All Recent Posts

Help Net Security

Week in review: Fully patched FortiGate firewalls are getting compromised, attackers probe Cisco RCE flaw

January 25, 2026 add comment
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Review: AI Strategy and Security AI Strategy and Security is a guide for organizations... Read more »
The Hacker News

Cisco Fixes Actively Exploited Zero-Day CVE-2026-20045 in Unified CM and Webex

January 25, 2026 add comment
Cisco has released fresh patches to address what it described as a “critical” security vulnerability impacting multiple Unified Communications (CM) products and Webex Calling Dedicated Instance that it has... Read more »
Internet Security

Security Affairs newsletter Round 560 by Pierluigi Paganini – INTERNATIONAL EDITION

January 25, 2026 add comment
A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new... Read more »
Internet Security

Osiris ransomware emerges, leveraging BYOVD technique to kill security tools

January 24, 2026 add comment
Researchers identified a new Osiris ransomware used in a November 2025 attack, abusing the POORTRY driver via BYOVD to disable security tools. Symantec and Carbon Black researchers uncovered a... Read more »
Internet Security

U.S. CISA adds a flaw in Broadcom VMware vCenter Server to its Known Exploited Vulnerabilities catalog

January 24, 2026 add comment
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a flaw impacting Broadcom VMware vCenter to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a... Read more »

CrashFix Chrome Extension Delivers ModeloRAT Using ClickFix-Style Browser Crash Lures

January 24, 2026 add comment
Cybersecurity researchers have disclosed details of an ongoing campaign dubbed KongTuke that used a malicious Google Chrome extension masquerading as an ad blocker to deliberately crash the web browser... Read more »
Internet Security

11-Year-Old critical telnetd flaw found in GNU InetUtils (CVE-2026-24061)

January 24, 2026 add comment
Critical telnetd flaw CVE-2026-24061 (CVSS 9.8) affects all GNU InetUtils versions 1.9.3–2.7 and went unnoticed for nearly 11 years. A critical vulnerability, tracked as CVE-2026-24061 (CVSS score of 9.8),... Read more »

Zoom and GitLab Release Security Updates Fixing RCE, DoS, and 2FA Bypass Flaws

January 23, 2026 add comment
Zoom and GitLab have released security updates to resolve a number of security vulnerabilities that could result in denial-of-service (DoS) and remote code execution. The most severe of the... Read more »
Security of TechRepublic

Data Leak Exposes 149M Logins, Including Gmail, Facebook

January 23, 2026 add comment
A massive unsecured database exposed 149 million logins, raising concerns over infostealer malware and credential theft. The post Data Leak Exposes 149M Logins, Including Gmail, Facebook appeared first on... Read more »
Internet Security

Fortinet warns of active FortiCloud SSO bypass affecting updated devices

January 23, 2026 add comment
Fortinet confirmed attacks are bypassing FortiCloud SSO authentication, affecting even fully patched devices, similar to recent SSO flaws. Fortinet confirmed attacks bypass FortiCloud SSO on fully patched devices. Threat... Read more »
Subscribe to our Newsletter