Cybersecurity News
Stay informed about the latest cybersecurity incidents, vulnerabilities, and threat landscape changes. We cover data breaches, ransomware campaigns, critical CVEs, and regulatory updates – with context on what it means for you and how to protect yourself.
Global Password Leaks 2023–2025: Persistent Weaknesses in Password Security
A large-scale analysis of credential leaks from 2023 to 2025 conducted by Kaspersky Lab highlights a long‑standing problem in password ...
CVE-2025-8110 in Gogs: Critical Remote Code Execution Threat for Self‑Hosted Git Servers
A critical zero‑day vulnerability in Gogs, a lightweight self‑hosted Git service written in Go and widely deployed as an alternative ...
React2Shell (CVE-2025-55182): Critical React and Next.js RCE Now Weaponized by EtherRAT Malware
Within days of the disclosure of the critical React2Shell (CVE-2025-55182) vulnerability, threat hunters from Sysdig have observed active exploitation against ...
Microsoft December 2025 Patch Tuesday: Windows Zero-Day, GitHub Copilot, PowerShell and Office Flaws Fixed
Microsoft has closed 57 security vulnerabilities in its December 2025 Patch Tuesday release, including three zero‑day issues affecting Windows, GitHub ...
Google Strengthens Chrome AI Agents with Multi-Layer Defense Against Prompt Injection
Google has unveiled a multi-layer security architecture for Chrome AI agents powered by Gemini, targeting one of the most pressing ...
Gartner Urges Enterprises to Block AI Browsers Amid Growing Cybersecurity Risks
Analyst firm Gartner has released a report titled “Cybersecurity Should Block AI Browsers for Now”, advising organizations to temporarily restrict ...
FinCEN Ransomware Report: $4.5 Billion in Payments and a Shifting Threat Landscape
The U.S. Treasury’s Financial Crimes Enforcement Network (FinCEN) has released updated ransomware statistics based on thousands of suspicious activity reports ...
EU Fines X €120 Million Under the Digital Services Act: Cybersecurity and Transparency at Stake
The European Commission has imposed a €120 million fine on X (formerly Twitter) for alleged violations of the Digital Services ...
North Korean Hacker Infected With Lumma Stealer Exposes Bybit Crypto Hack Infrastructure
A rare operational mistake by a North Korean threat actor has given researchers an unusual look inside a hostile cyber ...
Malicious VS Code Extensions Bitcoin Black and Codo AI Deliver Powerful Infostealer
Security researchers have once again demonstrated that even official marketplaces cannot be treated as inherently trustworthy. Experts at Koi Security ...
