News
-
Malicious Chrome Extensions Targeting Business Data
Read more: Malicious Chrome Extensions Targeting Business DataBrowser extensions are becoming a serious attack vector. Researchers recently exposed a malicious Chrome extension called CL Suite by @CLMasters that targets Meta Business Suite and Facebook Business Manager users. While it appears to be…
-
Active Exploitation of Critical BeyondTrust CVSS 9.9
Read more: Active Exploitation of Critical BeyondTrust CVSS 9.9Security researchers have confirmed active exploitation of a critical vulnerability affecting BeyondTrust Remote Support (RS) and Privileged Remote Access (PRA). The flaw, tracked as CVE-2026-1731, carries a CVSS score of 9.9 and allows unauthenticated remote…
-
How Samsung Knox Strengthens Network Security for Mobile Devices
Read more: How Samsung Knox Strengthens Network Security for Mobile DevicesEnterprise network security has improved over the years, but mobile devices remain a major weak spot. Unlike traditional endpoints, smartphones constantly switch networks, run many apps, and access sensitive data from anywhere. This makes them…
-
Claude Opus 4.6 Shows How AI Can Uncover Critical Open-Source Vulnerabilities
Read more: Claude Opus 4.6 Shows How AI Can Uncover Critical Open-Source VulnerabilitiesAnthropic has announced that its latest AI model, Claude Opus 4.6, has discovered over 500 previously unknown high-severity security flaws in widely used open-source libraries, including Ghostscript, OpenSC, and CGIF. This highlights the growing role…
-
Fake Python Spellchecker Packages on PyPI Spread Hidden RAT Malware
Read more: Fake Python Spellchecker Packages on PyPI Spread Hidden RAT MalwareSecurity researchers have uncovered malicious Python packages on PyPI that pretended to be simple spellchecker tools but secretly delivered a remote access trojan (RAT). The packages, spellcheckerpy and spellcheckpy, were downloaded over 1,000 times before…
-
Fake VS Code AI Extension Used to Deploy Malware via Moltbot Name
Read more: Fake VS Code AI Extension Used to Deploy Malware via Moltbot NameSecurity researchers have discovered a malicious Visual Studio Code extension that impersonated Moltbot (formerly Clawdbot) and claimed to be a free AI coding assistant. The extension was published on the official VS Code Marketplace before…
-
Google Gemini Security Issue Enabled Silent Access to Private Calendar Events
Read more: Google Gemini Security Issue Enabled Silent Access to Private Calendar EventsSecurity researchers have uncovered a Google Gemini prompt injection vulnerability that allowed attackers to access private Google Calendar data using malicious calendar invites. The flaw abused indirect prompt injection, bypassing authorization controls without direct user…
-
LastPass Phishing Scams Resurface, Users Urged to Stay Alert
Read more: LastPass Phishing Scams Resurface, Users Urged to Stay AlertLastPass is warning users about a renewed phishing campaign impersonating the official LastPass service. The attack aims to steal users’ master passwords by sending fake emails that claim an upcoming system maintenance and urge recipients…
-
Fortinet Patches Critical FortiSIEM Vulnerability Allowing Remote Code Execution
Read more: Fortinet Patches Critical FortiSIEM Vulnerability Allowing Remote Code ExecutionFortinet has released security updates to fix a critical vulnerability in FortiSIEM that could allow an attacker to execute code remotely without authentication. The flaw is tracked as CVE-2025-64155 and has a CVSS score of…
-
Advanced VoidLink Linux Malware Targets Cloud and Container Environments
Read more: Advanced VoidLink Linux Malware Targets Cloud and Container EnvironmentsCybersecurity researchers have uncovered a new and highly advanced Linux malware framework called VoidLink, designed specifically to operate in cloud and container environments. First discovered in December 2025, this malware is considered a serious threat…









