1+ mon, 4+ week ago  (945+ words) CISA orders feds to patch Windows flaw exploited as zero-day c Panel, WHM emergency update fixes critical auth bypass bug Hackers arrested for hijacking and selling 610, 000 Roblox accounts Official SAP npm packages compromised to steal credentials New Bluekit phishing service…...

2+ day, 20+ hour ago  (678+ words) Py PI package with 1. 1 M monthly downloads hacked to push infostealer FTC: Americans lost over $2. 1 billion to social media scams in 2025 Canada arrests three for operating "SMS blaster" device in Toronto Home security giant ADT data breach affects 5. 5 million people…...

3+ day, 1+ hour ago  (555+ words) Py PI package with 1. 1 M monthly downloads hacked to push infostealer FTC: Americans lost over $2. 1 billion to social media scams in 2025 Home security giant ADT data breach affects 5. 5 million people Microsoft asks i Phone users to reauthenticate after Outlook outage…...

1+ week, 4+ day ago  (816+ words) Data breach at edtech giant Mc Graw Hill affects 13. 5 million accounts Critical Nginx UI auth bypass flaw now actively exploited in the wild Apple account change alerts abused to send phishing emails NIST to stop rating non-priority flaws due to…...

4+ week, 1+ day ago  (559+ words) Data breach at edtech giant Mc Graw Hill affects 13. 5 million accounts New ATHR vishing platform uses AI voice agents for automated attacks Critical Nginx UI auth bypass flaw now actively exploited in the wild Payouts King ransomware uses QEMU VMs…...

3+ week, 6+ day ago  (574+ words) Google Chrome adds infostealer protection against session cookie theft New VENOM phishing attacks steal senior executives' Microsoft logins Stolen Rockstar Games analytics data leaked by extortion gang Critical flaw in wolf SSL library enables forged certificate use FBI takedown of…...

3+ week, 3+ day ago  (554+ words) Axios npm hack used fake Teams error fix to hijack maintainer account New Forti Client EMS flaw exploited in attacks, emergency patch released Device code phishing attacks surge 37x as new kits spread online Microsoft fixes Classic Outlook bug causing email…...

1+ mon, 1+ week ago  (496+ words) Trivy vulnerability scanner breach pushed infostealer via Git Hub Actions Musician admits to $10 M streaming royalty fraud using AI bots FBI links Signal phishing attacks to Russian intelligence services Microsoft Exchange Online service change causes email access issues Block ads…...

1+ mon, 2+ week ago  (517+ words) New Phantom Raven NPM attack wave steals dev data via 88 packages Shiny Hunters claims ongoing Salesforce Aura data theft attacks Poland's nuclear research centre targeted by cyberattack From VMware to what's next: Protecting data during hypervisor migration Police sinkholes 45, 000 IP…...

1+ mon, 3+ week ago  (471+ words) An international law enforcement operation coordinated by Europol has disrupted Tycoon2 FA, a major phishing-as-a-service (Phaa S) platform linked to tens of millions of phishing messages each month. In total, 330 domains part of the criminal service's backbone infrastructure (including control panels and…...