News
CrackArmor: Nine AppArmor Flaws Enable Local Root Escalation
Qualys Threat Research Unit (TRU) has disclosed nine security vulnerabilities in the Linux kernel AppArmor module that can let unprivileged...
Category: News
News
Google Patches Two Chrome Zero-Days; GTIG Warns of Intellexa Exploits
Google on Thursday pushed security updates for Chrome to fix two high-severity vulnerabilities that the company said are being exploited...
Cyber Attack
International Takedown Disrupts SocksEscort Proxy Botnet Using 369,000 IPs
Law enforcement agencies in the United States and Europe announced a coordinated disruption of SocksEscort, a criminal proxy service that...
News
Veeam Patches Seven Critical Backup Flaws Allowing Remote Code Execution
Veeam has released security updates to fix seven critical vulnerabilities in its Backup & Replication software that Veeam said could...
News
CISOs Must Scale Phishing Detection With Interactive Sandboxes
Phishing is no longer obvious bait. Modern campaigns hide behind legitimate services, encrypted traffic, and polished messages, and they move...
Cyber Attack
Hive0163 Uses AI-Generated Slo Poly Backdoor for Persistent Access
Hive0163, a financially motivated ransomware group, deployed an AI-assisted backdoor called Slo Poly to maintain persistent access on a compromised...
Cyber Attack
Rust Based Venon Malware Targets 33 Brazilian Banks
Brazilian cybersecurity firm Zenox reported a new Rust-based banking malware named Venon that targets users of 33 financial institutions and...
Cyber Attack
Stryker Hit by Global Wiper Attack, Intune Admin Account Abused
Stryker, the medical device maker, was hit by a large destructive cyberattack that knocked its global Windows systems offline. KrebsOnSecurity...
Artificial Intelligence
Researchers Train AI Browser Into Phishing Trap in Minutes
Security teams have shown that agentic AI web browsers can be tricked into carrying out phishing scams by targeting the...
News
Critical n8n Flaws Let Attackers Run Code and Steal Stored Secrets
Cybersecurity teams have disclosed multiple critical vulnerabilities in the n8n workflow automation platform that could allow attackers to run commands...