Cyber Threat Actors Exploit Critical Vulnerabilities in Cacti, Realtek, and IBM Aspera Faspex Recent cyberattacks have exposed critical security vulnerabilities in multiple systems, notably Cacti, Realtek, and IBM Aspera Faspex, amid ongoing exploitation by various threat actors targeting unpatched installations. This surge in activity highlights the pressing need for organizations…
In a new wave of cybercrime, the Lazarus Group, a North Korean state-sponsored hacking organization, has ramped up its activities, focusing on the cryptocurrency sector. Recent reports by security firm Proofpoint indicate a large-scale malware campaign targeting digital currency users, further illustrating the group’s extensive involvement in financially motivated cyberattacks.…
U.S. Customs and Border Protection Expands Use of Facial Recognition Technology Amid Security Concerns U.S. Customs and Border Protection (CBP) has finalized a contract worth $225,000 for a year-long subscription to Clearview AI, a controversial facial recognition service that matches images against vast databases derived from publicly available online content.…
Concerns Rise Over Email Exposure Tool Affecting LinkedIn Users A recently surfaced browser plugin named ‘Sell Hack’ has raised significant concerns among LinkedIn users and cybersecurity experts alike. Available for Chrome, Firefox, and Safari, this plugin purportedly enables users to access the concealed email addresses of any LinkedIn account holder,…
Cloud Security, Cloud-Native Application Protection Platform (CNAPP), Security Operations European Commission Dismisses Concerns Over Multi-Cloud Competition Michael Novinson ( MichaelNovinson) • February 10, 2026 The European Commission has approved Google’s $32 billion acquisition of Wiz, a leading cloud security company, citing no significant competition concerns stemming from the transaction. The…
Critical Vulnerability Discovered in Fiber v2 with Go 1.24+, Paving Way for Session Hijacking and CSRF Exploits A significant security vulnerability has recently been uncovered in Fiber v2, a popular web framework for the Go programming language, specifically versions 1.24 and newer. This flaw has raised alarms within the cybersecurity…
The maintainers of the vm2 JavaScript sandbox module have released an urgent patch in response to a serious vulnerability that could be exploited to breach security boundaries and execute arbitrary code on host systems. This flaw affects all versions up to and including 3.9.14 and was identified by researchers from…
Chinese Cybercrime Group Targets Database Servers Globally Recent investigations by security firm GuardiCore Labs have uncovered a series of extensive cyber-attack campaigns spearheaded by a prominent Chinese criminal organization. These attacks, which utilize multiple innovative techniques, are primarily aimed at database servers for the illicit purposes of mining cryptocurrencies, extracting…
In a significant cybersecurity incident, Germany has reported the largest data breach in its history, involving the compromise of approximately 18 million email accounts. This breach, executed by unauthorized hackers, has led to the theft of usernames and passwords, raising serious alarm about the security of personal information. The breach…