Blog

Cybersecurity

187 articles

All articles tagged Cybersecurity.

VS Code Zero-Day Lets Hackers Steal GitHub Tokens in One Click

Cybersecurity·5 min

VS Code Zero-Day Lets Hackers Steal GitHub Tokens in One Click

Security researcher Ammar Askar has published exploit code for an unpatched VS Code vulnerability that lets attackers steal GitHub OAuth tokens through a single malicious link. The flaw grants full access to all of a victim's public and private repositories. Microsoft has not yet released a patch.

Manaal Khan·3 Jun 2026

CISA Warns of Active Attacks on Two-Year-Old Oracle WebLogic Flaw

Cybersecurity·4 min

CISA Warns of Active Attacks on Two-Year-Old Oracle WebLogic Flaw

The U.S. Cybersecurity and Infrastructure Security Agency has added CVE-2024-21182 to its Known Exploited Vulnerabilities catalog, giving federal agencies until June 4 to patch. Over 1,500 vulnerable WebLogic servers remain exposed online despite Oracle releasing a fix in July 2024.

Manaal Khan·2 Jun 2026

Google Patches Android Zero-Day Exploited in Targeted Attacks

Cybersecurity·5 min

Google Patches Android Zero-Day Exploited in Targeted Attacks

Google's June 2026 Android security update fixes 124 vulnerabilities, including CVE-2025-48595, a high-severity zero-day flaw already being exploited in the wild. The vulnerability allows attackers to gain code execution and escalate privileges on devices running Android 14 or later without any user interaction.

Huma Shazia·2 Jun 2026

DriveSurge Hijacks Thousands of Sites to Spread Malware

Cybersecurity·5 min

DriveSurge Hijacks Thousands of Sites to Spread Malware

A threat actor called DriveSurge has compromised thousands of legitimate websites to distribute malware through fake browser updates and deceptive 'fix' prompts. The campaign targets Windows and macOS users by redirecting visitors through a traffic distribution system that profiles victims before choosing the most effective social engineering lure.

Manaal Khan·2 Jun 2026

Vulnerability Exploitation Now Takes 1.6 Days, Not Months

Cybersecurity·5 min

Vulnerability Exploitation Now Takes 1.6 Days, Not Months

The median time from CVE disclosure to active exploitation has collapsed from 4.2 months in 2023 to just 1.6 days in 2026. With over 130 vulnerabilities disclosed daily, traditional manual triage is failing. Organizations that cannot automate their alert-to-patch cycle are increasingly finding themselves in incident response mode rather than prevention.

Manaal Khan·1 Jun 2026

Critical Windows Netlogon Flaw Now Exploited in Attacks

Cybersecurity·5 min

Critical Windows Netlogon Flaw Now Exploited in Attacks

A critical Windows Netlogon vulnerability with a CVSS score of 9.8 is now being actively exploited in the wild. Belgium's national cybersecurity authority issued an urgent warning Friday, urging administrators to patch domain controllers immediately. The flaw allows unauthenticated attackers to execute code on any supported Windows Server version.

Huma Shazia·1 Jun 2026

California AG Sues 23andMe Over 6.9 Million User Data Breach

Cybersecurity·5 min

California AG Sues 23andMe Over 6.9 Million User Data Breach

California Attorney General Rob Bonta filed a lawsuit against 23andMe, now Chrome Holding Co., alleging the genetic testing company failed to protect sensitive DNA and health data of nearly 7 million users exposed in a 2023 breach. The suit claims the company violated multiple state privacy laws and misled customers about its security practices.

Huma Shazia·30 May 2026

ChatGPT Share Links Now Deliver Malware via Fake Outage Pages

Cybersecurity·5 min

ChatGPT Share Links Now Deliver Malware via Fake Outage Pages

Security researchers discovered a campaign called 'LLMShare' that exploits ChatGPT's content-sharing feature to display convincing outage notices on legitimate OpenAI domains. The attack uses Google ads to funnel users toward malicious downloads disguised as ChatGPT desktop applications.

Manaal Khan·30 May 2026

Charter Data Breach Exposes 4.9 Million Customer Accounts

Cybersecurity·5 min

Charter Data Breach Exposes 4.9 Million Customer Accounts

ShinyHunters extortion gang breached Charter Communications via a voice phishing attack in April, stealing names, addresses, and phone numbers from millions of Spectrum customers. The telecom giant refused to pay the ransom, and the data has now been leaked on the dark web.

Huma Shazia·29 May 2026

Russian Hackers Use ChatGPT and Gemini to Build Malware

Cybersecurity·5 min

Russian Hackers Use ChatGPT and Gemini to Build Malware

A suspected Russian hacking group called GreyVibe has been using ChatGPT, Google Gemini, and other AI tools to create phishing lures and develop custom malware. The campaign has targeted Ukrainian military, government, and civilian organizations since August 2025. Security firm WithSecure discovered the operation and identified AI-generated code patterns that helped them track the group.

Manaal Khan·29 May 2026

Hackers Exploit FortiClient EMS Flaw to Deploy EKZ Infostealer

Cybersecurity·5 min

Hackers Exploit FortiClient EMS Flaw to Deploy EKZ Infostealer

Attackers are exploiting a critical authentication bypass vulnerability in FortiClient Enterprise Management Server to distribute credential-stealing malware disguised as legitimate Fortinet updates. The campaign turns a trusted endpoint management tool into a malware delivery system, with over 2,000 internet-exposed instances at risk.

Huma Shazia·28 May 2026

Romanian Hacker Gets 56 Months for Oregon Government Breach

Cybersecurity·4 min

Romanian Hacker Gets 56 Months for Oregon Government Breach

A federal court sentenced Catalin Dragomir to nearly five years in prison for hacking Oregon's emergency management network and selling access to compromised systems. The case highlights how international law enforcement cooperation is catching cybercriminals who once believed geography kept them safe.

