Internet Security

ShinyHunters exploit Anodot incident to target Vimeo

April 29, 2026 add comment
The video platform Vimeo confirmed a security breach via Anodot that exposed metadata, video titles, and some user emails. Vimeo said some user data was accessed after a breach... Read more »

U.S. CISA adds Microsoft Windows Shell and ConnectWise ScreenConnect flaws to its Known Exploited Vulnerabilities catalog

April 29, 2026 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Windows Shell and ConnectWise ScreenConnect flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Windows... Read more »

CVE-2026-3854 GitHub flaw enables remote code execution

April 28, 2026 add comment
Critical GitHub flaw CVE-2026-3854 lets attackers run code with a single git push, exploiting a command injection bug. Researchers found a critical vulnerability in GitHub, tracked as CVE-2026-3854, that... Read more »

Signal Phishing Campaign Targets German Officials in Suspected Russian Operation

April 28, 2026 add comment
Suspected Russian phishing via Signal targeted German officials, exploiting trust to access accounts and sensitive political communications. A new wave of cyber operations targeting European political leadership is once... Read more »

Microsoft fixes Entra ID flaw enabling privilege escalation

April 28, 2026 add comment
Microsoft fixed a Microsoft Entra ID flaw where the Agent ID Administrator role could enable privilege escalation and account takeover. Microsoft addressed a flaw in Microsoft Entra ID that... Read more »

New Android spyware Morpheus linked to Italian surveillance firm

April 28, 2026 add comment
Osservatorio Nessuno uncovered Morpheus spyware spreading via fake Android apps to steal data, highlighting rising covert surveillance tools. The non-partisan, non-religious, nonprofit organization Osservatorio Nessuno exposed a new spyware... Read more »

NCSC launches SilentGlass, a plug-in device to secure HDMI and DisplayPort links

April 28, 2026 add comment
NCSC’s SilentGlass blocks malicious HDMI/DisplayPort links, protecting monitors from hardware attacks. Now commercialized for global use. The UK’s National Cyber Security Centre (NCSC) has launched SilentGlass, a new device... Read more »

Medtronic discloses security incident after ShinyHunters claimed theft of 9M+ records

April 27, 2026 add comment
Medtronic confirmed a breach of its IT systems after ShinyHunters claimed the theft of over 9 million records. Medtronic confirmed a cyberattack on its corporate IT systems after the... Read more »

LINKEDIN BROWSERGATE

April 27, 2026 add comment
BrowserGate claims LinkedIn secretly fingerprints users via extensions and device data, sending encrypted results to third parties for tracking. BrowserGate is an investigation conducted by Fairlinked (https://browsergate.eu/), an association... Read more »

Chinese spy posed as researcher in spear-phishing campaign targeting NASA to steal defense software

April 27, 2026 add comment
A Chinese national posed as a U.S. researcher, tricking NASA staff in a phishing campaign to steal sensitive data tied to defense software and exports. A Chinese national ran... Read more »
Subscribe to our Newsletter