Latest Cybersecurity News
View all →
Online Safety Act Exposes Age Verification System Flaws
The rollout of the UK’s Online Safety Act in July 2025 was intended to create a safer digital environment for children through stricter age verification…
Aus universities and TAFEs investigating exposure to Canvas cyber incident
Australian universities and TAFEs have joined global counterparts in scrambling to understand their potential exposure to a cyber incident involving a popular learning management system.…
Polish Security Agency Reports ICS Breaches at Five Water Treatment Plants
Poland’s Internal Security Agency (ABW) has documented a significant escalation in cyberattacks targeting industrial control systems (ICS) and other operational technology (OT) infrastructure during 2024…
Dirty Frag: A new Linux privilege escalation vulnerability is already in the wild
Dirty Frag: A new Linux privilege escalation vulnerability is already in the wild Pierluigi Paganini May 08, 2026 Dirty Frag: unpatched Linux kernel flaw grants…
Claude in Chrome is taking orders from the wrong extensions
LayerX is calling the flaw “ClaudeBleed.” “LayerX reported the flaw to Anthropic,” LayerX researcher Aviad Gispan said in a blog post. “Anthropic replied that they…
Beware of Traitorware: Using Splunk for Persistence
In a previous blog post, I covered how Splunk, and by extension, other security tools, can be used for malicious purposes. In that specific example,…
Zara data breach exposed personal information of 197,000 people
Hackers who gained access to the databases of Spanish fast-fashion retailer Zara stole data belonging to more than 197,000 customers, according to data breach notification…
New PCPJack Worm Targets Docker, Kubernetes, Redis, and MongoDB for Credential Theft
A sophisticated new malware framework called PCPJack has been found actively targeting cloud environments across the internet, hunting for exposed services and stripping away credentials…
Pentest-Tools.com Releases Free Scanner for CVE-2026-41940 as cPanel Authentication Bypass Enters Its Third Week of Active Exploitation
Pentest-Tools.com has released a free, no-login scanner for CVE-2026-41940, the critical authentication bypass affecting cPanel & WHM and WP Squared that has been actively exploited…