A Sneak Peek at hack_it 2022
We’re super excited to announce that hack_it is back! hack_it teaches hacker tradecraft and helps us defenders see cybersecurity from a different perspective. This year’s…
Latest Cybersecurity News — Page 43
View all →
Tycoon2FA hijacks Microsoft 365 accounts via device-code phishing
The Tycoon2FA phishing kit now supports device-code phishing attacks and abuses Trustifi click-tracking URLs to hijack Microsoft 365 accounts. Despite an international law enforcement operation…
Grafana Says It Rejected Ransom Demand After Source Code Theft
Grafana Labs says an attacker gained access to part of its GitHub environment after obtaining a compromised token, allowing the threat actor to download the…
NGINX CVE-2026-42945 Exploited in the Wild, Causing Worker Crashes and Possible RCE
Ravie LakshmananMay 17, 2026Server Security / Vulnerability A newly disclosed security flaw impacting NGINX Plus and NGINX Open has come under active exploitation in the…
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 97
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 97 Pierluigi Paganini May 17, 2026 Security Affairs Malware newsletter includes a collection of the best articles and research on…
ConnectWise/R1Soft RCE & Supply Chain Risks
UPDATE 2/27/23: As recently spotted by Fox-IT and subsequently reported in SecurityWeek, a critical vulnerability discovered last year in ConnectWise’s R1Soft Server Backup Manager software…
Windows 11 and Microsoft Edge hacked at Pwn2Own Berlin 2026
On the first day of Pwn2Own Berlin 2026, security researchers collected $523,000 in cash awards after exploiting 24 unique zero-days. Today’s highlight was the attempt of Cheng-Da…
Android 16 VPN Bypass Lets Malicious Apps Reveal Users Real IP Address
A newly disclosed flaw in Android 16 is raising serious privacy concerns after researchers revealed that malicious apps can bypass VPN protections and expose a…
Why Is Cybersecurity Now A Business Priority, Not Just An IT Function?
Cybersecurity is becoming more than just a technology issue; it is now an essential part of doing business. As more and more organizations depend on…
Scammers Send Physical Phishing Letters to Steal Ledger Wallet Seed Phrases
Crypto wallet owners using Ledger hardware wallets are being targeted through physical mail, with scammers impersonating the company in a campaign designed to steal recovery…
Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt
Ravie LakshmananMay 17, 2026Data Breach / Cybercrime Grafana has disclosed that an “unauthorized party” obtained a token that granted them the ability to access the…
macOS Support Is Here! | Huntress
As you may have noticed, macOS malware is still very much a thing these days. We covered some of the malware variants that were seen…