Pax8 data leak exposes data of 1,800 MSP partners
Cloud marketplace Pax8 accidentally sent an email containing a spreadsheet exposing data of 1,800 MSP partners,…
Reprompt Attack Hijacks Microsoft Copilot Sessions for Data Theft
Researchers discover a “Reprompt” attack enabling hackers to infiltrate Microsoft Copilot sessions and exfiltrate sensitive data…
ConsentFix Debrief: New Insights on the OAuth Phishing Attack
Push Security analyzes ConsentFix, an OAuth phishing attack hijacking Microsoft accounts, sharing new insights and recommendations…
Microsoft Updates Windows DLL After False Security Alerts
Microsoft addressed a known issue where security apps incorrectly flagged WinSqlite3.dll. Update resolves false CVE-2025-6965 detections…
Chrome and Firefox Patch High-Severity Vulnerabilities
Google Chrome and Mozilla Firefox have released updates to address high-severity vulnerabilities. Users are advised to…
Predator Spyware’s Anti-Analysis Features Exposed
Analysis of Predator spyware reveals granular anti-analysis techniques used to evade detection. Learn about the methods…
CISA Flags Microsoft Office and HPE OneView Bugs as Actively Exploited
CISA adds two vulnerabilities affecting Microsoft Office and HPE OneView to its KEV list, urging agencies…
[Webinar] Securing Agentic AI: From MCPs and Tool Access to Shadow API Key Sprawl
Learn how to secure agentic AI workflows, MCPs, and API key sprawl in a live webinar.…
PLUGGYAPE Malware Targets Ukrainian Defense Forces via Signal and WhatsApp
CERT-UA reports PLUGGYAPE malware attacks targeting Ukrainian defense forces via Signal and WhatsApp using phishing links…
Critical Node.js Vulnerability Causes Server Crashes via async_hooks
Node.js fixes critical DoS flaw (CVE-2025-59466) from async_hooks stack overflow, impacting production apps. Update now!
Latest Posts
- Drones to Diplomas: Russia’s University Linked to $25M Essay Mill
- The Kimwolf Botnet is Stalking Your Local Network
- Who Benefited from the Aisuru and Kimwolf Botnets?
- Windows 11 PCs may fail to shut down after January update: Microsoft confirms
- Cisco Patches AsyncOS Zero-Day Exploited Since November 2025
