Nintendo America Employee Data Exposed After Shadowbyt3$ Targets TinyPulse
A third-party human resources platform called TinyPulse has become the victim of a supply-chain attack that resulted in the exfiltration of records belonging to Nintendo…
A third-party human resources platform called TinyPulse has become the victim of a supply-chain attack that resulted in the exfiltration of records belonging to Nintendo…
CISA has added CVE-2026-20253, a critical, remotely exploitable vulnerability in Splunk Enterprise, to its Known Exploited Vulnerabilities catalog, and ordered US federal civilian agencies to…
The Gentlemen ransomware-as-a-service (RaaS) operation is actively developing and maintaining a suite of endpoint detection and response (EDR) killers that it hands out to affiliates…
The UK government’s plan to “end an era of outsourcing” is starting with cleaners, security staff and government training, but how far could IT and…
CISA is urging organizations to harden their internet-accessible Fortinet devices in response to a large-scale credential theft campaign that likely impacts over 86,000 firewalls and…
24 Billion Stolen Credentials Exposed in Massive Data Leak Pierluigi Paganini June 19, 2026 Exposed database with 24 Billion records revealed stolen credentials from infostealers,…
The principle behind BYOVD is simple enough: once an attacker has gained admin privileges through an account takeover, they load a legitimate, but old and…
Recently, NIST announced an update to how the National Vulnerability Database (NVD) handles CVE enrichment to address the massive surge in vulnerability submissions. In the…
Threat actors are exploiting an unauthenticated information disclosure vulnerability in the WordPress plugin Gravity SMTP, active on 100,000 sites. The flaw is tracked as CVE-2026-4020…
Critical security flaws discovered in widely used Chrome extensions SiderAI and MaxAI are putting millions of users at risk, enabling attackers to fully compromise browser…
National Security Presidential Memorandum 12 (NSPM-12), which was signed on June 12, 2026, creates a thorough national policy for National Security Systems (NSS) cybersecurity. Because…
New York, USA, June 19th, 2026, CyberNewswire eFAQ has published a documented investigation into a coordinated reputation attack campaign aimed at influencing brand perception in…