Threat actors began actively exploiting CVE-2026-22679, a critical, unauthenticated remote code execution (RCE) vulnerability in Weaver (Fanwei) E-cology...
Cyber Attack
North Korea-aligned APT group ScarCruft (APT37) has been caught compromising a legitimate gaming platform to deliver a...
A rogue website, notepad-plus-plus-mac.org, has been fraudulently impersonating the official Notepad++ project by offering an unauthorized macOS...
A sophisticated threat actor compromised DigiCert’s internal support environment in early April 2026 using a disguised Windows...
Google has released its Android Security Bulletin for May 2026, disclosing a single, highly critical remote code...
Instructure, the education technology company behind the widely used Canvas learning management system (LMS), has confirmed a...
The Emergency patches for critical and high vulnerabilities in MOVEit Automation that could allow unauthenticated remote attackers...
A critical remote code execution vulnerability in FreeBSD’s default DHCP client (dhclient) allows a rogue DHCP server...
A coordinated wave of Microsoft Teams phishing campaigns is targeting enterprise employees in 2026, with threat actors...
The notorious threat actor group ShinyHunters has posted what they claim is the stolen Accord Healthcare database...