ASD and Five-Eyes spy agencies alert on exploited Cisco SD-WAN zero-day
Attackers are exploiting a serious vulnerability in Cisco Catalyst software defined wide area network (SD-WAN) devices that enable them to bypass authentication. On top of…
Latest Cybersecurity News — Page 378
View all →
Governments issue warning over Cisco zero-day attacks dating back to 2023
Attackers have been exploiting a pair of zero-day vulnerabilities in Cisco’s network edge software for at least three years, and the global campaign is ongoing,…
Medical device maker UFP Technologies warns of data stolen in cyberattack
American manufacturer of medical devices, UFP Technologies, has disclosed that a cybersecurity incident has compromised its IT systems and data. UFP Technologies is a publicly traded…
Untrusted repositories turn Claude code into an attack vector
Untrusted repositories turn Claude code into an attack vector Pierluigi Paganini February 25, 2026 Flaws in Anthropic’s Claude Code could allow remote code execution and…
Fake Next.js job interview tests backdoor developer’s devices
A coordinated campaign targeting software developers with job-themed lures is using malicious repositories posing as legitimate Next.js projects and technical assessment materials, including recruiting coding tests.…
Critical Zyxel router flaw exposed devices to remote attacks
Critical Zyxel router flaw exposed devices to remote attacks Pierluigi Paganini February 25, 2026 Zyxel fixed a critical flaw in multiple routers that lets unauthenticated…
Google disrupts hackers that attacked 53 organisations globally
Google disrupted a Chinese-linked hacking group that breached at least 53 organisations across 42 countries, the company said Wednesday. The hacking group, tracked as UNC2814…
Hackers Can Abuse Cortex XDR Live Terminal Feature for C2 Communications
A newly disclosed research finding has revealed that Palo Alto Networks’ Cortex XDR Live Terminal feature can be turned into a command-and-control (C2) channel by…
Why Intelligent Contract Solutions Are Replacing Traditional CLM Systems
For a long time, contract lifecycle management software was the default answer to the question of how organizations should manage their agreements. Contract Lifecycle Management…
Australia’s big end of town is paying ransomware groups
At least 75 Australian businesses with a turnover of more than $3 million have admitted paying off ransomware groups in the first eight months of…
Threat Actors Using Fake Avast Website to Harvest Users Credit Card Details
Cybercriminals are frequently refining their techniques to exploit consumer trust, and a highly sophisticated phishing campaign has recently surfaced that impersonates the cybersecurity firm Avast.…
US Sanctions Russian Exploit Broker Over Stolen US Cyber Tools
The United States government has launched a crackdown on a global network accused of stealing and selling sensitive cyber tools used for national security. In…