How to Radically Cut Response Time for Each Security Incident
When an incident happens, there’s no time to waste. SOC teams must react fast to protect their organization, and this...
Read more →Category: CyberSecurityNews
Cloudflare API Outage Linked to React useEffect Bug Causes Service Overload and Recovery Failure
Cloudflare has published a detailed post-mortem explaining the significant outage on September 12, 2025, that made its dashboard and APIs...
Read more →
BMW Allegedly Breached by Everest Ransomware Group, Internal Documents Reportedly Stolen
The infamous Everest ransomware group has reportedly included Bayerische Motoren Werke AG (BMW) as a high-profile target, claiming the theft...
Read more →
Palo Alto Networks Acknowledges SquareX Research on Limitations of SWGs Against Last Mile Reassembly Attacks
SquareX first discovered and disclosed Last Mile Reassembly attacks at DEF CON 32 last year, warning the security community of...
Read more →
0-Click ChatGPT Agent Vulnerability Allows Sensitive Data Exfiltration from Gmail
A zero-click vulnerability discovered in ChatGPT’s Deep Research agent allowed attackers to exfiltrate sensitive data from a user’s Gmail account...
Read more →
Windows 11 Notepad to Get AI Support for Free to Generate and Summarize Text
Microsoft is integrating free, on-device artificial intelligence capabilities into the classic Notepad application for Windows 11 users with Copilot+ PCs....
Read more →
Hackers Injecting Malicious Code into GitHub Actions Workflows to Steal PyPI Publishing Tokens
Attackers injected malicious code into GitHub Actions workflows in a widespread campaign to steal Python Package Index (PyPI) publishing tokens....
Read more →
Critical Microsoft’s Entra ID Vulnerability Allows Attackers to Gain Complete Administrative Control
A critical vulnerability in Microsoft’s Entra ID could have allowed an attacker to gain complete administrative control over any tenant...
Read more →
New ‘shinysp1d3r’ Ransomware-as-a-service in Active Development to Encrypt VMware ESXi Environments
Emerging in mid-2025, the shinysp1d3r ransomware-as-a-service (RaaS) platform represents the next evolution of cloud-focused extortion tools. Unlike traditional ransomware that...
Read more →
PureVPN Vulnerability Exposes Users IPv6 Address While Toggling Wi-Fi
PureVPN’s Linux clients leak users’ IPv6 addresses when Wi-Fi reconnections or system resumes occur, and also obliterate host firewall rules...
Read more →
SonicWall Urges Customers to Reset Login Credentials After Configuration Backup Files Exposed
SonicWall has issued an urgent advisory urging all customers to perform an Essential Credential Reset after security researchers discovered that...
Read more →
Jenkins Patches Multiple Vulnerabilities that Allow Attackers to Cause a Denial of Service
Jenkins has released critical updates addressing four security flaws that unauthenticated and low-privileged attackers could exploit to disrupt service or...
Read more →