17+ hour, 17+ min ago  (447+ words) A new Linux-focused cyberattack campaign linked to APT41, also known as Winnti, is targeting cloud environments with a stealthy backdoor designed to steal sensitive credentials. Security researchers discovered a previously undetected ELF malware sample actively operating across major cloud platforms, including…...

17+ hour, 40+ min ago  (387+ words) Synology has issued an urgent security update addressing two high-impact vulnerabilities in its SSL VPN Client utility. The issues detailed in the company's advisory Synology-SA-26: 05 could allow remote attackers to access sensitive system files and even intercept secure network traffic....

4+ day, 14+ hour ago  (404+ words) Cybersecurity researchers have identified five critical vulnerabilities in the TP-Link Archer AX53 v1. 0 router that could allow attackers to take full control of affected devices. These flaws pose serious risks, including unauthorized access, data theft, and disruption of network services. Routers act…...

5+ day, 18+ hour ago  (398+ words) On April 8, 2026, security researchers identified a new malware campaign from the Chinese-linked Silver Fox hacking group. The attackers are using a fake Chinese-language Telegram pack to silently infect Windows computers with a powerful backdoor known as Valley RAT. This attack…...

6+ day, 12+ hour ago  (334+ words) When a firewall or router is hacked, it rarely sets off alarms. Endpoint Detection and Response (EDR) tools do not run on these edge devices, and their native logging is often sparse. To a security team, it might just look…...

6+ day, 16+ hour ago  (408+ words) From February 6th to April 7th, 2026, the Security Alliance (SEAL) blocked 164 internet domains linked to a North Korean hacking group known as UNC1069, also tracked by the broader security community as Blue Noroff. SEAL discovered that this group is aggressively tricking people in…...

1+ week, 15+ hour ago  (346+ words) A newly discovered cyber campaign linked to Iranian hackers is actively targeting Microsoft 365 users across the Middle East. According to Check Point Research, the attackers are using a technique known as "password spraying" to breach the cloud environments of government…...

1+ week, 16+ hour ago  (423+ words) A critical security vulnerability in the Ninja Forms File Upload plugin has exposed nearly 50, 000 Word Press websites to potential remote compromise, raising serious concerns across the web security community. Tracked as CVE-2026-0740, the flaw carries a CVSS score of 9. 8, indicating…...

1+ week, 17+ hour ago  (355+ words) The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert warning organizations about a critical zero-day vulnerability in Fortinet products that is already being actively exploited in real-world attacks. The flaw, tracked as CVE-2026-35616, was officially added to…...

1+ week, 1+ day ago  (265+ words) North Korea's cyber program has evolved into a highly fragmented, modular ecosystem to resist network disruption. Rather than a sign of disorganization, this shift represents a mature strategy designed for specialized missions and operational resilience. Experts assess that the regime…...