5:00 pm – June 15, 2026 Palo Alto Networks VPN vulnerability, identified as CVE-2026-0257, is being actively exploited by an unknown threat actor to gain unauthorized access to GlobalProtect portals. The critical authentication bypass flaw, which affects the portal and gateway components of PAN-OS software, carries a CVSS score of 7.8 and allows malicious actors to…
Splunk has issued critical security updates to address CVE-2026-20253, a severe vulnerability in Splunk Enterprise that allows unauthenticated users to perform arbitrary file operations and potentially achieve remote code execution. Rated 9.8 on the CVSS scoring system, the flaw presents a significant risk to enterprise environments utilizing the affected software.…
U.S. law enforcement agencies, in collaboration with international partners, have seized multiple internet domains alleged to have hosted nonconsensual AI-generated pornography. The operation targeted websites that specialized in creating and distributing digitally altered images and videos of women without their consent. The domains, CFAKE.com and SOCFAKE.com, are accused of publishing…
Cybersecurity researchers have unveiled a novel attack technique, dubbed “Agentjacking,” that subverts artificial intelligence (AI) coding agents, compelling them to execute arbitrary code on developer workstations. This groundbreaking vulnerability exploits a fundamental architectural weakness at the intersection of error tracking platforms and AI agents, potentially granting attackers unfettered access to…
The cybercriminal group ShinyHunters has been actively exploiting a critical vulnerability in Oracle PeopleSoft, a widely used enterprise resource planning (ERP) system. This zero-day exploit, identified as CVE-2026-35273, allows attackers to gain unauthorized access, exfiltrate sensitive data, and then demand ransom payments to prevent its public release. The campaign has…
Security researcher Chaotic Eclipse has unveiled a significant new vulnerability, dubbed GreatXML, that bypasses Windows BitLocker encryption. This discovery, detailed just a day after the release of an exploit targeting Microsoft Defender, highlights a critical weakness in Microsoft’s endpoint security posture. The GreatXML exploit allows unauthorized access to encrypted drives,…
Research & Analysis
More Articles
The Operational Technology Middle East Community (OTMEC) has launched as a regional initiative aimed at improving ICS and OT cybersecurity across the Middle East and North Africa. This new organization seeks to foster collaboration and knowledge sharing among professionals safeguarding critical infrastructure. Co-founded by industry experts Reem Faraj AlShammari, Bryson…
The “Kitten” Project has emerged as a significant development in hacktivist operations, representing a coordinated platform that amplifies the capabilities of multiple pro-Iranian hacktivist groups targeting Israel. This initiative, accessible via thekitten.group, moves beyond isolated cyberattacks towards a centralized infrastructure for communication, resource sharing, and synchronized campaigns, according to security…
US cyber attacks account for 44 percent, targeting financial gain in public administration.
By News RoomThe United States is grappling with a significant cyber threat surge, accounting for 44 percent of all global cyber attacks between 2024 and 2025. Data from the Cyber Events Database reveals 646 reported incidents in the US during this period, highlighting the nation’s vulnerability amidst increasingly sophisticated cybercriminal tactics focused…
Mobile security threats continue to evolve, with the Triada Trojan recently resurfacing in a sophisticated campaign leveraging multiple ad networks to target Android users. This alarming trend highlights vulnerabilities within the digital advertising ecosystem, allowing attackers to distribute malicious payloads through seemingly legitimate channels. Ad security analysts have identified a…
NVIDIA and Lakera AI have jointly proposed a novel unified framework aimed at enhancing the safety and security of increasingly autonomous agentic system safety. This collaborative effort addresses the significant security challenges posed by advanced AI agents that can interact with and manipulate digital environments and tools. The urgency for…
QuasarRAT, a remote access trojan (RAT) that first emerged in 2014 under the moniker xRAT, has evolved from a legitimate Windows administration tool into a significant threat in the cybercriminal landscape. Its open-source nature has allowed malicious actors to adapt and weaponize its .NET framework codebase for a wide range…
The cybercriminal underworld is witnessing the rapid proliferation of “Shanya,” a sophisticated packer-as-a-service and Endpoint Detection and Response (EDR) killer that is significantly empowering major ransomware operations. First observed on underground forums in late 2024 under the alias “VX Crypt,” this malicious tool has quickly emerged as a critical component…
The UK’s National Cyber Security Centre (NCSC) has issued a stark warning regarding large language model (LLM) artificial intelligence tools, cautioning that a persistent and potentially weaponizable flaw, known as prompt injection, may be inherent to their architecture and unresolvable. This fundamental vulnerability was identified by security researchers shortly after…
Security researchers have exposed a vast and sophisticated cybercrime infrastructure, deeply entrenched in Indonesia’s illegal gambling networks and operating for over fourteen years. This extensive operation, detailed in a recent analysis, has been dismantled through meticulous research, revealing a sprawling ecosystem involving hundreds of thousands of domains, thousands of malicious…
The notorious OceanLotus hacker group, also known as APT32, has launched a sophisticated cyber espionage campaign targeting China’s indigenized “Xinchuang” IT ecosystem. This strategic shift involves compromising domestic hardware and software frameworks designed for self-reliant and secure information technology environments. The attackers aim to infiltrate sensitive government and industrial networks,…
A growing number of cybersecurity incidents are targeting software developers through malicious extensions for popular Integrated Development Environments (IDEs) like Visual Studio Code (VS Code) and AI-powered platforms such as Cursor AI. These attacks exploit the trust developers place in their daily tools to gain access to sensitive credentials, source…
The cybersecurity landscape continues its relentless evolution, with a notable surge in rapid exploitation of critical vulnerabilities and sophisticated attacks targeting both established systems and emerging technologies. This past week saw a critical flaw in a widely used web framework rapidly weaponized, a significant influx of AI-powered tools becoming targets…