Critical UUID Flaw in Fiber v2 on Go 1.24+ Enables Session Hijacking, CSRF Bypass, and Zero-ID DoS Risk
UUID Flaw in Fiber v2 on Go A severe vulnerability has been discovered in Fiber v2, a popular Go web framework, that could allow attackers…
Latest Cybersecurity News — Page 305
View all →
CVE volumes may plausibly reach 100,000 this year
The total number of common vulnerabilities and exposures (CVEs) disclosed in 2026 is set to romp past the 50,000 mark in 2026 and may plausibly…
BQTLock & GREENBLOOD Ransomware Attacking Organizations to Encrypt and Exfiltrate Data
Two sophisticated ransomware families, BQTLock and GREENBLOOD, have surfaced in the cybersecurity landscape, utilizing contrasting strategies to disrupt business operations and extort victims. While typical…
ICE Is Crashing the US Court System in Minnesota
The Immigration and Customs Enforcement (ICE) operation in Minnesota is pushing the United States court system to its breaking point. Since Operation Metro Surge began…
VoidLink Framework Enables On-Demand Tool Generation with Windows Plugin Support
A newly tracked intrusion framework called VoidLink is drawing attention for its modular design and focus on Linux systems. It behaves like an implant management…
Volvo Group hit in massive Conduent data breach
Volvo Group hit in massive Conduent data breach Pierluigi Paganini February 11, 2026 A Conduent breach exposed data of nearly 17,000 Volvo Group North America…
Why your AI doctor doesn’t follow HIPAA: The hidden risks of medical chatbots
AI apps are making their way into healthcare. It’s not clear that rigorous data security or privacy practices will be part of the package. OpenAI,…
Crazy ransomware gang abuses employee monitoring tool in attacks
A member of the Crazy ransomware gang is abusing legitimate employee monitoring software and the SimpleHelp remote support tool to maintain persistence in corporate networks,…
GTIG Analysis Highlights Escalating Espionage and Supply Chain Risks Facing Defense Sector
Modern warfare extends far beyond physical battlefields, increasingly infiltrating the digital servers and supply chains that safeguard national defense. Today, the sector faces a relentless…
Police arrest seller of JokerOTP MFA passcode capturing tool
The Netherlands Police have arrested a a 21-year-old man from Dordrecht, suspected of selling access to the JokerOTP phishing automation tool that can intercept one-time passwords (OTP)…
RU-APT-ChainReaver-L Hijacks Trusted Websites and GitHub Repos in Massive Cross-Platform Supply Chain Campaign
A sophisticated cyber threat has emerged, targeting users across multiple operating systems through compromised mirror websites and GitHub repositories. The RU-APT-ChainReaver-L campaign represents one of…
Critical SandboxJS Vulnerability Allows Remote Host Takeover
SandboxJS Vulnerability PoC Released A severe sandbox escape vulnerability has been discovered in the JavaScript library, enabling attackers to execute arbitrary code on host systems.…