The Ghostwriter APT group has resurfaced with a sophisticated social engineering campaign targeting Ukrainian government institutions. Attackers are leveraging compromised credentials and spoofed communications mimicking the legitimate “Vseosvita” learning platform to distribute malicious payloads.
A critical authentication bypass vulnerability (CVE-2026-0257) in Palo Alto Networks’ PAN-OS GlobalProtect gateway is being actively exploited in the wild. The flaw allows unauthenticated attackers to bypass authentication mechanisms and gain unauthorized access to protected networks. With a CVSS sc
CISA adds critical Cisco SD-WAN flaw to KEV catalog. CVE-2026-20182 scores perfect 10.0 on CVSS scale. Federal agencies have limited time to patch.
Microsoft Access databases with embedded VBA macros represent a significant yet underestimated security threat to enterprise environments. Unlike Word or Excel macros that face heavy scrutiny and protection mechanisms, Access databases can execute malicious VBA code with minimal security warnings, b
Researchers chain 0-click Dolby exploit with new VPU driver flaw to root Pixel 10. The VPU bug? Just 5 lines of code to read/write kernel memory. Patched Feb 2026
CISA has added seven actively exploited vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, including critical flaws in Microsoft Windows, Webmin, Fortinet FortiOS, and others. Federal agencies have until specified deadlines to patch these vulnerabilities, and private sector organi
Foxconn confirms ransomware attack on North American factories. Nitrogen gang claims 8TB of data stolen—11M+ files from top clients compromised.
AI is reshaping OSINT: automation powers modern investigations while legacy social tracking tools lose access. The game has changed for digital investigators.
CISA adds Microsoft Exchange Server XSS vulnerability to KEV Catalog amid active exploitation. Federal agencies have a deadline—but all orgs should patch now.
Critical 0-day in Palo Alto PAN-OS lets attackers execute code with root privileges on enterprise firewalls. CVE-2026-0300 actively exploited in the wild.