GitHub compromised, allegedly by TeamPCP
Microsoft-owned web-based code hosting and collaboration platform GitHub has confirmed that it has been compromised, following reports that the TeamPCP hacking group had successfully attacked…
Latest Cybersecurity News — Page 15
View all →
Cisco Patches Critical Vulnerability in Secure Workload
Cisco on Wednesday announced patches for a critical-severity vulnerability in Secure Workload that could allow attackers to access site resources with Site Admin privileges. The…
Attackers are bypassing MFA on SonicWall VPNs because something was wrong with previous fix
Attackers are bypassing MFA on SonicWall VPNs because something was wrong with previous fix Pierluigi Paganini May 21, 2026 Attackers bypassed MFA on patched SonicWall…
How Triage Assist is raising the bar in crowdsourced security
AI is changing the volume and accelerating the pace of vulnerability submissions. If you’ve been following our recent AI series, you already know that submission…
Microsoft releases open-source tools to operationalize AI agent safety
“We built these tools because we believe that AI safety has to become a continuous engineering discipline rather than a periodic checkpoint, and we think…
Scammers are abusing an internal Microsoft account to send spam links
For months, scammers have been taking advantage of a loophole that allows them to send spammy emails from an internal Microsoft email address typically used…
Fighting Log4Shell with Huntress Managed EDR
Nothing says happy Friday afternoon quite like finding a Cobalt Strike implant in your network. Such was the case for our partners at Blue Tree…
Police seize “First VPN” service used in ransomware, data theft attacks
A virtual private network service called ‘First VPN,’ used in ransomware and data theft attacks, has been taken offline in a joint international law enforcement…
Flipper Unveils New Flipper One Modular Linux Cyberdeck
Flipper Devices has unveiled Flipper One, a modular Linux cyberdeck aimed at becoming a fully open, mainline-first ARM platform for hackers, researchers, and makers The…
Proton Launches Credential Tokens to Tackle AI Agent Security Gap
A growing tension sits at the heart of enterprise AI deployments: organisations want agents to act autonomously, yet handing over passwords and API keys to…
A Hacker Group Is Poisoning Open Source Code at an Unprecedented Scale
A so-called software supply chain attack, in which hackers corrupt a legitimate piece of software to hide their own malicious code, was once a relatively…
Apache OFBiz RCE Flaw Abuses Password-Change Restrictions for Authentication Bypass
A critical authentication bypass vulnerability in Apache OFBiz allows attackers to hijack forced password-change flows and achieve remote code execution (RCE) via a single HTTP…