10:38 am – June 8, 2026 A critical security vulnerability in the Everest Forms Pro WordPress plugin, affecting approximately 4,000 active installations, is being actively exploited by threat actors to execute arbitrary code, leading to full website compromise. This remote code execution (RCE) flaw, identified as CVE-2026-3300, carries a severe CVSS score of 9.8 and impacts…
The cybersecurity landscape is constantly evolving, and a recent development concerning the last layer standing in network defense has caught the attention of IT professionals worldwide. A report released this week by the Global Cybersecurity Institute (GCI) highlights emerging threats and the increasing importance of multi-factor authentication (MFA) as a…
Cisco Addresses Vulnerability in Unified Communications Manager Following Publication of Exploit Code
By News RoomCisco has issued a critical patch for a vulnerability in its Unified Communications Manager (UCM) that could allow unauthenticated attackers on a network to write arbitrary files to the system, potentially leading to full root access. This critical Cisco UCM vulnerability, tracked as CVE-2026-20230, poses a significant threat to organizations…
Flaw in Claude Code GitHub Action Uncovered, Posing Repository Takeover Risk A security vulnerability has been discovered in Anthropic’s Claude Code GitHub Action, allowing attackers to potentially hijack vulnerable public repositories. The flaw, reported by security researcher RyotaK of GMO Flatt Security, could enable a malicious actor to execute arbitrary…
ThreatsDay Bulletin Details AI Agent Malfunctions, C2 Tools, ClickFix Exploits, JavaScript Backdoors, and Over 20 New Developments.
By News RoomThe cybersecurity landscape continues to present complex challenges, with a persistent blend of evolving threats and persistent vulnerabilities. This ongoing dynamic highlights the critical importance of robust security practices and continuous vigilance for organizations across all sectors. As the digital realm expands, the intricate web of threats, from sophisticated nation-state…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability affecting the Mirasvit Cache Warmer Magento extension to its Known Exploited Vulnerabilities (KEV) catalog. The move comes after reports of attackers actively exploiting the flaw, tracked as CVE-2026-45247, in the wild, posing a significant risk to e-commerce…
Research & Analysis
More Articles
A sophisticated malvertising campaign is targeting Windows users worldwide, leveraging Google Ads to distribute a dangerous information-stealing malware known as TamperedChef. The campaign, which began in June 2025 and was identified around September 2025, exploits users searching for PDF editing tools and appliance manuals, leading to silent infections across various…
Senior leaders from defense, intelligence, border security, and critical infrastructure sectors convened at Intersec 2026 to address crucial challenges in maritime border security for Gulf states. The closed-door strategic roundtable, hosted by Kearney in partnership with Intersec, focused on strengthening regional maritime defenses amidst escalating geopolitical, humanitarian, and technological pressures.…
Panasonic has unveiled its most comprehensive smart surveillance ecosystem to date at Intersec 2026. The new integrated platform combines AI-driven cameras, advanced analytics, and enterprise-grade video management systems. The announcement introduces Panasonic’s E-, V-, and P-Series camera lines, all designed to work within a connected ecosystem supported by a network…
Attackers are increasingly leveraging Windows Subsystem for Linux 2 (WSL2) as a stealthy hideout within corporate networks, circumventing traditional security measures. This sophisticated technique allows malicious actors to operate undiscovered, posing a significant threat to data security and network integrity. WSL2, designed to provide developers with a seamless Linux environment…
A sophisticated cybersecurity campaign is actively targeting users by impersonating Malwarebytes, a popular cybersecurity software, with the intent of stealing sensitive login credentials and cryptocurrency. This malicious operation, discovered by security researchers, was observed spreading actively between January 11 and January 15, 2026. Threat actors are distributing specially crafted ZIP…
Internal leaks from the ransomware group BlackBasta have exposed the critical infrastructure enabling its operations, shedding light on the shadowy ecosystem of cybercrime. These revelations, surfacing in February and March 2025, led to the identification of real identities, including Kirill Zatolokin, also known as Slim Shady, and exposed the operations…
Threat actors are increasingly weaponizing Visual Studio Code, a popular development tool, by exploiting its extension ecosystem to deploy multistage malware. A recent campaign, identified as Evelyn Stealer, leverages a malicious extension to deliver stealthy information stealing capabilities directly to developer workstations. This development is particularly concerning as developers often…
A recent cyberattack has emerged targeting South Korean users with the Remcos remote access trojan (RAT), disguised as legitimate VeraCrypt installers. The campaign, primarily focused on individuals involved in illegal online gambling, also poses a risk to general users seeking encryption tools. Security experts warn that this ongoing operation employs…
A sophisticated new spear-phishing campaign dubbed “Operation Poseidon” is leveraging Google Ads to distribute potent EndRAT malware, effectively bypassing traditional cybersecurity defenses. This operation, attributed to the financially motivated Konni APT group, targets South Korean organizations with cunning social engineering tactics, masquerading as legitimate entities to trick victims into compromising…
Google Gemini prompt injection vulnerability exposes private calendar data through malicious invites
By News RoomA significant security vulnerability has been discovered that targets Google Gemini, allowing the AI model to bypass authorization guardrails and exploit Google Calendar for data extraction through indirect prompt injection. Security researchers at Miggo Security disclosed the flaw, which was demonstrated to circumvent Google Calendar’s privacy controls by embedding a…
Attackers have successfully redirected employee paychecks without breaching any systems, highlighting a growing trend of social engineering attacks exploiting human vulnerabilities rather than technical exploits. The sophisticated attack, which did not involve malware or a network breach, was discovered when employees reported discrepancies in their direct deposit salary. This incident…
Five meticulously crafted malicious Chrome extensions are posing a significant threat to enterprise security, strategically targeting popular human resources and enterprise resource planning (ERP) platforms. These extensions, operating in concert, aim to steal critical authentication tokens, disable vital security controls, and ultimately achieve complete account takeover through session hijacking. The…