Huma Shazia·28 May 2026

Carnival Cruise Breach Exposes 6 Million Customers' Data

Cybersecurity·5 min

Carnival Cruise Breach Exposes 6 Million Customers' Data

ShinyHunters extortion gang stole personal information from nearly 6 million Carnival customers in a social engineering attack. The breach exposed names, dates of birth, email addresses, and loyalty program details from the world's largest cruise operator.

Manaal Khan·28 May 2026

Can You Enforce Strong AD Passwords Without User Backlash?

Cybersecurity·6 min

Can You Enforce Strong AD Passwords Without User Backlash?

Active Directory password policies face a tough tradeoff: strict rules push users toward insecure workarounds, while weak rules leave credentials vulnerable. Modern approaches like passphrases and breach-checking databases offer a middle path that improves security without driving up helpdesk tickets.

Manaal Khan·27 May 2026

CISA Orders 4-Day Patch for Critical cPanel Plugin Flaw

Cybersecurity·4 min

CISA Orders 4-Day Patch for Critical cPanel Plugin Flaw

The U.S. Cybersecurity and Infrastructure Security Agency has given federal agencies until Friday to fix a critical privilege escalation vulnerability in the LiteSpeed cPanel plugin. The flaw, rated 10.0 on the CVSS severity scale, lets attackers with zero privileges execute scripts as root. Active exploitation is already underway.

Huma Shazia·27 May 2026

Dutch Police Arrest Hacker Behind Ajax Football Club Breach

Cybersecurity·5 min

Dutch Police Arrest Hacker Behind Ajax Football Club Breach

A 35-year-old man from Buren was arrested for breaking into Ajax Amsterdam's computer systems multiple times in early 2026. The breach exposed data on 300,000 fans and allowed manipulation of stadium bans and season tickets. The case has sparked debate about the line between security research and criminal intrusion.

Manaal Khan·27 May 2026

KnowledgeDeliver Zero-Day Exploited to Deploy Godzilla Web Shell

Cybersecurity·5 min

KnowledgeDeliver Zero-Day Exploited to Deploy Godzilla Web Shell

Attackers exploited a critical deserialization flaw in the KnowledgeDeliver learning management system before a patch existed. The vulnerability, CVE-2026-5426, stems from a hardcoded machine key shared across all customer deployments, allowing unauthenticated remote code execution.

Manaal Khan·27 May 2026

Charter Confirms Data Breach After ShinyHunters Extortion Threat

Cybersecurity·5 min

Charter Confirms Data Breach After ShinyHunters Extortion Threat

Charter Communications, one of America's largest broadband providers, has confirmed a data breach after the ShinyHunters extortion group claimed to have stolen 40 million customer records. The company disputes claims that sensitive data was taken, but the attackers say they accessed names, emails, addresses, and phone data through a voice phishing attack on an employee's Microsoft account.

Huma Shazia·27 May 2026

Microsoft Defender Now Auto-Isolates Hacked Endpoints

Cybersecurity·5 min

Microsoft Defender Now Auto-Isolates Hacked Endpoints

Microsoft is testing a new Defender for Endpoint feature that automatically isolates compromised devices to stop attackers from moving across networks. The capability works alongside automatic attack disruption and keeps isolated devices connected to Defender for continued monitoring.

Huma Shazia·26 May 2026

7-Eleven Breach Exposes 185,000 Customer Records

Cybersecurity·4 min

7-Eleven Breach Exposes 185,000 Customer Records

ShinyHunters extortion gang breached 7-Eleven's Salesforce environment in April, stealing personal data including names, birthdates, and addresses. After the company refused to pay ransom, attackers leaked 9.4GB of documents on the dark web.

Manaal Khan·26 May 2026

Ghost CMS SQL Injection Flaw Hits 700+ Sites in ClickFix Attack

Cybersecurity·5 min

Ghost CMS SQL Injection Flaw Hits 700+ Sites in ClickFix Attack

Attackers are exploiting a critical SQL injection vulnerability in Ghost CMS to inject malicious scripts into legitimate websites. The campaign has compromised over 700 domains, including sites belonging to Harvard, Oxford, and DuckDuckGo, turning trusted platforms into malware delivery systems.

Huma Shazia·24 May 2026

Chinese Hackers Hit Telcos with New Linux and Windows Malware

Cybersecurity·5 min

Chinese Hackers Hit Telcos with New Linux and Windows Malware

A Chinese cyber-espionage group called Calypso has been targeting telecommunications providers across Asia Pacific and the Middle East since mid-2022. Researchers discovered two new malware strains: Showboat for Linux and JFMBackdoor for Windows, both designed for long-term network infiltration.

Manaal Khan·21 May 2026

GitHub Breach Tied to TanStack npm Supply-Chain Attack

Cybersecurity·5 min

GitHub Breach Tied to TanStack npm Supply-Chain Attack

GitHub confirms hackers accessed 3,800 internal repositories through a malicious VS Code extension compromised in the TanStack supply-chain attack. The TeamPCP threat group is demanding $50,000 for the stolen source code.

Huma Shazia·21 May 2026

SonicWall VPN MFA Bypass: Patching Alone Isn't Enough

Cybersecurity·5 min

SonicWall VPN MFA Bypass: Patching Alone Isn't Enough

Hackers are bypassing multi-factor authentication on SonicWall Gen6 VPN appliances despite firmware updates. The problem: admins aren't completing required manual reconfiguration steps, leaving devices vulnerable to credential-based attacks linked to ransomware operations.

Manaal Khan·21 May 2026

Chat on WhatsApp