Cyber Security

SolyxImmortal Info Stealer Exploits Systems via Discord

• Malware

SolyxImmortal Info Stealer Exploits Systems via Discord

Ddos May 31, 2026 0

Security researchers recently discovered a highly dangerous new asset targeting worldwide internet users. Specifically, the SolyxImmortal info...

Read More Read more about SolyxImmortal Info Stealer Exploits Systems via Discord

Massive FreePBX Exploitation Campaign Deploys JOMANGY Webshell

• Cybercriminals
• Vulnerability Report

Massive FreePBX Exploitation Campaign Deploys JOMANGY Webshell

Ddos May 27, 2026 0

Cyble Research & Intelligence Labs recently uncovered a highly aggressive FreePBX exploitation campaign. Analysts attribute this malicious...

Read More Read more about Massive FreePBX Exploitation Campaign Deploys JOMANGY Webshell

Disrupted: How the “Trapdoor” Ad Fraud Ring Weaponized 455 Android Apps for 659 Million Daily Fake Bids

• Cybercriminals

Disrupted: How the “Trapdoor” Ad Fraud Ring Weaponized 455 Android Apps for 659 Million Daily Fake Bids

Ddos May 25, 2026 0

The Satori Threat Intelligence and Research Team at HUMAN has successfully disrupted a massive ad fraud and...

Read More Read more about Disrupted: How the “Trapdoor” Ad Fraud Ring Weaponized 455 Android Apps for 659 Million Daily Fake Bids

Microsoft Dismantles “Fox Tempest” Code-Signing Network Fueling Global Ransomware

• Cybercriminals

Microsoft Dismantles “Fox Tempest” Code-Signing Network Fueling Global Ransomware

Ddos May 25, 2026 0

Microsoft’s Digital Crimes Unit (DCU) has delivered a massive blow to the cybercrime underground. In May 2026,...

Read More Read more about Microsoft Dismantles “Fox Tempest” Code-Signing Network Fueling Global Ransomware

In-Memory Financial Theft: Inside Banana RAT’s Operator-Driven Attacks on Brazilian Banks

• Malware

In-Memory Financial Theft: Inside Banana RAT’s Operator-Driven Attacks on Brazilian Banks

Ddos May 25, 2026 0

A sophisticated, highly focused banking trojan is actively undermining the security controls of financial institutions across South...

Read More Read more about In-Memory Financial Theft: Inside Banana RAT’s Operator-Driven Attacks on Brazilian Banks

Critical TYPO3 Extension Exploit: Content Element Selector Flaw (CVE-2026-46725) Triggers Unauthenticated RCE

• Vulnerability Report

Critical TYPO3 Extension Exploit: Content Element Selector Flaw (CVE-2026-46725) Triggers Unauthenticated RCE

Ddos May 25, 2026 0

The TYPO3 project has announced a critical security vulnerability affecting a popular third-party extension. The advisory, tagged...

Read More Read more about Critical TYPO3 Extension Exploit: Content Element Selector Flaw (CVE-2026-46725) Triggers Unauthenticated RCE

Over-the-Air Root Risk: Seven Critical FreeBSD Security Advisories Fix Wi-Fi RCE and Kernel Flaws

• Vulnerability Report

Over-the-Air Root Risk: Seven Critical FreeBSD Security Advisories Fix Wi-Fi RCE and Kernel Flaws

Ddos May 25, 2026 0

The FreeBSD Project has issued a sweeping set of seven security advisories resolving highly critical vulnerabilities nested...

Read More Read more about Over-the-Air Root Risk: Seven Critical FreeBSD Security Advisories Fix Wi-Fi RCE and Kernel Flaws

Malicious JS Lifecycle Hooks Found Hiding Inside PHP Composer Packages

• Malware

Malicious JS Lifecycle Hooks Found Hiding Inside PHP Composer Packages

Ddos May 23, 2026 0

Security researchers at Socket have uncovered a coordinated attack targeting PHP Composer packages by hiding malicious JavaScript...

Read More Read more about Malicious JS Lifecycle Hooks Found Hiding Inside PHP Composer Packages

Supply Chain Storm: Over 700 Laravel Lang Versions Poisoned with Malicious RCE Backdoor

• Malware

Supply Chain Storm: Over 700 Laravel Lang Versions Poisoned with Malicious RCE Backdoor

Ddos May 23, 2026 0

A major software supply-chain storm is brewing in the PHP ecosystem. Security firm Socket has exposed a...

Read More Read more about Supply Chain Storm: Over 700 Laravel Lang Versions Poisoned with Malicious RCE Backdoor

WantToCry Ransomware Leverages Exposed SMB for Remote Encryption Loops

• Malware

WantToCry Ransomware Leverages Exposed SMB for Remote Encryption Loops

Ddos May 23, 2026 0

A newly analyzed ransomware campaign is turning traditional endpoint defense playbooks upside down by executing its entire...

