PornHub extorted after hackers steal Premium member activity data
Adult video platform PornHub is being extorted by the ShinyHunters extortion gang after the search and watch history of its Premium members was reportedly stolen…
Latest Cybersecurity News — Page 1009
View all →
Critical pgAdmin Vulnerability Let Attackers Execute Shell Commands on the Host
A severe security vulnerability has been uncovered in pgAdmin 4, the popular open-source PostgreSQL database management tool. Tracked as CVE-2025-13780, this critical flaw allows attackers…
xHunt APT Exploits Microsoft Exchange and IIS to Deploy Custom Backdoors
xHunt, a sophisticated cyber-espionage group with a laser focus on organizations in Kuwait, has continued to demonstrate advanced capabilities in infiltrating critical infrastructure. The group’s…
Nvidia buys AI developer to expand open-source AI push
Nvidia has acquired AI software firm SchedMD as the chip designer doubles down on open-source technology and steps up investments in the artificial intelligence ecosystem…
Apache StreamPark Vulnerability Let Attackers Access Sensitive Data
A critical security vulnerability has been discovered in Apache StreamPark that could allow attackers to decrypt sensitive information and gain unauthorized system access. The vulnerability…
PCPcat Malware Leverages React2Shell Vulnerability to Breach 59,000+ Servers
A sophisticated attack campaign attributed to a group identifying as “PCP” has compromised 59,128 servers in less than 48 hours by exploiting critical Next.js vulnerabilities.…
Federal chief AI officer roles set to go to existing APS staffers
A government mandate to appoint chief AI officers by July next year appears set to be fulfilled by incorporating the responsibilities into an existing senior…
Threat Actors Advertising ‘MioLab MacOS’ Infostealer on an Underground Forum
A new malware threat targeting macOS users has emerged on underground cybercrime forums, with threat actors marketing a sophisticated information-stealing tool called “MioLab MacOS.” This…
ZnDoor Malware Actively Exploits React2Shell to Breach Network Infrastructure
Since December 2025, security operations centers have identified a rising threat targeting Japanese enterprises through the exploitation of React2Shell (CVE-2025-55182), a critical remote code execution…
IAG reworks data ingestion for property underwriters
Insurance Australia Group (IAG) is targeting high-volume data ingestion processes across its businesses for improvement using AI and automation, in a bid to curtail time…
U.S. CISA adds Apple and Gladinet CentreStack and Triofox flaws to its Known Exploited Vulnerabilities catalog
U.S. CISA adds Apple and Gladinet CentreStack and Triofox flaws to its Known Exploited Vulnerabilities catalog Pierluigi Paganini December 15, 2025 U.S. Cybersecurity and Infrastructure…
We Need a New Type of Cybersecurity Product
I think we in Cybersecurity have largely failed to show its value to the busines over the last decades. And I think we need a…