A sophisticated cyberattack targeting DigiCert has exposed a critical weakness in code signing trust chains, where … DigiCert Breach Exposes Stolen Code Signing CertificatesRead more
Latest News
Apache HTTP Server RCE Vulnerability: Critical Patch Required
A newly disclosed Apache HTTP Server RCE vulnerability is putting millions of web servers at risk. … Apache HTTP Server RCE Vulnerability: Critical Patch RequiredRead more
Microsoft Edge Passwords Exposed in Cleartext Memory at Launch
A security researcher has reported that Microsoft Edge decrypts every saved password into cleartext process memory … Microsoft Edge Passwords Exposed in Cleartext Memory at LaunchRead more
pnpm 11 Turns On Minimum Release Age by Default to Reduce npm Supply Chain Risk
The npm ecosystem has become one of the most targeted environments for supply chain attacks, where … pnpm 11 Turns On Minimum Release Age by Default to Reduce npm Supply Chain RiskRead more
Android Zero-Click Vulnerability Enables Remote Shell Access
A newly disclosed Android zero-click vulnerability is raising serious concerns across the cybersecurity community. Identified as … Android Zero-Click Vulnerability Enables Remote Shell AccessRead more
Fake Notepad++ for Mac Website: A Growing Malware Threat
A seemingly harmless search for a trusted code editor on macOS has turned into a serious … Fake Notepad++ for Mac Website: A Growing Malware ThreatRead more
Instagram Ends Encrypted Chats: What It Means for Security and Privacy
Meta’s decision to discontinue Instagram’s end-to-end encrypted (E2EE) direct messages by May 8, 2026 marks a … Instagram Ends Encrypted Chats: What It Means for Security and PrivacyRead more
WhatsApp Vulnerability Exploiting Instagram Reels: A New Attack Vector
With over 2 billion users worldwide, WhatsApp remains one of the most targeted messaging platforms for … WhatsApp Vulnerability Exploiting Instagram Reels: A New Attack VectorRead more
Campaign-Based APT Attribution Framework: Track Evolving Threats
Your SOC flags a familiar intrusion pattern—then it disappears. New malware. New infrastructure. Different operator behavior. … Campaign-Based APT Attribution Framework: Track Evolving ThreatsRead more
Worm Alert: SAP npm Packages Weaponized to Steal Cloud and AI Secrets
A sophisticated supply chain attack has targeted the SAP developer ecosystem, hijacking official npm packages to … Worm Alert: SAP npm Packages Weaponized to Steal Cloud and AI SecretsRead more