Read More Read more about WantToCry Ransomware Leverages Exposed SMB for Remote Encryption Loops

Malware-as-a-Service Exposed: Cisco Talos Unmasks Developer Behind Prolific “BadIIS” Web Server Toolkit

• Malware

Malware-as-a-Service Exposed: Cisco Talos Unmasks Developer Behind Prolific “BadIIS” Web Server Toolkit

Ddos May 22, 2026 0

A sweeping forensic threat intelligence report has exposed the inner workings of a sophisticated, highly commercialized cybercriminal...

Read More Read more about Malware-as-a-Service Exposed: Cisco Talos Unmasks Developer Behind Prolific “BadIIS” Web Server Toolkit

Bypassing Terminal Protections: New SHub “Reaper” Variant Abuses AppleScript to Loot macOS Endpoints

• Malware

Bypassing Terminal Protections: New SHub “Reaper” Variant Abuses AppleScript to Loot macOS Endpoints

Ddos May 22, 2026 0

Information stealers targeting macOS have continued to proliferate over the last two years, with threat actors iterating...

Read More Read more about Bypassing Terminal Protections: New SHub “Reaper” Variant Abuses AppleScript to Loot macOS Endpoints

Storm-2949 Hijacks Azure Identity and Key Vaults in Catastrophic Cloud Campaign

• Cybercriminals

Storm-2949 Hijacks Azure Identity and Key Vaults in Catastrophic Cloud Campaign

Ddos May 22, 2026 0

A sophisticated new threat actor is forcing corporate security leaders to re-evaluate their entire relationship with cloud...

Read More Read more about Storm-2949 Hijacks Azure Identity and Key Vaults in Catastrophic Cloud Campaign

CVSS 10.0 Zero-Day: Active Attacks Exploit LiteSpeed cPanel Plugin for Root Server Access

• Vulnerability Report

CVSS 10.0 Zero-Day: Active Attacks Exploit LiteSpeed cPanel Plugin for Root Server Access

Ddos May 22, 2026 0

A critical vulnerability in the LiteSpeed User-End cPanel Plugin is currently being actively exploited in the wild,...

Read More Read more about CVSS 10.0 Zero-Day: Active Attacks Exploit LiteSpeed cPanel Plugin for Root Server Access

Twill Typhoon Exploits CDN Masquerading and DLL Sideloading to Breach APJ Networks

• Cybercriminals

Twill Typhoon Exploits CDN Masquerading and DLL Sideloading to Breach APJ Networks

Ddos May 22, 2026 0

A sophisticated, highly targeted cyber-espionage campaign is actively penetrating corporate and critical infrastructure networks across the Asia-Pacific...

Read More Read more about Twill Typhoon Exploits CDN Masquerading and DLL Sideloading to Breach APJ Networks

Triple CVSS 10.0 Warning: Critical Ubiquiti UniFi OS Flaws Allow Unauthenticated Remote Takeovers

• Vulnerability Report

Triple CVSS 10.0 Warning: Critical Ubiquiti UniFi OS Flaws Allow Unauthenticated Remote Takeovers

Ddos May 22, 2026 0

Ubiquiti has issued a major security advisory addressing five distinct vulnerabilities across its UniFi OS ecosystem. Three...

Read More Read more about Triple CVSS 10.0 Warning: Critical Ubiquiti UniFi OS Flaws Allow Unauthenticated Remote Takeovers

New Apache Camel K Flaw (CVE-2026-45760) Enables Cross-Namespace Attacks

• Vulnerability Report

New Apache Camel K Flaw (CVE-2026-45760) Enables Cross-Namespace Attacks

Ddos May 22, 2026 0

A newly disclosed vulnerability was found in Apache Camel K, a widely trusted open-source integration framework designed...

Read More Read more about New Apache Camel K Flaw (CVE-2026-45760) Enables Cross-Namespace Attacks

Five Critical vm2 Vulnerabilities Grant Instant Node.js Host RCE

• Vulnerability Report

Five Critical vm2 Vulnerabilities Grant Instant Node.js Host RCE

Ddos May 22, 2026 0

In the world of Node.js development, the vm2 library has long served as a popular mechanism for...

Read More Read more about Five Critical vm2 Vulnerabilities Grant Instant Node.js Host RCE

Print-Path RCE Exposed: Critical HP Linux Driver Flaws (CVE-2026-8631) Grant Root Privileges

• Vulnerability Report

Print-Path RCE Exposed: Critical HP Linux Driver Flaws (CVE-2026-8631) Grant Root Privileges

Ddos May 22, 2026 0

A fresh security advisory has issued an urgent warning for open-source environments and enterprise Linux deployments utilizing...

Read More Read more about Print-Path RCE Exposed: Critical HP Linux Driver Flaws (CVE-2026-8631) Grant Root Privileges

Splunk Patches High-Severity Bugs Granting DoS and Internal Log Leaks

• Vulnerability Report

Splunk Patches High-Severity Bugs Granting DoS and Internal Log Leaks

Ddos May 22, 2026 0

Splunk has issued a coordinated batch of security advisories targeting vulnerabilities across Splunk Enterprise, Splunk Cloud Platform,...

Read More Read more about Splunk Patches High-Severity Bugs Granting DoS and Internal Log Leaks