Internet Security

CVE-2026-42208: LiteLLM bug exploited 36 hours after its disclosure

April 29, 2026 add comment
Attackers quickly exploited a critical LiteLLM flaw (CVE-2026-42208) to access and modify sensitive database data via SQL injection. Attackers rapidly exploited a critical vulnerability in LiteLLM Python package, tracked as... Read more »

Internet censorship index reveals Russia’s lead and widespread content blocking

April 29, 2026 add comment
Global study shows targeted internet censorship worldwide, with Russia leading; VPNs, news, and adult content are most frequently blocked categories. The Global Internet Censorship Index 2026 offers a clear... Read more »

All supported cPanel versions hit by critical auth bug, now patched

April 29, 2026 add comment
cPanel fixed a critical authentication flaw that could let attackers access servers. The issue affects all supported versions. cPanel released security updates to address a critical authentication vulnerability that... Read more »

ShinyHunters exploit Anodot incident to target Vimeo

April 29, 2026 add comment
The video platform Vimeo confirmed a security breach via Anodot that exposed metadata, video titles, and some user emails. Vimeo said some user data was accessed after a breach... Read more »

U.S. CISA adds Microsoft Windows Shell and ConnectWise ScreenConnect flaws to its Known Exploited Vulnerabilities catalog

April 29, 2026 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Windows Shell and ConnectWise ScreenConnect flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Windows... Read more »

CVE-2026-3854 GitHub flaw enables remote code execution

April 28, 2026 add comment
Critical GitHub flaw CVE-2026-3854 lets attackers run code with a single git push, exploiting a command injection bug. Researchers found a critical vulnerability in GitHub, tracked as CVE-2026-3854, that... Read more »

Signal Phishing Campaign Targets German Officials in Suspected Russian Operation

April 28, 2026 add comment
Suspected Russian phishing via Signal targeted German officials, exploiting trust to access accounts and sensitive political communications. A new wave of cyber operations targeting European political leadership is once... Read more »

Microsoft fixes Entra ID flaw enabling privilege escalation

April 28, 2026 add comment
Microsoft fixed a Microsoft Entra ID flaw where the Agent ID Administrator role could enable privilege escalation and account takeover. Microsoft addressed a flaw in Microsoft Entra ID that... Read more »

New Android spyware Morpheus linked to Italian surveillance firm

April 28, 2026 add comment
Osservatorio Nessuno uncovered Morpheus spyware spreading via fake Android apps to steal data, highlighting rising covert surveillance tools. The non-partisan, non-religious, nonprofit organization Osservatorio Nessuno exposed a new spyware... Read more »

NCSC launches SilentGlass, a plug-in device to secure HDMI and DisplayPort links

April 28, 2026 add comment
NCSC’s SilentGlass blocks malicious HDMI/DisplayPort links, protecting monitors from hardware attacks. Now commercialized for global use. The UK’s National Cyber Security Centre (NCSC) has launched SilentGlass, a new device... Read more »
Subscribe to our Newsletter