1:29 am – June 8, 2026 A critical security vulnerability in the Everest Forms Pro WordPress plugin, affecting approximately 4,000 active installations, is being actively exploited by threat actors to execute arbitrary code, leading to full website compromise. This remote code execution (RCE) flaw, identified as CVE-2026-3300, carries a severe CVSS score of 9.8 and impacts…
The cybersecurity landscape is constantly evolving, and a recent development concerning the last layer standing in network defense has caught the attention of IT professionals worldwide. A report released this week by the Global Cybersecurity Institute (GCI) highlights emerging threats and the increasing importance of multi-factor authentication (MFA) as a…
Cisco Addresses Vulnerability in Unified Communications Manager Following Publication of Exploit Code
By News RoomCisco has issued a critical patch for a vulnerability in its Unified Communications Manager (UCM) that could allow unauthenticated attackers on a network to write arbitrary files to the system, potentially leading to full root access. This critical Cisco UCM vulnerability, tracked as CVE-2026-20230, poses a significant threat to organizations…
Flaw in Claude Code GitHub Action Uncovered, Posing Repository Takeover Risk A security vulnerability has been discovered in Anthropic’s Claude Code GitHub Action, allowing attackers to potentially hijack vulnerable public repositories. The flaw, reported by security researcher RyotaK of GMO Flatt Security, could enable a malicious actor to execute arbitrary…
ThreatsDay Bulletin Details AI Agent Malfunctions, C2 Tools, ClickFix Exploits, JavaScript Backdoors, and Over 20 New Developments.
By News RoomThe cybersecurity landscape continues to present complex challenges, with a persistent blend of evolving threats and persistent vulnerabilities. This ongoing dynamic highlights the critical importance of robust security practices and continuous vigilance for organizations across all sectors. As the digital realm expands, the intricate web of threats, from sophisticated nation-state…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability affecting the Mirasvit Cache Warmer Magento extension to its Known Exploited Vulnerabilities (KEV) catalog. The move comes after reports of attackers actively exploiting the flaw, tracked as CVE-2026-45247, in the wild, posing a significant risk to e-commerce…
Research & Analysis
More Articles
Security teams safeguarding Linux systems are now contending with a sophisticated new threat known as ShadowHS. This fileless malware framework operates entirely in memory, leaving minimal traces on disk and allowing for persistent control over compromised machines. Unlike many earlier Linux threats focused on quick financial gains through cryptomining or…
The cybersecurity landscape has entered a dangerous new phase where autonomous AI agents are transforming from simple automation tools into sophisticated criminal operators. These self-directed systems now execute complex cyberattacks without human oversight, marking a fundamental shift in how digital threats emerge and spread across networks worldwide. Researchers at Hudson…
Weekly Cybersecurity Update: Botnet Activity, Zero-Day Exploits, Ransomware Trends, and Emerging Threats
By News RoomThe cybersecurity landscape witnessed a flurry of significant events this past week, with a major residential proxy network disrupted by Google and critical vulnerabilities patched across various platforms. Organizations are urged to stay vigilant as new threats emerge and existing ones evolve, underscoring the critical need for robust cybersecurity measures.…
A sophisticated Android malware known as Arsink RAT is posing a significant threat to mobile security, granting attackers extensive control over infected devices and silently stealing sensitive personal data. This cloud-native Remote Access Trojan is disseminated through popular social media and file-sharing platforms, masquerading as legitimate applications to deceive users…
A new report from Cloudflare highlights the extensive nature of global internet disruptions in the final quarter of 2025, detailing how cable cuts, severe weather, and technical failures impacted connectivity worldwide. The analysis underscores the fragility of internet infrastructure and its susceptibility to various physical and technical challenges. Cloudflare documented…
Google Cloud has uncovered a significant expansion in ShinyHunters threat activity, with the notorious group employing sophisticated new tactics targeting cloud-based systems. This cybercriminal operation focuses on extorting companies by pilfering sensitive data from popular cloud software applications. The ShinyHunters actors are effectively combining voice phishing, fake credential harvesting websites,…
e& enterprise and Emergence are partnering to bring data-sovereign agentic AI to the MENAT region. This collaboration aims to enable businesses to automate complex workflows while maintaining control over their data and AI models. The initiative is expected to facilitate the scaling of artificial intelligence from pilot phases to full…
A new wave of sophisticated cyberattacks targeting vulnerable Internet Information Services (IIS) servers across Asia has been identified, with threat actors employing advanced malware, including tailored versions of BadIIS. The campaign, observed from late 2025 into early 2026, primarily impacts systems in Thailand and Vietnam, indicating a strategic regional focus.…
A new Android spyware campaign, dubbed GhostChat, is targeting users in Pakistan through a sophisticated romance scam. The malware disguises itself as a legitimate chat platform while secretly exfiltrating sensitive personal data from victims’ devices. This attack highlights a growing trend where cybercriminals merge social engineering tactics with advanced spyware…
A new wave of Android malware is leveraging social engineering tactics combined with the legitimate machine learning platform Hugging Face to deliver potent remote access trojan (RAT) payloads. Attackers are tricking users into downloading a seemingly innocent app that, once installed, initiates a sophisticated infection chain allowing unauthorized control over…
A severe authentication vulnerability in Magento, tracked as CVE-2025-54236 and dubbed “SessionReaper,” has led to the compromise of over 200 e-commerce websites. Attackers exploited this flaw to gain root-level access, hijacking systems and potentially exfiltrating sensitive customer data. The widespread attack campaign, identified in January 2026, highlights a significant ongoing…
A sophisticated new PowerShell-based backdoor, dubbed TAMECAT, has been identified targeting login credentials stored within Microsoft Edge and Google Chrome browsers. This advanced malware is associated with espionage campaigns by APT42, an Iranian state-sponsored cyber-espionage group, which has been observed to be actively targeting high-value senior defense and government officials…