Cyber Security News Archives

Critical UEFI Flaw Lets Attackers Bypass Secure Boot via BYOVD

John 1 hour ago

Multiple vendor-signed UEFI applications have been confirmed vulnerable to Secure Boot bypass attacks leveraging a “Bring Your...

CVE-2026-20253: Critical Splunk Flaw Allows Unauthenticated RCE

John 1 hour ago

A maximum-severity vulnerability in Splunk Enterprise has been disclosed and formally added to CISA’s Known Exploited Vulnerabilities...

Cyber Security News

CVE-2026-8713: Avada Builder Flaw Lets Hackers Delete Any File

John 1 day ago

A critical-severity path traversal vulnerability (CVE-2026-8713) in the Avada (Fusion) Builder WordPress plugin allows unauthenticated attackers to...

Cyber Security News

Salesforce CRM Data Stolen via Klue OAuth Integration Hack

John 1 day ago

Threat actors silently exfiltrated enterprise Salesforce CRM data by hijacking a trusted third-party OAuth integration, confirming that...

Cyber Security News

Microsoft Warns: Crypto Clipper Malware Hijacks BTC Wallets

John 1 day ago

Microsoft Threat Intelligence has uncovered a sophisticated cryptocurrency clipper campaign dubbed CryptoBandits, active since February 2026, that combines...

Critical Splunk AI Toolkit Bug Lets Admins Run Arbitrary Commands

John 2 days ago

Splunk has disclosed two significant security vulnerabilities in its AI Toolkit, including a critical-severity OS command injection flaw that...

CVE-2026-50656: RoguePlanet Defender Zero-Day, No Patch Yet

John 2 days ago

Microsoft has officially acknowledged a critical elevation-of-privilege zero-day vulnerability in the Microsoft Malware Protection Engine, tracked as...