Cybersecurity

Keep up with cybersecurity threats, data privacy, hacking incidents, and digital protection strategies. Learn about security tools, expert insights, and best practices to safeguard your online presence.

Malware hidden in 300 fake GitHub repos posing as legit software

A threat actor created 292 fake GitHub repositories impersonating security products, cryptocurrency services, and other software, distributing infostealer malware via…

Read More »

SonicWall SMA zero-day attacks exploit CVE-2026-15409, CVE-2026-15410

SonicWall has confirmed active exploitation of two zero-day vulnerabilities (CVE-2026-15409 and CVE-2026-15410) in its SMA 1000 Series appliances, and has…

Read More »

Fortinet enhances FortiEndpoint with AI controls and data loss prevention

Fortinet's FortiEndpoint platform now includes AI visibility and governance, native data security, endpoint risk scoring, and FortiAI-assisted operations, all integrated…

Read More »

US Charges Operators of Russian Bulletproof Hosting Service

Three Russian nationals, Aleksandr Volosovik, Yulia Pankova, and Kirill Zatolokin, have been indicted in the U.S. for operating bulletproof hosting…

Read More »

Dark LLM Jailbreaking Secrets Revealed

A security researcher discovered that major LLMs like Google Gemini, GPT-4o, and Claude can be easily jailbroken to reveal dangerous…

Read More »

Confirmed: Zero-Day Flaw Behind ShareFile Storage Zone Shutdown

Progress Software confirmed a high-severity path traversal zero-day vulnerability caused the emergency shutdown of ShareFile Storage Zone Controllers, and has…

Read More »

Fake security alerts target LastPass and Bitwarden users

LastPass is warning users about a phishing campaign using fake security alerts that impersonate DocuSign, with emails from domains like…

Read More »

Pentagon Halts CMMC Phase II Mandates for Defense Contractors

The US Department of Defense suspended CMMC Phase II mandates on July 13, initiating a 60-day review to reduce bureaucratic…

Read More »

Open-Source Guardrails for Agentic AI: SingGuard-NSFA

SingGuard-NSFA is an open-source framework for securing agentic AI workflows, offering four model sizes (0.8B to 9B parameters) built on…

Read More »

Know If You’re Vulnerable Without Running an Exploit

The window between vulnerability disclosure and exploit emergence has collapsed from weeks to under a day due to an explosion…

Read More »

Microsoft Entra ID makes passkeys default in September

Starting September 2026, Microsoft Entra ID will make passkeys the default authentication method for enterprise users, automatically enabling them for…

Read More »

New phishing kits bypass MFA to target Microsoft 365 accounts

Two phishing kits, Jalisco and OmegaLord, are actively targeting Microsoft 365 accounts with methods designed to bypass multi-factor authentication (MFA)…

Read More »

Researchers Find “Context Bombs” Frustrate AI Attacks

Tracebit researchers successfully used prompt injection defensively by embedding "context bombs" in decoy canary resources to trigger safety guardrails in…

Read More »

SAP Warns of Critical Flaws in NetWeaver and Commerce Cloud

SAP's July 2026 security updates patch 16 vulnerabilities, with three critical flaws affecting NetWeaver, Commerce Cloud, and AppRouter. The critical…

Read More »

US sanctions VPN and malware firms aiding ransomware attacks

The U.S. Treasury sanctioned VPN provider First VPN Service (1VPNS) and its administrator Dmytro Rashevskyi for selling anonymity services to…

Read More »

Suno AI Trained on 2M+ YouTube Songs

A hacker leaked Suno's source code, revealing the AI music company scraped millions of songs and lyrics from YouTube, Deezer,…

Read More »

Microsoft fixes record patch count as Windows zero-day emerges

A researcher known as NightmareEclypse has released a publicly working exploit called HiveLegacy that targets a zero-day vulnerability in the…

Read More »

Microsoft Patches 622 Flaws, Including Two Actively Attacked Zero-Days

Microsoft's July 2026 Patch Tuesday is the largest on record, addressing 622 vulnerabilities, including two actively exploited zero-days in SharePoint…

Read More »

xAI sues man over Grok-generated CSAM deepfakes

xAI has filed a lawsuit against Terry Wayne Harwood of South Carolina, accusing him of using its Grok AI chatbot…

Read More »

Suno scraped millions of songs from YouTube, Genius, and Deezer

A hacker leaked Suno’s source code and training data, revealing that the AI music generator scraped millions of songs and…

Read More »