Businesses that downloaded Zoom from unofficial sources earlier this year may have inadvertently exposed their devices to malware associated with the Iranian hacking group, Nimbus Manticore. Check Point Research (CPR) has recently highlighted a series of cyberattacks orchestrated by Nimbus…
Anthropic has recently come forward regarding an unintentional disclosure of internal code from its AI coding assistant, Claude Code, attributed to human error. This incident did not expose sensitive customer information or credentials, as confirmed by an Anthropic spokesperson in…
Security Vulnerability Exposed in Zoom Video Conferencing Software on macOS A critical security vulnerability affecting Zoom’s video conferencing software has come to light, raising significant privacy concerns for users operating on Mac computers. Reports indicate that any website accessed through…
In a recent development in cybersecurity, researchers have unveiled a novel attack method known as FROST, which exploits the isolation of file systems within browsers to infer user activity. This technique hinges on monitoring the Input/Output (I/O) interactions of Solid…
Recently, the Computer Emergency Response Team of Ukraine (CERT-UA) revealed a significant phishing campaign that involved attackers impersonating the agency itself. The campaign, which deployed a remote administration tool named AGEWHEEZE, was executed through fake email communications sent on March…
A significant security vulnerability has surfaced in Lodash, a widely utilized JavaScript library employed in over four million projects on GitHub alone. This issue poses a high risk, allowing attackers to potentially jeopardize the services leveraging this library and impact…
Large-Scale Credential Harvesting Operation Targets Vulnerable Next.js Applications A significant credential harvesting operation has been detected exploiting the React2Shell vulnerability, marking a serious threat to numerous organizations. This operation aims to steal sensitive information, including database credentials, SSH private keys,…
On July 9, Microsoft released its monthly security updates, addressing a total of 77 vulnerabilities across various software products. Among these, 14 are classified as Critical, 62 as Important, and one as Moderate, underscoring the urgent need for organizations to…
On April 1, 2026, the decentralized exchange Drift, built on the Solana blockchain, was significantly compromised, resulting in an estimated loss of $285 million. The breach was the result of a highly sophisticated attack that allowed unauthorized access to the…
Recent revelations from cybersecurity experts have cast a spotlight on an alarming malware campaign targeting Android users. The findings suggest that attackers have stealthily replaced legitimate applications with malicious counterparts on approximately 25 million devices globally. This revelation raises significant…
