A critical-severity argument-injection vulnerability, tracked as CVE-2026-40281 and covered in the advisory GHSA-q7r4-hc83-hf2q, has been disclosed in Gotenberg, a widely used...
John
John is an independent cybersecurity researcher covering vulnerabilities, malware campaigns, and emerging threats in the cybersecurity landscape.
Google has released Chrome 148 to the stable channel, delivering one of the largest security updates in...
A critical zero-day vulnerability in its PAN-OS firewall operating system, tracked as CVE-2026-0300, that is already being...
Cisco released security advisories on May 6, 2026, addressing a broad range of vulnerabilities, including remote code...
A sophisticated “low and slow” DDoS attack launched in mid-April 2026 delivered more than 2.45 billion malicious...
Threat actors have weaponized the OpenClaw agentic AI framework by publishing a fake “DeepSeek-Claw” skill that silently...
Microsoft is set to eliminate one of enterprise collaboration’s longest-standing friction points. Starting June 2026, Teams Rooms...
A devastating attack chain that bypasses Microsoft Entra ID (Azure AD) Conditional Access entirely, starting from a...
An uncovered a sophisticated intrusion campaign, active since at least January 2026, in which a threat actor...
In April 2026, popular video hosting platform Vimeo confirmed a significant data breach affecting approximately 119,200 users,...