Daily CyberSecurity • Zero-hour alerts. Unmatched analysis.

Laravel Livewire Vulnerability Exposes Over 6,000 Apps

Diagram showing the Laravel Livewire vulnerability and CVE-2025-54068 exploit flow

Cybercriminals

Laravel Livewire Vulnerability Exposes Over 6,000 Apps

June 25, 2026

Operation Endgame Takes Down SocGholish, Amadey, and StealC Malware

Operation Endgame takedown disrupting the SocGholish malware network

Cybercriminals

Operation Endgame Takes Down SocGholish, Amadey, and StealC Malware

June 25, 2026

Cyble Uncovers a FIFA 2026 Fraud Ecosystem With Nearly 4,000 Fake Domains

FIFA 2026 fraud ecosystem mapped by Operation FanTrap with thousands of fake World Cup domains

Cybercriminals

Cyble Uncovers a FIFA 2026 Fraud Ecosystem With Nearly 4,000 Fake Domains

June 24, 2026

Hackers Abused Claude.ai Shared Chat in a ClickFix Malvertising Campaign

hacker-free

Cybercriminals

Hackers Abused Claude.ai Shared Chat in a ClickFix Malvertising Campaign

June 24, 2026

Windows Crypto Clipper Malware Exposed

digital-hacker

Malware

Windows Crypto Clipper Malware Exposed

June 25, 2026

Vidar ABE Bypass Technique Steals Browser Keys

Vidar ABE bypass technique flowchart showing how Vidar infostealer malware extracts keys

Malware

Vidar ABE Bypass Technique Steals Browser Keys

June 25, 2026

Rokarolla Android Banking Trojan Steals Financial Data

Rokarolla Android banking trojan executing a device takeover

Malware

Rokarolla Android Banking Trojan Steals Financial Data

June 25, 2026

Crypto Clipboard Hijacker Hides Behind Fake Stars and Upvotes

Check Point exposed a crypto clipboard hijacker spread by fake Ghost Networks. The Rust clipper swaps wallet addresses to steal crypto. Stay alert.

Malware

Crypto Clipboard Hijacker Hides Behind Fake Stars and Upvotes

June 24, 2026

LastPass Customer Data Stolen in Klue Supply Chain Breach

LastPass Klue breach OAuth token theft Salesforce supply chain attack

Data Leak

LastPass Customer Data Stolen in Klue Supply Chain Breach

June 23, 2026

Tata Electronics Data Breach Exposes Apple and Tesla Files

Tata Electronics data breach leaking Apple and Tesla component design and specification files on a dark web site

Data Leak

Tata Electronics Data Breach Exposes Apple and Tesla Files

June 23, 2026

Novo Nordisk Breach Exposes AI Models and Patient Data

Novo Nordisk data breach Novo Nordisk hack, AI training data theft, clinical trial data leak

Data Leak

Novo Nordisk Breach Exposes AI Models and Patient Data

June 16, 2026

Uncanny Automator Breach: Backdoored Plugin Build Hit WordPress Sites

Data Leak

Uncanny Automator Breach: Backdoored Plugin Build Hit WordPress Sites

June 15, 2026

AutoJack AI Agent Exploit Unveiled code

code

AutoJack AI Agent Exploit Unveiled

Do Son June 25, 2026

GitLab Security Updates Fix 13 Flaws GitLab security updates protecting repositories from vulnerabilities

GitLab security updates protecting repositories from vulnerabilities

GitLab Security Updates Fix 13 Flaws

Do Son June 25, 2026

Jenkins Patches 22 Plugin Vulnerabilities, Five Flaws Remain Unfixed Jenkins plugin vulnerabilities enabling sandbox bypass and remote code execution

Jenkins plugin vulnerabilities enabling sandbox bypass and remote code execution

Jenkins Patches 22 Plugin Vulnerabilities, Five Flaws Remain Unfixed

Do Son June 25, 2026

Google Gemini 3.5 Flash Introduces Computer Use Capabilities Google Gemini 3.5 Flash executing the Computer Use tool to automate graphical interface tasks

Google Gemini 3.5 Flash executing the Computer Use tool to automate graphical interface tasks

Google Gemini 3.5 Flash Introduces Computer Use Capabilities

Do Son June 25, 2026

ManageEngine Account Takeover Flaw CVE-2026-11374

ManageEngine account takeover diagram explaining CVE-2026-11374 SSO ticket prediction

ManageEngine Account Takeover Flaw CVE-2026-11374

Do Son June 25, 2026

Google Wallet TSA PreCheck Touchless ID Now Covers 100 Airlines

Google Wallet TSA PreCheck Touchless ID boarding pass badge for facial comparison at airport security lanes

Google Wallet TSA PreCheck Touchless ID Now Covers 100 Airlines

Do Son June 25, 2026

Ubuntu Livepatch Now Supports Arm64 for Rebootless Kernel Updates Ubuntu Livepatch Arm64 support applying rebootless Linux kernel security updates on Ubuntu Core 26 servers Ubuntu 26.10 release

Ubuntu Livepatch Arm64 support applying rebootless Linux kernel security updates on Ubuntu Core 26 servers Ubuntu 26.10 release

Ubuntu Livepatch Now Supports Arm64 for Rebootless Kernel Updates

Do Son June 25, 2026

The Evolution of Collaboration: Anthropic’s Claude Tag in Slack Anthropic Claude Tag in Slack interface demonstrating proactive AI colleague interactions

