TCE Weekly Roundup: Supply Chain & Cloud Threats
The cybersecurity landscape in this weekly roundup shows how attackers are shifting away from isolated systems and focusing instead on the trusted ecosystems that underpin…
Category: TheCyberExpress
Notepad++ Fixes CVE-2026-48770 RCE Vulnerability
The developers behind Notepad++ have released version 8.9.6.1 to address multiple security vulnerabilities, including critical flaws that could expose users to remote code execution (RCE)…
CERT-In Urges 12-Hour Patching Amid AI Cyber Threats
India’s Computer Emergency Response Team, Indian Computer Emergency Response Team, has introduced a new cybersecurity framework urging organizations to patch critical security vulnerabilities in internet-facing…
Megalodon GitHub Supply Chain Attack Hits 5,500+ Repos
A large-scale software supply chain attack dubbed “Megalodon” has compromised more than 5,500 repositories on GitHub, raising fresh concerns about the growing abuse of automated…
CVE-2026-26980 Ghost CMS Vulnerability Hits 700 Sites
A critical Ghost CMS vulnerability identified as CVE-2026-26980 has been exploited in a widespread cyber campaign that compromised more than 700 websites, including platforms associated with major institutions such…
Kali365 Phishing Kit Hijacks Microsoft 365 Access
The FBI has issued a fresh warning about a growing cybercrime service known as Kali365, a new Phishing-as-a-Service (PhaaS) platform that enables attackers to hijack…
Taiwan Cyber Risk Rises After 726 Security Incidents
Taiwan’s digital security authorities have identified five major areas of concern following hundreds of reported cybersecurity incidents involving government agencies in 2025. According to Taiwan’s Ministry of…
Financial Services DDoS Attacks Rise 738% Since 2024
The global financial sector is facing a sharp rise in Financial Services DDoS Attacks, with cybercriminals increasingly targeting banks, payment systems, and online financial platforms…
European Agencies Shutter First VPN Service
The French and Dutch law enforcement seized a large-scale virtual private network (VPN) service catering to cybercriminals, offering services to mask their illicit activities of…
TCE Weekly Roundup: Cybersecurity Threats & AI Risks
The global cybersecurity landscape continues to evolve rapidly as attackers expand their focus on developer ecosystems, public-facing institutions, and anonymization infrastructure. At the same time,…
Vulnerability Exploitation Tops Cyber Breach Entry Points
Vulnerability exploitation has officially become the leading cause of cybersecurity breaches for the first time in nearly two decades, according to the latest Data Breach…
Cyber Security Device Developed By UK Government Launches
The UK government has officially licensed SilentGlass, a government-developed cyber security device, for global commercial use, marking a major step in expanding public sector cybersecurity…