Cisco SD-WAN Zero-Day Exploited In Active Attacks
Cisco SD-WAN controllers under active zero-day attack. Critical auth bypass flaw lets attackers grab admin access. Patch immediately if you’re running affected versions.
Read More
YellowKey Zero-Day Bypasses Windows 11 BitLocker
New zero-day exploit “YellowKey” bypasses Windows 11 BitLocker encryption. Physical access required but defeats TPM protection completely.
JDownloader Installer Downloads Replaced With Malware
JDownloader’s website was hacked and installer downloads were replaced with malware for days. Millions of users potentially at risk from this supply chain attack.
ICE Deploys $25M Biometric Iris Scanner System
U.S. Immigration and Customs Enforcement (ICE) has awarded a $25 million contract for advanced biometric iris scanning technology to expand surveillance capabilities across detention facilities and border operations. This deployment raises significant cybersecurity concerns around biometric data pro
0-Click Exploit Chain Roots Google Pixel 10 Via VPU Flaw
Researchers chain 0-click Dolby exploit with new VPU driver flaw to root Pixel 10. The VPU bug? Just 5 lines of code to read/write kernel memory. Patched Feb 2026
Microsoft Named Leader In Gartner Endpoint Protection
Microsoft has been recognized as a Leader in the 2026 Gartner Magic Quadrant for Endpoint Protection Platforms, reinforcing its position in the enterprise security market. The recognition highlights Microsoft Defender for Endpoint’s comprehensive threat protection capabilities, integration ecosystem
Europol Busts Ransomware VPN, Administrator Arrested
Europol and international partners dismantled First VPN, a service widely used by ransomware gangs, seizing 33 servers and arresting its alleged administrator. The operation, codenamed Saffron, also exposed thousands of users whose data is now in the hands of investigators across 16 countries.
Mini Shai-Hulud Malware Hits npm Packages In CI/CD Attack
A sophisticated supply chain attack compromised multiple @antv npm packages with Mini Shai-Hulud malware, specifically designed to steal CI/CD credentials from automated build systems. The malicious code targets environment variables containing sensitive tokens during package installation, affecting
Cisco SD-WAN Auth Bypass Exploited in Live Attacks
CRITICAL: Cisco Catalyst SD-WAN flaw with perfect 10.0 severity score exploited in the wild. Attackers gaining admin access through auth bypass. Patch now.
Jailbroken Gemini AI Used To Empty Crypto Wallets
A Russian-speaking threat actor successfully jailbroke Google’s Gemini AI to conduct sophisticated social engineering attacks that resulted in cryptocurrency wallet theft. The attacker leveraged the compromised AI to craft convincing phishing communications, targeting at least one victim with politi