Anthropic Claude Tag in Slack interface demonstrating proactive AI colleague interactions

The Evolution of Collaboration: Anthropic’s Claude Tag in Slack

Do Son June 25, 2026

Critical Langflow Flaws Allow Unauthenticated Remote Code Execution Langflow RCE vulnerability enabling unauthenticated remote code execution

Langflow RCE vulnerability enabling unauthenticated remote code execution

Critical Langflow Flaws Allow Unauthenticated Remote Code Execution

Do Son June 25, 2026

Chrome 149 Security Update Patches 18 Flaws, Four Rated Critical

Chrome 149 security update patching WebGL use-after-free vulnerability

Chrome 149 Security Update Patches 18 Flaws, Four Rated Critical

Do Son June 25, 2026

Critical Gitea Security Flaws Expose Servers to Takeover Diagram illustrating critical Gitea security flaws, CVE-2026-20896 and CVE-2026-22874

Diagram illustrating critical Gitea security flaws, CVE-2026-20896 and CVE-2026-22874

Critical Gitea Security Flaws Expose Servers to Takeover

Do Son June 25, 2026

OpenDJ Unauthenticated RCE Vulnerability OpenDJ unauthenticated RCE diagram illustrating the Java deserialization vulnerability and CVE-2026-46495 exploit path.

OpenDJ unauthenticated RCE diagram illustrating the Java deserialization vulnerability and CVE-2026-46495 exploit path.

OpenDJ Unauthenticated RCE Vulnerability

Do Son June 25, 2026

CVSS 8.7 Unauthenticated RCE Impacts Multiple TP-Link Routers TP-Link router command injection diagram showing CVE-2026-11834 and DHCP option vulnerability exploit path.

TP-Link router command injection diagram showing CVE-2026-11834 and DHCP option vulnerability exploit path.

CVSS 8.7 Unauthenticated RCE Impacts Multiple TP-Link Routers

Do Son June 25, 2026

AI Text-to-Speech Generators: Features, Risks, and Use Cases AISelect_20260625_204951_Docs

AISelect_20260625_204951_Docs

AI Text-to-Speech Generators: Features, Risks, and Use Cases

Do Son June 25, 2026

How to Scale Data Annotation Without Losing Quality or Speed tech-coffe

tech-coffe

How to Scale Data Annotation Without Losing Quality or Speed

Do Son June 25, 2026

How to Vet an Embedded Systems Development Company: Red Flags & Green Lights 1013

1013

How to Vet an Embedded Systems Development Company: Red Flags & Green Lights

Do Son June 25, 2026

SmartRAT ClickFix Campaign Identified the-security

the-security

SmartRAT ClickFix Campaign Identified

Do Son June 24, 2026

National Health Care Fraud Takedown Charges 455 Suspects Diagram showing how cyber criminals use traffic distribution systems to redirect users to malicious websites.

Diagram showing how cyber criminals use traffic distribution systems to redirect users to malicious websites.

National Health Care Fraud Takedown Charges 455 Suspects

Do Son June 24, 2026

Google Search Now Saves Your Uploaded Media to Train AI Google Search Save Media setting saving uploaded images and audio in Search Services History to train AI models

Google Search Save Media setting saving uploaded images and audio in Search Services History to train AI models

Google Search Now Saves Your Uploaded Media to Train AI

Do Son June 24, 2026

Outlook for Mac Glitch Omits Original Message Content Microsoft Outlook for Mac glitch causing missing email body content

Microsoft Outlook for Mac glitch causing missing email body content

Outlook for Mac Glitch Omits Original Message Content

Do Son June 24, 2026

Next Page ❯

🚨

Receive alerts for vulnerabilities being exploited in the wild.

⚡

Get notified instantly when a Proof of Concept (PoC) exploit is published.

🔍

Access critical info on vulnerabilities even when marked as "RESERVED".

🧠

Insights powered by decades of expertise and global intelligence sources.

🎯

Customize alerts with up to 10 keywords for your specific tech stack.

📊

Export the raw CVE database for SIEM integration and reporting.

CVE-2026-28496CVSS 9.4
FOSSBilling is a free, open-source billing and client management system. Versions prior to 0.8.0 have a Server-Side Template...
CVE-2026-21509CVSS 7.8
Reliance on untrusted inputs in a security decision in Microsoft Office allows an unauthorized attacker to bypass a...
CVE-2026-34908CVSS 10.0
A malicious actor with access to the network could exploit an Improper Access Control vulnerability found in UniFi...
CVE-2026-34909CVSS 10.0
A malicious actor with access to the network could exploit a Path Traversal vulnerability found in UniFi OS...
CVE-2026-34910CVSS 10.0
A malicious actor with access to the network could exploit an Improper Input Validation vulnerability found in UniFi...
CVE-2025-67038CVSS 9.8
An issue was discovered in Lantronix EDS5000 2.1.0.0R3. The HTTP RPC module executes a shell command to write...
CVE-2024-23692CVSS 9.8
Rejetto HTTP File Server, up to and including version 2.3m, is vulnerable to a template injection vulnerability. This...
CVE-2026-20230CVSS 8.6
A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified...
CVE-2026-48907
A vulnerability in the JCE editor extension for Joomla allows the creation of new editor profiles for unauthenticated...
CVE-2026-20253CVSS 9.8
In Splunk Enterprise 10.2 versions below 10.2.4 and 10 versions below 10.0.7, an unauthenticated user could create or...