News
-
CISA Adds VMware Aria Operations Vulnerability CVE-2026-22719 to KEV Catalog
Read more: CISA Adds VMware Aria Operations Vulnerability CVE-2026-22719 to KEV CatalogThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a newly disclosed VMware Aria Operations vulnerability (CVE-2026-22719) to its Known Exploited Vulnerabilities (KEV) catalog after reports of active exploitation in the wild. The flaw…
-
Fake Laravel Packages on Packagist Install RAT Malware on Windows, macOS, and Linux
Read more: Fake Laravel Packages on Packagist Install RAT Malware on Windows, macOS, and LinuxCybersecurity researchers have discovered malicious Laravel packages on Packagist that secretly install a Remote Access Trojan (RAT) capable of infecting Windows, macOS, and Linux systems. These packages appear to be helpful Laravel utilities but are…
-
Researchers Link CyberStrikeAI to Global FortiGate Hacks
Read more: Researchers Link CyberStrikeAI to Global FortiGate HacksResearchers have discovered that the threat actor behind a recent AI-assisted cyberattack targeting Fortinet FortiGate appliances used an open-source offensive security platform called CyberStrikeAI. According to Team Cymru, the attacker conducted automated mass scanning using…
-
Claude Code Vulnerabilities Enable RCE and API Key Theft
Read more: Claude Code Vulnerabilities Enable RCE and API Key TheftSecurity researchers have uncovered multiple high-risk vulnerabilities in Claude Code, the AI-powered coding assistant from Anthropic. The flaws could allow attackers to achieve remote code execution (RCE) and steal API credentials when developers open untrusted…
-
Windows Admin Center Privilege Escalation Bug Fixed (CVE-2026-26119)
Read more: Windows Admin Center Privilege Escalation Bug Fixed (CVE-2026-26119)Microsoft has patched a high-severity vulnerability in Windows Admin Center that could allow attackers to escalate privileges over the network. The flaw, tracked as CVE-2026-26119, carries a CVSS score of 8.8 and affects environments running…
-
Critical VS Code Extension Flaws Put 125M+ Installs at Risk
Read more: Critical VS Code Extension Flaws Put 125M+ Installs at RiskSecurity researchers have uncovered several high-severity vulnerabilities affecting four widely used extensions in Microsoft Visual Studio Code (VS Code). If exploited, these flaws could allow attackers to steal local files or execute remote code on…
-
Malicious Chrome Extensions Targeting Business Data
Read more: Malicious Chrome Extensions Targeting Business DataBrowser extensions are becoming a serious attack vector. Researchers recently exposed a malicious Chrome extension called CL Suite by @CLMasters that targets Meta Business Suite and Facebook Business Manager users. While it appears to be…
-
Active Exploitation of Critical BeyondTrust CVSS 9.9
Read more: Active Exploitation of Critical BeyondTrust CVSS 9.9Security researchers have confirmed active exploitation of a critical vulnerability affecting BeyondTrust Remote Support (RS) and Privileged Remote Access (PRA). The flaw, tracked as CVE-2026-1731, carries a CVSS score of 9.9 and allows unauthenticated remote…
-
How Samsung Knox Strengthens Network Security for Mobile Devices
Read more: How Samsung Knox Strengthens Network Security for Mobile DevicesEnterprise network security has improved over the years, but mobile devices remain a major weak spot. Unlike traditional endpoints, smartphones constantly switch networks, run many apps, and access sensitive data from anywhere. This makes them…
-
Claude Opus 4.6 Shows How AI Can Uncover Critical Open-Source Vulnerabilities
Read more: Claude Opus 4.6 Shows How AI Can Uncover Critical Open-Source VulnerabilitiesAnthropic has announced that its latest AI model, Claude Opus 4.6, has discovered over 500 previously unknown high-severity security flaws in widely used open-source libraries, including Ghostscript, OpenSC, and CGIF. This highlights the growing role…