Cybersecurity News

Stay informed about the latest cybersecurity incidents, vulnerabilities, and threat landscape changes. We cover data breaches, ransomware campaigns, critical CVEs, and regulatory updates – with context on what it means for you and how to protect yourself.

Panoramic view of a river cityscape with temples and modern buildings at sunset.

Stealth Nginx Traffic Hijacking Campaign Exploits React2Shell and Baota Servers

CyberSecureFox 🦊

Datadog Security Labs has reported a large-scale malicious campaign in which attackers gain access to Nginx servers and silently route ...

Man reviews data breach notification with multiple screens displaying alerts.

Substack Data Breach: Emails, Phone Numbers and Account Metadata Exposed

CyberSecureFox 🦊

Substack has notified users of a data breach in which email addresses, phone numbers and internal account metadata were exposed ...

Aerial view of Microsoft headquarters with Eclipse Foundation signage nearby.

Open VSX Introduces Pre-Publication Security Scanning for VS Code Extensions

CyberSecureFox 🦊

The Open VSX extension registry, maintained by the Eclipse Foundation, is introducing automated, pre-publication security scanning for Visual Studio Code ...

Two engineers analyze a cyber attack on a futuristic computer interface.

Metro4Shell (CVE-2025-11953): Critical React Native Metro Server Vulnerability Exploited in the Wild

CyberSecureFox 🦊

The critical vulnerability CVE-2025-11953, informally dubbed Metro4Shell, is being actively abused to compromise React Native development environments. Attackers are exploiting ...

Scales of justice with coins, a broken lock, and a burning paper scene depicting cryptocurrency.

Nitrogen Ransomware Bug on VMware ESXi Makes Data Recovery Impossible

CyberSecureFox 🦊

A critical implementation error in Nitrogen ransomware targeting VMware ESXi hosts effectively converts each attack into a data‑wiping event rather ...

Aerial view of a busy street in New York with tall buildings and a crowd gathered.

Incognito Darknet Marketplace Admin Rui‑Siang Lin Sentenced to 30 Years: A Critical Case for Cybercrime and Dark Web Security

CyberSecureFox 🦊

A U.S. federal court has handed down one of the harshest sentences to date for online drug trafficking: 24‑year‑old Taiwanese ...

Two contrasting hacker scenes with dark and light themes, showcasing digital warfare.

Legion Winlocker: Fake Ransomware Linked to NyashTeam Targets Gamers and Home Users

CyberSecureFox 🦊

At the end of 2025, analysts at F6 identified a malicious program that did not fit typical modern ransomware patterns. ...

Group of focused individuals working in a tech space, with coding screens and a skull logo.

OpenClaw AI Agents Targeted by Malicious Skills and Early Prompt Worms

CyberSecureFox 🦊

The open‑source local AI assistant ecosystem OpenClaw (formerly Moltbot and ClawdBot) has rapidly evolved from a hobby project into a ...

Winter cityscape of Kyiv with a soldier, river, and historic landmarks.

APT28 Exploits Microsoft Office CVE-2026-21509 Zero-Day in Targeted European Attacks

CyberSecureFox 🦊

Within days of Microsoft releasing an emergency security update for Microsoft Office, the Russian-linked threat group APT28 (also known as ...

Futuristic cyber unit strategizing against deepfakes and data breaches in a high-tech control room.

France Targets X and Grok AI Over Illegal Content and Cybercrime Concerns

CyberSecureFox 🦊

French law-enforcement authorities have searched the Paris office of social network X as part of a wide‑ranging criminal investigation into ...