A cybersecurity research effort has revealed an unpatched zero-day vulnerability in phpMyAdmin, a widely-utilized application for managing MySQL and MariaDB databases. This tool is integral for many websites built on content management systems such as WordPress and Joomla. The vulnerability was identified by security researcher Manuel Garcia Cardenas, who characterized…
Recently uncovered cyber operations linked to Vietnamese threat actors have revealed a sophisticated method of launching phishing attacks using Google AppSheet as a conduit. This campaign aims to compromise Facebook accounts, with approximately 30,000 accounts reported hacked. The operation, identified as “AccountDumpling” by cybersecurity firm Guardio, entails the hijacked accounts…
Urgent Security Update Released for Google Chrome Users Google has issued an emergency software update for its Chrome web browser, urging users on Windows, Mac, and Linux platforms to upgrade to the latest version, 77.0.3865.90, without delay. This crucial update, which began rolling out globally on Wednesday, addresses four vulnerabilities,…
In a concerning development for U.S. cybersecurity, Brian Krebs has reported that the Cybersecurity and Infrastructure Agency (CISA) has inadvertently left a cache of sensitive information exposed on a public GitHub repository since at least November 2025. This repository, ominously named “Private-CISA,” has revealed plaintext passwords, SSH private keys, tokens,…
Trellix, a cybersecurity firm, has reported experiencing a breach that granted unauthorized access to a portion of its source code repository. The company has stated that it recently discovered this security compromise and is taking immediate steps to address the issue by collaborating with leading forensic experts. Additionally, Trellix has…
Following the recent release of iOS 13 and iPadOS, Apple has issued a critical security advisory regarding an unpatched vulnerability affecting third-party keyboard applications. This warning is particularly relevant for users of iPhones and iPads, as it presents a significant risk to personal data security. The issue arises from the…
In a significant international crackdown, authorities from the United States and China have detained over 276 suspects and dismantled nine call centers implicated in fraudulent cryptocurrency schemes targeting American citizens, leading to extensive financial losses amounting to millions of dollars. This operation was spearheaded by the Dubai Police as part…
In a significant development for the iOS ecosystem, a hacker and cybersecurity researcher has publicly released what is being described as a “permanent unpatchable bootrom exploit.” This advancement, known as Checkm8, is designed to jailbreak a broad spectrum of iOS devices, specifically those ranging from the iPhone 4s, equipped with…
When a takedown request is submitted, platforms have a window of up to 48 hours to assess its validity. If deemed legitimate, they are responsible for removing the reported content along with any duplicates. Various larger platforms leverage a proprietary tool known as StopNCII, which employs matching algorithms to detect…