-
Critical Marimo pre-auth RCE flaw now under active exploitation
Security researchers have identified active exploitation of a critical vulnerability in Marimo, an open-source reactive Python notebook environment widely used by data scientists, machine learning engineers, and developers building data-driven applications. The vulnerability, tracked as CVE-2026-39987, enables unauthenticated remote code…
-
CERT-EU: European Commission hack exposes data of 30 EU entities
The European Union’s Cybersecurity Service, CERT-EU, has confirmed that a cyberattack against the European Commission compromised cloud infrastructure and exposed data belonging to dozens of EU organizations. According to CERT-EU’s investigation, the intrusion has been attributed to the TeamPCP threat…
-
Inside a Modern Fraud Attack: From Bot Signups to Account Takeovers
Modern fraud operations increasingly resemble a coordinated, multi-stage pipeline rather than a single isolated event. Cybercriminals combine automation, social engineering, malware, and stolen credentials to move victims from initial account creation to financial exploitation. This layered approach allows attackers to…
-
FBI links Signal phishing attacks to Russian intelligence services
The Federal Bureau of Investigation (FBI) has issued a public service announcement warning of large-scale phishing campaigns targeting users of encrypted messaging platforms such as Signal and WhatsApp. For the first time, these operations have been formally attributed to Russian…
-
FBI seeks victims of Steam games used to spread malware
The Federal Bureau of Investigation (FBI) is actively seeking victims who installed Steam games embedded with malware as part of an ongoing cybercrime investigation. According to a notice from the FBI’s Seattle Division, the malicious activity is believed to have…
-
Hackers abuse .arpa DNS and ipv6 to evade phishing defenses
Threat actors are increasingly exploiting infrastructure-level DNS features to evade modern phishing detection systems. A recent campaign demonstrates how attackers are abusing reverse DNS zones under the .arpa domain together with IPv6 addressing to generate phishing URLs that bypass traditional…
-
Android gets patches for Qualcomm zero-day exploited in attacks
Google has released its latest Android security updates addressing 129 vulnerabilities, including a zero-day flaw affecting Qualcomm graphics components that is reportedly being exploited in targeted attacks. The March Android Security Bulletin highlights the ongoing importance of timely mobile patch…
-
QuickLens Chrome extension steals crypto, shows ClickFix attack
A compromised Google Chrome extension named “QuickLens – Search Screen with Google Lens” has been removed from the Chrome Web Store after it was weaponized to deliver malware, conduct cryptocurrency theft, and execute ClickFix-style social engineering attacks against thousands of…
-
CISA: Recently patched RoundCube flaws now exploited in attacks
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two recently patched Roundcube Webmail vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, confirming that both flaws are being actively exploited in the wild. Federal agencies have been ordered to…
Must-Read Posts
- ‘PlushDaemon’ hackers hijack software updates in supply-chain attacks
- Adidas warns of data breach after customer service provider hack
- AI Cuts vCISO Workload by 68% as Demand Skyrockets, New Report Finds
- AI in Cybersecurity: Revolutionizing Defense Against Emerging Threats
- Android gets patches for Qualcomm zero-day exploited in attacks
