10:35 am – June 15, 2026 Cybersecurity researchers have unveiled a novel attack technique, dubbed “Agentjacking,” that subverts artificial intelligence (AI) coding agents, compelling them to execute arbitrary code on developer workstations. This groundbreaking vulnerability exploits a fundamental architectural weakness at the intersection of error tracking platforms and AI agents, potentially granting attackers unfettered access to…
The cybercriminal group ShinyHunters has been actively exploiting a critical vulnerability in Oracle PeopleSoft, a widely used enterprise resource planning (ERP) system. This zero-day exploit, identified as CVE-2026-35273, allows attackers to gain unauthorized access, exfiltrate sensitive data, and then demand ransom payments to prevent its public release. The campaign has…
Security researcher Chaotic Eclipse has unveiled a significant new vulnerability, dubbed GreatXML, that bypasses Windows BitLocker encryption. This discovery, detailed just a day after the release of an exploit targeting Microsoft Defender, highlights a critical weakness in Microsoft’s endpoint security posture. The GreatXML exploit allows unauthorized access to encrypted drives,…
Cybersecurity threats reported: Worm code leaked, AI agent compromised, software patch released.
By News RoomCybercrime Ecosystem Evolves: Supply Chain Attacks and Advanced Tools Threaten Security This week has highlighted a significant maturation in the cybercriminal landscape, moving beyond rudimentary attacks to sophisticated operations. A concerning trend involves the emergence of polished, readily available tools for complex attacks, such as supply chain compromise kits found…
Artificial Intelligence Disrupts Vulnerability Management, Prompting CISO Budget Reallocation to Breach and Attack Simulation
By News RoomThe landscape of cybersecurity has been fundamentally altered by the rapid advancements in artificial intelligence, compressing the discovery-to-exploit window for vulnerabilities from months to mere hours. This seismic shift renders traditional vulnerability management strategies, built on ample reaction time, obsolete. Organizations must now adapt to a new paradigm where the…
Cybersecurity researchers have identified a significant resurgence and expansion of JDY, a covert botnet linked to Chinese state-sponsored threat actors. This sophisticated network, primarily composed of compromised small office and home office (SOHO) and Internet of Things (IoT) devices, is actively being utilized for large-scale reconnaissance and targeting operations on…
Research & Analysis
More Articles
A sophisticated Android malware campaign, dubbed NexusRoute, is actively targeting Indian citizens by impersonating official government applications like mParivahan and e-Challan. This operation leverages fake app versions distributed through phishing websites and malicious code hosted on platforms like GitHub to harvest login credentials and sensitive financial information, posing a significant…
Critical security vulnerabilities, including a severe authentication bypass flaw, have been discovered and publicly disclosed in FreePBX, the widely-used open-source private branch exchange (PBX) platform. These vulnerabilities, identified by researchers at Horizon3.ai, could allow attackers to gain unauthorized access and execute malicious code on vulnerable systems. The disclosures highlight ongoing…
Storm-0249, a threat actor previously known for widespread phishing campaigns, has evolved into a sophisticated initial access broker specializing in precision attacks. This strategic shift involves bypassing security measures by abusing legitimate, signed processes, particularly those related to endpoint detection and response (EDR) tools like SentinelOne, to hide malicious activities.…
⚡ Weekly Recap: Apple 0-Days, WinRAR Exploit, LastPass Fines, .NET RCE, OAuth Scams & More
By News RoomHackers are actively exploiting critical software vulnerabilities this week, impacting smartphone users, web browsers, and file compression tools. Critical updates are urgently needed to address these threats. In a significant development for cybersecurity, both Apple and Google have released security patches for zero-day vulnerabilities that were reportedly already being exploited…
A new social engineering campaign, identified by cybersecurity researchers as “ClickFix,” is ingeniously exploiting a decade-old Windows command-line tool, finger.exe, to trick unsuspecting users into downloading and executing malicious code. This sophisticated attack, observed since at least November 2025, leverages deceptive CAPTCHA verification pages to lure victims into initiating the…
A new ransomware strain, dubbed Gentlemen ransomware, has emerged as a significant threat, rapidly breaching corporate networks globally since its identification in August 2025. This sophisticated cybercriminal operation employs a double extortion model, exfiltrating sensitive data before encrypting it, thereby amplifying its leverage even when victims possess backups. Developed in…
OCR Studio has unveiled a new artificial intelligence system designed for augmented reality glasses, enhancing document security and personal identification. This groundbreaking technology, which operates entirely offline, promises to streamline document verification processes across various industries. The AI system, built directly into AR glasses, can recognize and interpret identification documents…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has officially added a high-severity vulnerability affecting Sierra Wireless AirLink ALEOS routers to its Known Exploited Vulnerabilities (KEV) catalog. This move follows reports of unauthorized actors actively exploiting the flaw, identified as CVE-2018-4063, in real-world attacks. The vulnerability presents a significant risk…
Apple has released critical security updates for a wide range of its operating systems and devices, including iOS, iPadOS, macOS, tvOS, watchOS, visionOS, and Safari, to patch two actively exploited security vulnerabilities. The urgent patches were issued on Friday, December 13, 2025, to address flaws that Apple stated may have…
The pro-Russia hacktivist group CyberVolk has resurfaced with a new ransomware-as-a-service platform named VolkLocker, capable of targeting both Linux and Windows systems. This development marks the group’s return after a period of inactivity in 2025, following initial takedown efforts by Telegram that had previously silenced their operations. The reemergence of…
A sophisticated, new AiTM (Adversary-in-the-Middle) attack campaign has emerged that successfully bypasses multi-factor authentication (MFA) protecting Microsoft 365 and Okta users. Discovered in early December 2025, this campaign represents a serious threat to organizations relying on these platforms for identity and access management, demonstrating advanced knowledge of authentication flows. The…
Security researchers have successfully revived a 20-year-old attack method, known as “Blinkenlights,” to extract firmware from a low-cost smartwatch. This technique, originally used for network devices, was adapted to exploit the screen pixels of modern TFT displays, demonstrating an innovative approach to hardware security analysis. The discovery highlights potential vulnerabilities…