CISA Adds 5 Enterprise Software Flaws To KEV Catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added five enterprise software flaws to its Known Exploited Vulnerabilities (KEV) Catalog in an 18-hour span.…
Category: TheCyberExpress
TCE Weekly Roundup Highlights New Cybersecurity Threats
The third week of 2026 highlights a series of cybersecurity events affecting businesses, critical infrastructure, and regulatory compliance. This week, network administrators are grappling with…
Phishing Toolkits Sync With Phone Scammers To Defeat MFA
Researchers discover phishing toolkits specifically engineered for voice-based social engineering attacks—often called “vishing”—that synchronize fake login pages with live phone conversations to defeat multifactor authentication.…
GitLab Patch Release Fixes High-Severity Vulnerabilities
GitLab has issued a new GitLab patch release addressing a range of security vulnerabilities and stability issues across multiple supported versions. The latest updates, versions 18.8.2,…
Financial Firm Cybersecurity Lacking, Bank Of England Says
The Bank of England’s CBEST cybersecurity assessment program found that financial organizations are failing when it comes to basic cybersecurity practices. The lengthy report doesn’t…
Fortinet Admins Report Active Exploits On Fixed FortiOS Bug
Network administrators worldwide are scrambling this morning following credible reports that the critical Fortinet Single Sign-On (SSO) vulnerability, tracked as CVE-2025-59718, is being actively exploited…
Ingram Micro Data Breach Impacts Staff, Applicants
Ingram Micro, one of the world’s largest IT distributors, has confirmed that sensitive personal data was leaked following a ransomware attack that disrupted its operations…
UK Businesses Cyberattack Survival At Risk, Study Finds
UK businesses are facing growing pressure from cyber threats, with a new survey warning that many may not withstand major UK businesses cyberattack. The findings…
EU To Remove High-risk Mobile And Telecom Network Products
The European Commission has proposed a new cybersecurity legislative package that proponents say will strengthen the security of the EU’s Information and Communication Technologies (ICT)…
Hacktivists Became More Dangerous In 2025
Hacktivists became significantly more dangerous in 2025, moving beyond their traditional DDoS attacks and website defacements to target critical infrastructure and ransomware attacks. That’s one…
Critical ACF Add-on Plugin Flaw Exposes WordPress Sites
A critical security flaw has been discovered in a widely used ACF add-on plugin for WordPress, placing up to 100,000 websites at risk of a…
Russian-Aligned Hacktivist Groups Active In UK
The UK’s National Cyber Security Centre (NCSC) has issued a fresh alert warning that Russian-aligned hacktivist groups continue to target British organisations with disruptive cyberattacks.…