Skip to main content
← All Tags

Cybersecurity

624 articles in this category (Page 14 of 26)

AI NewsCloud SecurityCybersecurity

Fake AI Chrome Extensions Stole 900K Users' Data

Nearly 900,000 users had their ChatGPT and DeepSeek data stolen via malicious Chrome extensions mimicking legitimate AI tools.

Read more
AI NewsCloud SecurityCybersecurity

Cloud Security’s Future: AI Adoption and the Commoditization of Security Features

99% of organizations are using or planning to use cloud services for AI workloads, driving a shift towards commoditized security features and increased collaboration between CSPs and customers.

Read more
AI NewsCybersecurityVulnerability Management

Maximum Severity HPE OneView Flaw Exploited in the Wild

CVE-2025-37164, a critical remote code execution vulnerability in HPE OneView, is now being actively exploited in the wild.

Read more
AI NewsCybersecurityMalware

NodeCordRAT Delivered via Malicious npm Packages

Researchers discovered NodeCordRAT, a new RAT delivered through three npm packages (bitcoin-main-lib, bitcoin-lib-js, bip40) with over 3,290 total downloads.

Read more
AI NewsCybersecuritySupply Chain

The State of Trusted Open Source: 98% of CVEs Reside Outside Top Projects

Analysis of nearly half a billion builds reveals a critical shift: 98% of vulnerabilities are found in longtail open source images, demanding broader security focus.

Read more
AI NewsCybersecurityVulnerability Management

RustFS Flaw, Iranian Ops, and Cloud Leaks Dominate Recent Cybersecurity Headlines

A critical RustFS vulnerability allowing remote code execution, alongside increased Iranian cyberattacks and widespread cloud data leaks, highlight escalating cybersecurity threats.

Read more
AI NewsCybersecurityIoT

Attackers Exploit Zero-Day in End-of-Life D-Link Routers

Hackers are exploiting a critical zero-day flaw in unsupported D-Link routers, enabling arbitrary command execution and potentially broader network compromise.

Read more
AI NewsCybersecuritySoftware Vulnerability

Critical n8n Vulnerability (CVSS 10.0) Allows Unauthenticated Server Takeover

A critical CVSS 10.0 vulnerability, dubbed 'Ni8mare', in n8n allows unauthenticated attackers to gain full control of servers.

Read more
AI NewsCybersecurityThreat Intelligence

DDoSia Powers Affiliate-Driven Hacktivist Attacks

Pro-Russian group NoName057(16) leverages the DDoSia tool to mobilize volunteers, resulting in 7,939 DDoS attack commands in a single week.

Read more
AI NewsCloud SecurityCybersecurity

Lack of MFA Enables Vast Cloud Credential Heist Affecting 50 Enterprises

A threat actor named 'Zestix' compromised 50 enterprises by exploiting stolen credentials on file-sharing platforms lacking multifactor authentication.

Read more
AI NewsCybersecurityPhishing

Microsoft Warns Misconfigured Email Routing Can Enable Internal Domain Phishing

Microsoft reports a surge in phishing attacks exploiting email misconfigurations, with over 13 million malicious emails blocked in October 2025.

Read more
AI NewsCybersecuritySoftware Updates

n8n Warns of CVSS 10.0 RCE Vulnerability Affecting Self-Hosted and Cloud Versions

n8n disclosed CVE-2026-21877, a critical authenticated RCE flaw with a CVSS score of 10.0, impacting versions prior to 1.121.3.

Read more
AI NewsCybersecurityIoT Security

Active Exploitation of Critical RCE in Legacy D-Link DSL Routers

A critical remote code execution vulnerability (CVE-2026-0625) in D-Link DSL routers is under active exploitation, allowing attackers to hijack DNS.

Read more
AI NewsCybersecurityIAM

The Future of Cybersecurity Includes Non-Human Employees

Non-Human Identities (NHIs) are redefining how organizations secure access, with 51% of respondents now considering NHI security as critical as human account security.

Read more
AI NewsCybersecurityVulnerability Management

Veeam Patches Critical RCE Vulnerability with CVSS 9.0 in Backup & Replication

Veeam addressed CVE-2025-59470, a critical remote code execution flaw (CVSS 9.0) in Backup & Replication, requiring updates to version 13.0.1.1071.

Read more
AI NewsCybersecurityZero Trust

AI-Powered Zero Trust Detects Fileless Attacks

Webinar reveals how AI addresses the increasing threat of fileless attacks abusing trusted tools, representing a critical blind spot for traditional security.

Read more
AI NewsCybersecurityNode.js

Critical AdonisJS Bodyparser Flaw (CVSS 9.2) Enables Arbitrary File Write on Servers

A critical CVSS 9.2 vulnerability in AdonisJS bodyparser allows attackers to write arbitrary files via path traversal when uploads are misconfigured.

Read more
AI NewsCybersecurityMalware

PHALT#BLYX Campaign Targets European Hotels with DCRat Malware

A new PHALT#BLYX campaign is exploiting European hotels with fake Booking.com emails leading to DCRat malware deployment.

Read more
AI NewsCybersecurityThreat Intelligence

Scattered Lapsus$ Hunters Snared in Cyber Researcher Honeypot

Scattered Lapsus$ Hunters were lured into a honeypot using synthetic data, revealing their tactics and leading to information shared with law enforcement.

Read more
AI NewsCybersecurityBrowser Extensions

Two Chrome Extensions Stole ChatGPT & DeepSeek Chats from 900,000 Users

Security researchers discovered two malicious Chrome extensions with 900,000 installs secretly collecting ChatGPT and DeepSeek chats and browsing data.

Read more
AI NewsCybersecurityIoT Security

TOTOLINK EX200 Vulnerability Enables Remote Device Takeover

An unpatched firmware flaw in the TOTOLINK EX200 allows authenticated attackers to enable unauthenticated root telnet access, granting full device control.

Read more
AI NewsCybersecuritySoftware Supply Chain

VS Code Forks Recommend Missing Extensions, Creating Supply Chain Risk in Open VSX

AI-powered VS Code forks recommended non-existent extensions in Open VSX, leading to over 500 installs of a placeholder extension.

Read more
AI NewsCybersecurityIAM

What is Identity Dark Matter?

Unmanaged identities create 'identity dark matter,' contributing to 27% of cloud breaches in 2024.

Read more
AI NewsCybersecurityFinTech

Advisor360 Automates Shadow AI Detection, Reducing Risk Assessment Time from Days to Seconds

Advisor360 reduced AI risk assessment from a week to seconds by implementing Harmonic Security's automated Shadow AI detection.

Read more