Cyber Attack

• Cyber Attack
• Cyber Security News

CVE-2026-41139: mathjs RCE Flaw Exposes Apps to Code Injection

John 1 week ago 0

A high-severity vulnerability (CVE-2026-41139) in the popular mathjs JavaScript library allows remote attackers to execute arbitrary JavaScript...

Read More Read more about CVE-2026-41139: mathjs RCE Flaw Exposes Apps to Code Injection

• Cyber Attack
• Cyber Security News

OceanLotus Hides ZiChatBot Malware in PyPI Python Packages

John 1 week ago 0

Kaspersky’s GReAT team has uncovered a sophisticated PyPI supply chain attack attributed with moderate confidence to the...

Read More Read more about OceanLotus Hides ZiChatBot Malware in PyPI Python Packages

• Cyber Attack
• Cyber Security News
• Malware

5 Malicious NuGet Packages Steal Crypto Wallets & Passwords

John 1 week ago 0

An uncovered five malicious NuGet packages published under the threat actor account bmrxntfj that typosquat widely used Chinese .NET...

Read More Read more about 5 Malicious NuGet Packages Steal Crypto Wallets & Passwords

• Cyber Attack
• Cyber Security News

CVE-2026-40281: Critical Gotenberg ExifTool Injection Flaw

John 1 week ago 0

A critical-severity argument-injection vulnerability, tracked as CVE-2026-40281 and covered in the advisory GHSA-q7r4-hc83-hf2q, has been disclosed in Gotenberg, a widely used...

Read More Read more about CVE-2026-40281: Critical Gotenberg ExifTool Injection Flaw

• Cyber Attack
• Cyber Security News

CVE-2026-0300 – Palo Alto PAN-OS Zero-Day Enables Root RCE on Exposed Firewalls

John 1 week ago 0

A critical zero-day vulnerability in its PAN-OS firewall operating system, tracked as CVE-2026-0300, that is already being...

Read More Read more about CVE-2026-0300 – Palo Alto PAN-OS Zero-Day Enables Root RCE on Exposed Firewalls

• Cyber Attack
• Cyber Security News

2.45B-Request DDoS Attack Bypasses Rate Limits With 1.2M IPs

John 2 weeks ago 0

A sophisticated “low and slow” DDoS attack launched in mid-April 2026 delivered more than 2.45 billion malicious...

Read More Read more about 2.45B-Request DDoS Attack Bypasses Rate Limits With 1.2M IPs

• Cyber Attack
• Cyber Security News

Fake DeepSeek-Claw Skill Delivers Remcos RAT via DLL Hijack

John 2 weeks ago 0

Threat actors have weaponized the OpenClaw agentic AI framework by publishing a fake “DeepSeek-Claw” skill that silently...

Read More Read more about Fake DeepSeek-Claw Skill Delivers Remcos RAT via DLL Hijack

• Cyber Attack
• Cyber Security News

Azure AD Bypass Grants Full Tenant Access With One Password

John 2 weeks ago 0

A devastating attack chain that bypasses Microsoft Entra ID (Azure AD) Conditional Access entirely, starting from a...

Read More Read more about Azure AD Bypass Grants Full Tenant Access With One Password

• Cyber Attack
• Cyber Security News
• Malware

CloudZ RAT Abuses Microsoft Phone Link to Steal OTP Messages

John 2 weeks ago 0

An uncovered a sophisticated intrusion campaign, active since at least January 2026, in which a threat actor...

Read More Read more about CloudZ RAT Abuses Microsoft Phone Link to Steal OTP Messages

• Cyber Attack
• Cyber Security News

Vimeo Data Breach Exposes 119K Users via Anodot Vendor Hack

John 2 weeks ago 0

In April 2026, popular video hosting platform Vimeo confirmed a significant data breach affecting approximately 119,200 users,...

Read More Read more about Vimeo Data Breach Exposes 119K Users via Anodot Vendor Hack