Password Reset Abuse as 17.5 Million Account Records Leak Online
Instagram has fixed a vulnerability that allowed third parties to trigger mass password reset emails to users, while a large ...
Ni8mare and Critical n8n Vulnerabilities: How Workflow Automation Became a Prime Target
The open-source workflow automation platform n8n has become the focus of intense security scrutiny after researchers disclosed details of four ...
Trust Wallet Chrome Extension Breach Tied to Shai-Hulud npm Supply Chain Attack
At the end of December 2025, the popular non-custodial crypto wallet Trust Wallet disclosed a major security incident: its Google ...
MongoBleed (CVE-2025-14847): Critical MongoDB RCE Vulnerability Now Actively Exploited
The critical remote code execution vulnerability CVE-2025-14847, widely referred to as MongoBleed, has moved from disclosure to active exploitation within ...
