The U.S. Federal Bureau of Investigation has issued a public advisory warning that North Korean state-sponsored threat actors are actively leveraging malicious QR codes as part of targeted...
Trend Micro has issued a critical security warning for its Apex Central management platform after researchers identified a remote code execution vulnerability that could allow attackers to take full...
A newly disclosed vulnerability in Apache Tika has drawn attention to a familiar but still dangerous class of flaws: XML External Entity injection. Tracked as CVE-2025-66516, the issue affects how...
In a landmark move that underscores the evolving landscape of federal cybersecurity, the Cybersecurity and Infrastructure Security Agency (CISA) has announced the retirement of ten Emergency...
In the fast-paced world of cybersecurity, vulnerabilities in essential software can pose significant risks to organizations worldwide. Recently, Veeam Software, a leading provider of data protection...
In the ever-evolving landscape of cybersecurity threats, ransomware attacks continue to pose significant risks to businesses across various sectors. On January 7, 2026, several organizations were...
China has reportedly compromised the email systems used by staffers on several influential committees of the United States House of Representatives, according to a Financial Times report. The...
A severe remote code execution (RCE) vulnerability has been discovered in a range of legacy D-Link DSL routers, presenting a high-risk threat to millions of end users worldwide. The flaw allows...
A critical vulnerability affecting the n8n workflow automation platform has been disclosed, potentially allowing unauthenticated remote code execution on exposed instances. Assigned CVE-2026-21858...
A newly disclosed maximum-severity vulnerability in the workflow automation platform n8n is raising alarms because it can convert ordinary authenticated access into full remote code execution on the...
For many CISOs, artificial intelligence is no longer an experimental technology sitting on the edge of the organisation. It is embedded in customer analytics, fraud detection, HR screening, code...
A critical security vulnerability has been disclosed in jsPDF, a widely used JavaScript library for generating PDF documents in web applications. The flaw allows attackers to craft malicious PDF...
SafePay has become one of the more closely watched ransomware names to emerge in the last 18 months, not because it invented a brand new technique, but because it operationalised familiar ones with...
In a startling revelation that underscores the persistent vulnerabilities in digital ecosystems, cybersecurity researchers have uncovered two rogue Chrome extensions that have been covertly...
L’Orange Bleu, a mid-sized fitness club chain, has confirmed a significant data breach that exposed financial information and personally identifiable data of its club managers. The incident, first...
A major data breach at Aarong, one of Bangladesh’s largest lifestyle retail brands, has resulted in the exposure of approximately 3.5 million customer records. The incident, which came to light after...
Mist Store, a popular Brazilian e-commerce platform, is reportedly the victim of a data breach that exposed information related to approximately 30,000 customer orders. The incident, disclosed by...
In the ever-evolving landscape of digital security, few incidents illustrate the long-term dangers of data breaches as starkly as the 2022 LastPass compromise. What began as a seemingly contained...
Sedgwick, a leading global provider of technology-enabled risk, benefits and integrated business solutions, has confirmed that one of its government-focused subsidiaries was the victim of a...
Cybersecurity analysts have uncovered a sophisticated campaign by Russia-aligned threat actors who are systematically abusing the popular messaging app Viber to deliver malware and spy on Ukrainian...