Cyber Attack

• Cyber Attack
• Cyber Security News

Okta Vishing Attacks Bypass MFA, Leading to Mass Data Theft

John 1 month ago 0

Voice phishing (vishing) attacks targeting Okta identity infrastructure are rapidly evolving into one of the most dangerous...

Read More Read more about Okta Vishing Attacks Bypass MFA, Leading to Mass Data Theft

• Cyber Attack
• Cyber Security News

OpenAI Revokes macOS Certs After Axios npm Supply Chain Attack

John 1 month ago 0

OpenAI has initiated an emergency certificate revocation and rotation for all macOS desktop applications after a North...

Read More Read more about OpenAI Revokes macOS Certs After Axios npm Supply Chain Attack

• Cyber Attack
• Cyber Security News

node-forge Flaw Lets Attackers Forge Trusted Certificates 

John 1 month ago 0

A high-severity vulnerability in the widely used node-forge JavaScript cryptography library allows attackers to forge trusted certificate chains by...

Read More Read more about node-forge Flaw Lets Attackers Forge Trusted Certificates 

• Cyber Attack
• Cyber Security News

Apache Tomcat Padding Oracle Flaw Exposes Cluster Traffic

John 1 month ago 0

Apache Tomcat, one of the world’s most widely deployed open-source Java web servers, has been found to...

Read More Read more about Apache Tomcat Padding Oracle Flaw Exposes Cluster Traffic

• Cyber Attack
• Cyber Security News

Critical Chatbox AI Vulnerability Allows Remote OS Command Injection

John 1 month ago 0

A high-severity OS command injection vulnerability (CVE-2026-6130) has been disclosed in Chatbox AI versions 1.20.0 and earlier,...

Read More Read more about Critical Chatbox AI Vulnerability Allows Remote OS Command Injection

• Cyber Attack
• Cyber Security News

Chrome M147 Removes Inline XSLT in SVG for Rust XML Security

John 1 month ago 0

Google Chrome’s engineering team has begun phasing out inline XSLT processing in SVG files, starting with Chrome...

Read More Read more about Chrome M147 Removes Inline XSLT in SVG for Rust XML Security

• Cyber Attack
• Cyber Security News

Critical Marimo Pre-Auth RCE Exploited Within 10 Hours of Patch

John 1 month ago 0

A critical pre-authentication remote code execution (RCE) vulnerability, CVE-2026-39987, has been discovered in Marimo, a widely used...

Read More Read more about Critical Marimo Pre-Auth RCE Exploited Within 10 Hours of Patch

• Cyber Attack
• Cyber Security News

Forest Blizzard Hijacks SOHO Routers for DNS Espionage

John 1 month ago 0

Russian intelligence-linked threat actor Forest Blizzard (APT28) has been silently weaponizing millions of home and small-office routers...

Read More Read more about Forest Blizzard Hijacks SOHO Routers for DNS Espionage

• Cyber Attack
• Cyber Security News

FortiGate CVE-2025-59718 Exploited: Attackers Bypass SSO Login

John 1 month ago 0

A real-world intrusion leveraging CVE-2025-59718, a critical FortiGate SSO authentication bypass flaw, revealing a patient, methodical attacker...

Read More Read more about FortiGate CVE-2025-59718 Exploited: Attackers Bypass SSO Login

• Cyber Attack
• Cyber Security News

Social Engineering Attack Targets Open Source Developers via Slack Impersonation 

John 1 month ago 0

A sophisticated social engineering campaign is actively targeting open-source developers via Slack, impersonating trusted Linux Foundation community...

Read More Read more about Social Engineering Attack Targets Open Source Developers via Slack Impersonation