A high-severity vulnerability affects NGINX, enabling attackers-in-the-middle to inject server responses and potentially take ...

January 2026 was a wake-up month for enterprise security teams. In a single week, CERT-In released three high-severity ...

Hijacking web traffic is an old tactic for threat actors. In fact David Shipley, head of Canadian security awareness training ...

Key cyber updates on ransomware, cloud intrusions, phishing, botnets, supply-chain risks, and nation-state threat activity.

In the wake of a major communications disruption in Iran, threat researchers have observed the Infy hacking group resurfacing with ...

Critical remote code execution and database theft flaws highlight patching gaps and the hidden risk inside business ...

The news this week has struck at the very foundation of WhatsApp's existence. A massive class-action lawsuit filed in San ...

Rapid7 links China-linked Lotus Blossom to a 2025 Notepad++ hosting breach that delivered the Chrysalis backdoor via hijacked updates, fixed in v8.8.9 ...

Think about the last ten visitors to your online store. You probably picture ten people browsing on their phones or laptops.

It could cause you a lot of problems.

The investigation found that such attacks not only mock a post, but also reduces its visibility. Read more at ...

This is Part 2 of our two-part technical analysis on the Gopher Strike and Sheet Attack campaigns. For details on the Gopher Strike campaign, go to Part 1.IntroductionIn September 2025, Zscaler ...