Nothing Phone (2a) Faces Secure Boot Exploit Risk
A newly released proof-of-concept (PoC) exploit has disclosed a severe code-execution vulnerability affecting the Nothing Phone (2a) and the CMF Phone 1, both of which…
Category: DarkReading
Bipartisan Bill Revives Cybersecurity Safeguards
In a renewed push to safeguard America’s digital infrastructure, U.S. Senators Gary Peters (D-MI) and Mike Rounds (R-SD) have introduced the Protecting America from Cyber…
Two Teens Arrested Over Cyberattack On Kido Nursery Data
Two 17-year-old boys have been arrested in connection with a cyberattack on Kido, a London-based nursery chain. The incident involved the theft and online exposure…
Rising Threats & Key Measures
With over 86% of Indian households now connected to the internet, India has made impressive strides under the Digital India initiative. However, the same connectivity…
Discord Data Breach Exposes 70,000 User ID Photos
A recent cyberattack on a third-party vendor has led to a data breach at Discord, potentially compromising the sensitive personal information of approximately 70,000 users.…
Zimbra ZCS Flaw CVE-2025-27915 Actively Exploited
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) have issued an urgent alert concerning an actively exploited zero-day vulnerability in the Zimbra Collaboration Suite (ZCS).…
Earn $30K To Hack Gemini AI
Google has unveiled a new AI Vulnerability Reward Program (VRP), offering payouts of up to $30,000 for researchers who successfully identify and report security flaws…
Western Sydney University Email Scam Sparks Student Alarm
Western Sydney University has recently fallen victim to a scam involving fraudulent emails sent to current students and alumni. These emails falsely claimed that recipients’…
The Cyber Express Is The Exclusive Media Partner For C0c0n 2025
The Cyber Express is proud to announce that it is the official media partner for c0c0n 2025, India’s longest-running cybersecurity and hacking conference. Now in…
Researchers Uncover 13-Yr-Old Redis Flaw Impacting 330,000 Instances
Researchers have uncovered a 13-year-old critical remote-code-execution flaw in Redis that let attackers escape the product’s Lua sandbox and execute native code on the host,…
Attackers Deployed Medusa Ransomware Via GoAnywhere Zero-Day
Cybercriminals exploited a critical deserialization flaw in Fortra’s GoAnywhere Managed File Transfer (MFT) tool—tracked as CVE-2025-10035—to drop Medusa ransomware, Microsoft disclosed Monday. The campaign, attributed…
Scattered Spider Targets Microsoft, Apple In Access Scheme
Scattered Spider has shifted its operational strategy, moving away from chaotic data leaks toward a more structured and professional model of cybercrime. Now functioning as…