RedHook Android Malware Uses Wireless ADB to Control Infected Devices

384/69 Tuesday, July 14, 2026 Security researchers have disclosed that a new version of the RedHook Android malware uses Wireless Android Debug Bridge (ADB) to access the Android shell on infected devices without requiring a connection to a computer or root privileges. After tricking users into granting Accessibility permissions, this technique allows the malware to […]

chanapon

July 14, 2026

Dutch Police Find Leads Linked to Odido Hack Affecting More Than 6 Million Customers

383/69 Tuesday, July 14, 2026 Dutch police have disclosed progress in the investigation into the cyberattack against Odido, one of the country’s major telecommunications providers, which occurred in February 2026. Investigators found indications that the perpetrators may be Dutch nationals or may have connections inside the Netherlands. The incident resulted in the theft of data […]

chanapon

July 14, 2026

Warning: Global Campaign Targets Vulnerable Content Management Systems (CMS) to Deploy Web Shells and Compromise Systems

382/69 Tuesday, July 14, 2026 The Australian Cyber Security Centre (ACSC) has issued an advisory warning of a global cyberattack campaign targeting vulnerabilities in content management systems (CMS) and various plugins. Several organizations and businesses have already been affected by this campaign. This threat is significant and should be closely monitored, as attackers are focusing […]

chanapon

July 14, 2026

CISA Adds Actively Exploited iCagenda and Balbooa Forms Vulnerabilities to KEV Catalog

381/69 Monday, July 13, 2026 CISA has added two vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog after finding evidence that they have been actively exploited in attacks. The vulnerabilities are CVE-2026-48939 in iCagenda and CVE-2026-56291 in Balbooa Forms, both of which are Joomla extensions and could allow attackers to upload malicious files to affected […]

chanapon

July 13, 2026

Zimbra Warns of XSS Vulnerability in Classic Web Client That Could Allow Malicious Code Execution via Email

380/69 Monday, July 13, 2026 Zimbra has issued an advisory urging users to update its software to fix a serious vulnerability affecting the Classic Web Client. The vulnerability is a Stored Cross-Site Scripting (Stored XSS) flaw that could allow attackers to send specially crafted emails to execute malicious scripts in a user’s session when the […]

chanapon

July 13, 2026

GigaWiper, a New Windows Backdoor, Combines Data-Wiping and Ransomware Capabilities

379/69 Monday, July 13, 2026 Microsoft security researchers have reported the discovery of a new Windows backdoor malware family called GigaWiper, developed in Golang. The developers combined code from at least three malware families into a modular tool with multiple capabilities. The malware not only functions as a backdoor that allows attackers to covertly control […]

chanapon

July 13, 2026

Google Releases Chrome 150 Update to Fix 27 Vulnerabilities, Including Critical Flaws

378/69 Friday, July 10, 2026 Google has released a security update for Chrome 150 to address 27 vulnerabilities, including two Critical-severity flaws. The two Critical vulnerabilities are CVE-2026-15112, a Use-after-free vulnerability in the Ozone component, and CVE-2026-15129, a Use-after-free vulnerability in the Views component. Both vulnerabilities were discovered by Google’s internal team. Reports indicate that […]

chanapon

July 10, 2026

Mount Royal University Confirms Data Breach After Hackers Claim Attack and Demand Ransom

377/69 Friday, July 10, 2026 Mount Royal University (MRU), a public university in Calgary, Canada, has disclosed a cyberattack that occurred on June 17, 2026, affecting several university systems, including online services, internet access, and some internal systems. The university stated that it engaged external technical teams and cybersecurity experts to assist with the investigation […]

chanapon

July 10, 2026

Lone Hacker Uses AI to Successfully Breach AWS Cloud Environment Within 72 Hours

376/69 Friday, July 10, 2026 Reports have revealed a case in which a lone cyber attacker used artificial intelligence (AI) to successfully compromise the Amazon Web Services (AWS) cloud environment of a global organization, leading to an extortion attempt. This incident is significant because the attacker was able to breach the system and expand the […]

chanapon

July 10, 2026

CISA Adds Four Actively Exploited Vulnerabilities in Adobe ColdFusion, Joomla, and Langflow to KEV Catalog

375/69 Thursday, July 9, 2026 CISA has added four vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog after finding evidence that they have been actively exploited in attacks. The newly added vulnerabilities include CVE-2026-48282 in Adobe ColdFusion, CVE-2026-56290 in Joomlack Page Builder, CVE-2026-48908 in JoomShaper SP Page Builder, and CVE-2026-55255 in Langflow. Most of these […]

chanapon

July 9, 2026
1 2 102