WP Maps Pro bug exploited to create admin accounts on WordPress sites
Dutch Authorities Dismantle Botnet Linked to 17 Million Infected Devices
Palo Alto GlobalProtect VPN auth bypass flaw now exploited in attacks
New CIFSwitch Linux flaw gives root on multiple distributions
PAN-OS GlobalProtect Authentication Bypass (CVE-2026-0257) Under Active Exploitation
Friday Squid Blogging: Another Squid
ChatGPT share links abused to host fake outage pages to deliver malware
California AG sues 23andMe over 2023 breach exposing health data
ChatGPhish Vulnerability Turns ChatGPT Web Summaries Into a Phishing Surface
Attackers Use LLM Agent for Post-Exploitation After Marimo CVE-2026-39987 Exploit
From $5 Attacks to Botnet-Powered Platforms: Inside the DDoS-as-a- Service Market
Dutch govt disrupts malware botnet with 17 million infected devices
Google Chrome adds session cookie theft protection for all users
New Russia-Linked GREYVIBE Targets Ukraine with AI-Powered Cyberattacks
Man sent to prison for selling data of 7 millions elderly Americans
Chilling Effects
What 2,000 Exposed Vibe-Coded Apps Reveal About the Limits of Most Security Stacks
US charges Google security engineer with Polymarket insider trading
Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets
Charter Communications data breach affects 4.9 million accounts
Kimsuky Deploys HTTPSpy, Expands Arsenal with HelloDoor and VS Code Tunnels
Anthropic confirms Claude Mythos-class models will roll out to the public
Critical Gogs RCE Vulnerability Lets Any Authenticated User Execute Arbitrary Code
Threat Actors Exploit Critical FortiClient EMS Flaw to Deploy Credential Stealer
Microsoft Slams Public Zero-Day Disclosures Amid GitHub Researcher Account Removal
ThreatsDay Bulletin: Claude Security Plugin, Azure Priv-Esc, Kali365 MFA Bypass, FIFA Scams +15 More
FBI’s 2025 Internet Crime Report
Identifying People Using Wi-Fi Routers
Netherlands Seizes 800 Servers, Arrests 2 for Aiding Cyberattacks
Friday Squid Blogging: Regulating Squid Fishing in the South Pacific
Lawmakers Demand Answers as CISA Tries to Contain Data Leak
CISA Security Leak
Alleged Kimwolf Botmaster ‘Dort’ Arrested, Charged in U.S. and Canada
macOS Kernel Memory Corruption Exploit
On AI Security
Laurie Anderson Is Quoting Me
CISA Admin Leaked AWS GovCloud Keys on Github
Zero-Day Exploit Against Windows BitLocker
Patch Tuesday, May 2026 Edition
Canvas Breach Disrupts Schools & Colleges Nationwide
Anti-DDoS Firm Heaped Attacks on Brazilian ISPs
Defending Against China-Nexus Covert Networks of Compromised Devices
‘Scattered Spider’ Member ‘Tylerb’ Pleads Guilty
Patch Tuesday, April 2026 Edition
Russia Hacked Routers to Steal Microsoft Office Tokens
Iranian-Affiliated Cyber Actors Exploit Programmable Logic Controllers Across US Critical Infrastructure
Pro-Russia Hacktivists Conduct Opportunistic Attacks Against US and Global Critical Infrastructure
CISA Shares Lessons Learned from an Incident Response Engagement
Countering Chinese State-Sponsored Actors Compromise of Networks Worldwide to Feed Global Espionage System
CISA and USCG Identify Areas for Cyber Hygiene Improvement After Conducting Proactive Threat Hunt at US Critical Infrastructure Organization
#StopRansomware: Interlock
Ransomware Actors Exploit Unpatched SimpleHelp Remote Monitoring and Management to Compromise Utility Billing Software Provider
Threat Actors Deploy LummaC2 Malware to Exfiltrate Sensitive Data from Organizations
Russian GRU Targeting Western Logistics Entities and Technology Companies