Incomplete fix for Fancy Bear exploit opens zero-click hole in Windows
Microsoft’s partial patching in February 2026 of a zero-day vulnerability abused by Russian state-sponsored threat group Fancy Bear created a new flaw that is now…
Latest Cybersecurity News — Page 165
View all →
38 Vulnerabilities Found in OpenEMR Medical Software
Dozens of vulnerabilities, including critical issues that can be exploited to steal sensitive patient information, were discovered recently in the open source electronic medical records…
U.S. CISA adds Microsoft Windows Shell and ConnectWise ScreenConnect flaws to its Known Exploited Vulnerabilities catalog
U.S. CISA adds Microsoft Windows Shell and ConnectWise ScreenConnect flaws to its Known Exploited Vulnerabilities catalog Pierluigi Paganini April 29, 2026 U.S. Cybersecurity and Infrastructure…
Third Party Risk Management: So vermeiden Sie Compliance-Unheil
Third Party Risk Management hilft Unternehmen, das Risiko von Compliance-Verstößen zu vermeiden. Foto: Diyajyoti – shutterstock.com In Zeiten der Digitalisierung ist es für Unternehmen unerlässlich,…
Survey finds 99% back microsegmentation but over 90% fall short on protecting critical systems
A new Omdia survey, commissioned by Elisity, finds that 99% of security leaders want microsegmentation deployed, yet over 90% have protected fewer than 80% of…
Freight Hacker Wields Code-Signing Service to Evade Defenses
Prolific Threat Actor Focused on Using Malware to Facilitate Cargo Theft Mathew J. Schwartz (euroinfosec) • April 16, 2026 Image: NetVideo/Shutterstock Cybercriminals don’t…
Why Are You Still Paying for Antivirus?
Don’t worry, this isn’t one of those “AV is dead” articles. I read that headline almost ten years ago—I didn’t believe it then, and I…
Video service Vimeo confirms Anodot breach exposed user data
Vimeo has disclosed that data belonging to some of its customers and users has been accessed without authorization following the recent breach at the Anodot…
New BlueNoroff Campaign Uses Fileless PowerShell and AI-Generated Zoom Lures
A dangerous new cyber campaign from North Korea’s Lazarus Group is targeting cryptocurrency and Web3 professionals using fake Zoom meeting interfaces, fileless PowerShell scripts, and…
CISA Warns of Windows Shell Zero-Day Exploited in Attacks
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert regarding a newly discovered zero-day vulnerability affecting Microsoft Windows. On April 28, 2026,…
Pack2TheRoot: 12-Year-Old Linux PackageKit Flaw Enables Full Compromise
Researchers from Deutsche Telekom’s Red Team have identified a high-severity security flaw in PackageKit, the software that helps in managing packages across different Linux systems.…
The Exchange Online security controls organizations keep getting wrong
In this Help Net Security interview, Scott Schnoll, Microsoft MVP for Exchange, breaks down the Shared Responsibility Model, where Microsoft secures the cloud while organizations…