Mastodon Mastodon Mastodon Mastodon

Cybersecurity News

Stay informed about the latest cybersecurity incidents, vulnerabilities, and threat landscape changes. We cover data breaches, ransomware campaigns, critical CVEs, and regulatory updates – with context on what it means for you and how to protect yourself.

Visual representation of Cisco's WebDialer SSRF vulnerability and patching process.

How CVE-2026-20230 Puts Cisco Unified CM at Risk

CyberSecureFox Editorial Team

Cisco has released a fix for critical vulnerability CVE-2026-20230 in Cisco Unified Communications Manager (Unified CM) and its Session Management ...

Visual representation of cyber threats from TA4922 targeting Europe.

TA4922 ramps up global phishing using Atlas RAT and new loaders

CyberSecureFox Editorial Team

The Chinese-speaking cybercriminal group TA4922, previously focused on targets in East Asia, has expanded its attack geography to European organizations ...

WordPress logo with a Steam logo, connected by data streams, dark background.

Multi-stage WordPress infection abusing Steam Community C2

CyberSecureFox Editorial Team

According to GoDaddy researchers, around 1,980 WordPress-based sites have been infected with multi-stage malware that uses Steam Community profiles as ...

Computer screen displaying a shattered Windows logo with a bug icon.

How Microsoft’s Conflict With 0-Day Researcher Nightmare Eclipse Escalated

CyberSecureFox Editorial Team

Microsoft published a statement in which it stepped back from its aggressive rhetoric in a conflict with security researcher Nightmare ...

Visual representation of a critical RCE vulnerability in Mirasvit Cache Warmer.

Mirasvit Full Page Cache Warmer Magento RCE Actively Exploited

CyberSecureFox Editorial Team

On June 3, 2026, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) added vulnerability CVE-2026-45247 to its Known Exploited Vulnerabilities ...

Visual representation of tech giants combating scam networks in Southeast Asia.

How Operation Disruption Week Hit Transnational Pig-Butchering Scams

CyberSecureFox Editorial Team

The U.S. Department of Justice announced the results of an unprecedented joint operation by government agencies and the private sector ...

Smartphone sending notifications related to Google Gemini security issues.

SafeBreach shows how a single message could hijack Gemini on Android

CyberSecureFox Editorial Team

SafeBreach researcher Or Yair demonstrated an indirect prompt injection technique against the Google Gemini voice assistant on Android, where a ...

Visual representation of phishing scheme involving DesckVB RAT malware.

Huntress Uncovers DesckVB RAT Campaign Abusing Google DoubleClick

CyberSecureFox Editorial Team

Researchers at Huntress observed a large-scale phishing email campaign in which attackers use the legitimate Google DoubleClick Campaign Manager domain ...

Mobile device showing Microsoft 365 apps with security threat visuals.

Forgotten Debug Flag Exposed Microsoft 365 Android SSO Tokens

CyberSecureFox Editorial Team

Microsoft has released fixes for four spoofing vulnerabilities in the Android apps Word, PowerPoint, Excel, and Microsoft 365 Copilot that ...

Abstract graphic illustrating a critical Redis security vulnerability.

How the Redis CVE-2026-23479 RCE Works and How to Mitigate It

CyberSecureFox Editorial Team

On May 5, Redis released fixes for five remote code execution (RCE) vulnerabilities, the most severe of which — CVE-2026-23479 ...