Cybersecurity News
Stay informed about the latest cybersecurity incidents, vulnerabilities, and threat landscape changes. We cover data breaches, ransomware campaigns, critical CVEs, and regulatory updates – with context on what it means for you and how to protect yourself.
Zombie ZIP: How a Malicious ZIP Archive Attack Evades Antivirus and EDR
A new attack technique against ZIP archives, dubbed Zombie ZIP, demonstrates how seemingly harmless file formats can be weaponised to ...
Stolen Google Gemini API Key Triggers $82K Bill and Exposes Hidden Google Cloud Security Risks
A small startup from Mexico recently found itself facing an $82,314 Google Cloud bill after attackers abused a stolen Google ...
Microsoft March 2026 Patch Tuesday: What Security Teams Must Patch First
Microsoft’s March 2026 Patch Tuesday delivers more than 80 security fixes across Windows, Office and Azure services. The release includes ...
Europol and Microsoft Disrupt Tycoon2FA, a Major MFA-Bypass Phishing-as-a-Service Platform
International law-enforcement agencies, coordinated by Europol and technically supported by Microsoft, have dismantled the infrastructure of Tycoon2FA — one of ...
Unencrypted TPMS Signals Enable Covert Vehicle Tracking
Wireless tire pressure monitoring systems (TPMS), now mandatory in most new vehicles in the United States, European Union, and many ...
Anthropic’s Claude Finds 22 Firefox Vulnerabilities: A Turning Point for AI in Application Security
A joint experiment by Anthropic and Mozilla has shown that large language models (LLMs) are already capable of identifying security ...
Phishing Campaign Abuses ip6.arpa and Reverse DNS to Bypass Domain Reputation
A newly documented phishing campaign analyzed by Infoblox demonstrates how attackers can weaponize the technical .arpa domain and reverse DNS ...
KadNap Botnet Turns Asus Routers into Stealth Residential Proxies
The newly observed KadNap botnet is actively compromising Asus routers and other network devices, enrolling them into a peer-to-peer residential ...
Operation Leak: LeakBase Hacking Forum Seized and Its Users Exposed
An international law enforcement operation codenamed Operation Leak has dismantled the cybercrime forum LeakBase, a prominent marketplace for stolen data ...
OpenAI Codex Security: How AI Is Changing Vulnerability Detection in Source Code
OpenAI has introduced Codex Security, an AI-powered security agent designed to detect vulnerabilities in source code at scale. During its ...