News
Ubuntu CVE-2026-3888 Lets Local Users Gain Root via systemd Timing
A newly disclosed high severity flaw affects default installs of Ubuntu Desktop 24.04 and later. Qualys Threat Research Unit found...
Category: News
News
Apple Patches WebKit Same Origin Bypass on iOS and macOS
Apple on Tuesday pushed a targeted security fix for WebKit. Apple said the update arrives as the first public use...
News
Critical Telnetd Flaw CVE-2026-32746 Enables Unauthenticated Root RCE
Security researchers disclosed a critical bug in the GNU InetUtils telnet daemon. The flaw could let an unauthenticated attacker run...
News
Critical AI Vulnerabilities in Amazon Bedrock, LangSmith and SGLang Enable Data Exfiltration and RCE
Cybersecurity firms warn that multiple AI tooling flaws could let attackers steal data and run code remotely. BeyondTrust researchers found...
Cyber Attack
LeakNet Uses ClickFix Lure and Deno In-Memory Loader
ReliaQuest said a ransomware group known as LeakNet is now using a social engineering tactic called ClickFix delivered from compromised...
News
Only 6% Have an AI Security Strategy as AI Adoption Hits 79%, New Research Finds
Let me be honest with you. When I first read the Sandbox AQ AI Security Benchmark report, I had to...
Cyber Attack
Konni Uses KakaoTalk and Phishing to Spread EndRAT
South Korean security firm Genians reported that North Korea-linked threat actors known as Konni used spear-phishing to install a remote...
News
CISA Flags CVE-2025-47813 Path Leak in Wing FTP Server
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a medium-severity vulnerability in Wing FTP Server to its Known Exploited...
Cyber Attack
GlassWorm ForceMemo Uses Stolen GitHub Tokens to Inject Malware
Security researchers say a new offshoot of the GlassWorm campaign, dubbed ForceMemo, is using stolen GitHub tokens to inject obfuscated...
Cyber Attack
Chrome Zero-Days, Router Botnets and AWS Supply-Chain Breach
This week’s cyber headlines span browser zero-days, large router botnets, a fast cloud takeover after a supply-chain compromise, and a...