Critical SandboxJS Vulnerability Allows Remote Host Takeover
SandboxJS Vulnerability PoC Released A severe sandbox escape vulnerability has been discovered in the JavaScript library, enabling attackers to execute arbitrary code on host systems.…
Latest Cybersecurity News — Page 354
View all →
Proactive strategies for cyber resilience with Wazuh
Cyber resilience involves the ability to anticipate threats, withstand active attacks, respond quickly to incidents, and recover operations with minimal disruption. Modern cyber threats continue…
Massive Spike in Attacks Exploiting Ivanti EPMM Systems 0-day Vulnerability
Ivanti EPMM 0-day Vulnerability Exploited An unprecedented surge in exploitation attempts targeting CVE-2026-1281, a critical vulnerability in Ivanti Endpoint Manager Mobile (EPMM). On February 9,…
London Assembly member: Police should halt facial-recognition technology use
The Metropolitan Police’s rapid “unchecked” expansion of live facial-recognition (LFR) technology is taking place without clear legal authority and minimal public accountability, says Green London…
Extortion attacks on the rise as hackers prioritize supply-chain weaknesses
Listen to the article 4 min This audio is auto-generated. Please let us know if you have feedback. Dive Brief: Ransomware actors extorted consumer and…
LummaStealer infections surge after CastleLoader malware campaigns
A surge in LummaStealer infections has been observed, driven by social engineering campaigns leveraging the ClickFix technique to deliver the CastleLoader malware. LummaStealer, also known as LummaC2, is…
Prometei Botnet Attacking Windows Server to Gain Remote Access and Deploy Malware
Prometei Botnet Attacking Windows Server A sophisticated attack is targeting Windows Server systems using Prometei, a Russian-linked botnet that has been active since 2016. This…
CBP Signs Clearview AI Deal to Use Face Recognition for ‘Tactical Targeting’
United States Customs and Border Protection plans to spend $225,000 for a year of access to Clearview AI, a face recognition tool that compares photos…
APT36 and SideCopy Launch Cross-Platform RAT Campaigns Against Indian Entities
Ravie LakshmananFeb 11, 2026Cyber Espionage / Threat Intelligence Indian defense sector and government-aligned organizations have been targeted by multiple campaigns that are designed to compromise…
UK government datacentre planning decisions queried over environmental oversight admission
Permission for the development, dubbed the West London Technology Park (WLTP) by its developers Greystoke, was granted by the government in early July 2025. This…
Majority of Ivanti EPMM threat activity linked to hidden IP
More than 80% of exploitation activity targeting critical vulnerabilities in Ivanti Endpoint Manager Mobile were traced to a single IP address hiding behind a bulletproof…
Threat Actors Weaponize ChatGPT, Grok and Leverages Google Ads to Distribute macOS AMOS Stealer
Cybercriminals have developed a sophisticated attack campaign that exploits user trust in artificial intelligence platforms to distribute the Atomic macOS Stealer (AMOS), marking a dangerous…