Incident Response: A Choose Your Own Adventure Exercise
When I was a kid, I loved choose your own adventure books. You made decisions and could become a powerful Sho-Gun warrior—or if you chose…
Latest Cybersecurity News — Page 48
View all →
Avada Builder WordPress plugin flaws allow site credential theft
Two vulnerabilities in the Avada Builder plugin for WordPress, with an estimated one million active installations, allow hackers to read arbitrary files and extract sensitive…
Malicious JPEG Images Could Trigger PHP Memory Safety Vulnerabilities
Two critical memory-safety vulnerabilities in PHP’s image-processing functions could allow attackers to leak sensitive heap memory or to execute denial-of-service attacks via specially crafted JPEG…
Linux “ssh-keysign-pwn” Flaw Exposing Critical Authentication Files
A newly disclosed Linux kernel vulnerability, dubbed “ssh-keysign-pwn” by Qualys researchers, exposes millions of Linux systems to unauthorized access to sensitive SSH private keys and hashed passwords…
Rocky Linux launches opt-in security repository for urgent fixes
Rocky Linux has introduced a Security Repository that allows the distribution to ship urgent security fixes ahead of upstream Enterprise Linux when public exploit code…
CISA Adds Cisco SD-WAN CVE-2026-20182 to KEV After Admin Access Exploits
Ravie LakshmananMay 15, 2026Vulnerability / Credential Theft The U.S.Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a newly disclosed vulnerability impacting Cisco Catalyst SD-WAN…
UAE Cyber Security Council and Dell launch cyber security centre to strengthen digital resilience
The UAE Cyber Security Council and Dell Technologies have launched a new chapter in national cyber resilience by establishing a Cybersecurity Centre of Excellence in…
TeamPCP Ups the Game, Releases Shai-Hulud Worm’s Source Code
The infamous TeamPCP hacking group that besieged the open source software ecosystem several times over the past half year has released the source code of…
NGINX Rift: an 18-year-old flaw in the world’s most deployed web server just came to light
NGINX Rift: an 18-year-old flaw in the world’s most deployed web server just came to light Pierluigi Paganini May 14, 2026 Researchers found a critical…
EU’s Cyber Resiliency Act will put IT leaders to the test
Although nearly everyone in SaaS alternative Cloudsmith’s recent Artifact Management Report generates SBOMs, only a quarter do that automatically rather than manually or on demand.…
Meet Andrea Colon, Restoring Peace of Mind in a Paranoid Digital World
In this edition of our “Employee Spotlight” series, I sat down with Andrea Colon, an Account Executive who sees the human side of cyber warfare…
Popular node-ipc npm package compromised to steal credentials
Hackers have injected credential-stealing malware into newly published versions of node-ipc, a popular inter-process communication package, in a new supply chain attack targeting npm. The…