Cybersecurity News

Stay informed about the latest cybersecurity incidents, vulnerabilities, and threat landscape changes. We cover data breaches, ransomware campaigns, critical CVEs, and regulatory updates – with context on what it means for you and how to protect yourself.

Illustration showing banking Trojan campaigns Grandoreiro and BTMOB targeting a bank.
Cybersecurity News

Banking Trojans Hide in WebRTC and MaaS: Grandoreiro, BTMOB

CyberSecureFox Editorial Team

Two parallel banking Trojan campaigns — Grandoreiro for Windows and BTMOB RAT for Android — are actively targeting financial organizations ...

Malicious npm package targeting AI with glowing data transfer effect.
Cybersecurity News

Malicious npm Package Steals Claude AI Data via /mnt/user-data

CyberSecureFox Editorial Team

Researchers at OX Security have discovered a malicious npm package called mouse5212-super-formatter, which steals files from the /mnt/user-data directory — ...

SharePoint server graphic illustrating CVE-2026-45659 vulnerability fix.
Cybersecurity News

SharePoint deserialization flaw lets low-priv users run code

CyberSecureFox Editorial Team

Microsoft has released security updates that address the CVE-2026-45659 vulnerability in SharePoint Server — an untrusted data deserialization flaw with ...

Cybersecurity News

How CERT-In responds to AI-accelerated threats with 12-hour patch SLAs

CyberSecureFox Editorial Team

The Indian Computer Emergency Response Team (CERT-In) has published a 38-page CISG-2026-02 guideline that sets strict timelines for vulnerability remediation: ...

Graphic showing 'MINIFAST Backdoor' with global cyber threats visually represented.
Cybersecurity News

Iranian APT Nimbus Manticore Shifts from Phishing to SEO Poisoning

CyberSecureFox Editorial Team

The Iranian APT group Nimbus Manticore (also known as Screening Serpens and UNC1549) carried out three consecutive campaigns from February ...

Phishing email illustration targeting Ukraine's government with malware.
Cybersecurity News

Ghostwriter Phishing Campaign Abuses Prometheus to Deploy Cobalt Strike

CyberSecureFox Editorial Team

The Ghostwriter group (also tracked as UAC-0057 and UNC1151), which has been linked to Belarus, is running a phishing campaign ...

Visual representation of TrapDoor supply chain attack impacting software ecosystems.
Cybersecurity News

TrapDoor Campaign Steals Crypto Keys via npm, PyPI, Crates.io

CyberSecureFox Editorial Team

Researchers from Socket have discovered a coordinated supply chain attack, codenamed TrapDoor, that simultaneously affected the three largest package registries ...

RemotePE Lazarus Group graphic with connections to various digital threats.
Cybersecurity News

Inside RemotePE, the Lazarus In-Memory RAT Targeting Crypto

CyberSecureFox Editorial Team

Researchers from Fox-IT (an NCC Group division) have published a detailed analysis of the multi-stage malicious framework RemotePE — a ...

Visual representation of a critical security vulnerability in LiteSpeed cPanel.
Cybersecurity News

LiteSpeed cPanel Plugin 0‑Day CVE-2026-48172 Exploited in the Wild

CyberSecureFox Editorial Team

The critical vulnerability CVE-2026-48172 with a maximum CVSS rating of 10.0 in the LiteSpeed User-End cPanel Plugin is being actively ...

Graphic representing a VPN service dismantled by Europol and the FBI.
Cybersecurity News

How Europol and the FBI Took Down the Criminal First VPN Service

CyberSecureFox Editorial Team

Law enforcement agencies in Europe and North America carried out a coordinated operation on 19–20 May to dismantle First VPN ...

Previous 1234198 Next

CyberSecureFox

© 2026 INFO

About

About

Authors

Contact

Editorial

Editorial Standards

Corrections

Legal

Privacy Policy

Terms of Service