U.S. Lawmakers Accuse Administration of Undermining Key Investigations for ICE Focus
Trusted News - Expert Analysis - Global Coverage
Emergency patches released for high-severity vulnerabilities enabling authentication bypass.
Fortinet, Ivanti, and SAP have issued urgent patches for high-severity vulnerabilities that could enable authentication bypass or remote code execution. Cybersecurity teams are urged to update systems immediately.
STAC6565 shows a sharp shift toward Canadian targets with new QWCrypt ransomware.
A Sophos investigation reveals nearly 40 intrusions linked to STAC6565, a threat cluster overlapping with the Gold Blade hacking group. The campaign shows a sharp shift toward Canadian targets and the deployment of the new QWCrypt ransomware.
New multi-stage malware campaign abuses compromised websites to deploy remote access tools.
Cybersecurity analysts have uncovered a new multi-stage malware campaign dubbed JS#SMUGGLER, which abuses compromised websites to silently deploy NetSupport RAT using obfuscated JavaScript, HTA loaders, and PowerShell stagers.
Researchers uncover vulnerabilities across major AI-powered IDEs enabling data theft.
Security researchers have uncovered more than 30 vulnerabilities across major AI-powered IDEs such as Cursor, Windsurf, Copilot, Zed, and others—issues that could allow attackers to steal sensitive data, manipulate code, or trigger full remote code execution (RCE) through weaponized prompt injections.
China-linked hackers used sophisticated malware to maintain long-term access to networks.
The US and Canadian cybersecurity agencies have warned that China-linked hackers used a sophisticated malware tool called "Brickstorm" to steal login credentials and maintain long-term access inside government and IT networks, according to a joint advisory cited by Reuters.
GitLab rolls out emergency updates fixing 10 security flaws.
GitLab has rolled out emergency updates fixing 10 security flaws — including several high-severity XSS bugs and denial-of-service vulnerabilities — urging all self-managed customers to update without delay.
