Latest Cybersecurity News

Stay informed with real-time threat intelligence, vulnerability disclosures, and expert analysis from the cybersecurity community.

All Malware & Threats468 Vulnerabilities240 Data Breaches20 Ransomware0 APT & Threat Actors0 Cloud Security0 MENA Cybersecurity0 Compliance & Frameworks0 Tools & Tutorials0 Industry News1127

Microsoft to deprecate legacy TLS in Exchange Online starting July

BleepingComputer

Malware & Threats

Microsoft to deprecate legacy TLS in Exchange Online starting July

Microsoft says it will start blocking legacy TLS connections for POP and IMAP email clients in Exchange Online starting in July 2026.

BleepingComputerApr 28, 20263m4

Inside an OPSEC Playbook: How Threat Actors Evade Detection

BleepingComputer

Malware & Threats

Inside an OPSEC Playbook: How Threat Actors Evade Detection

Threat actors are now publishing structured OPSEC playbooks to stay undetected. Flare reveals how these guides outline layered infrastructure, identity separation, and long-term evasion strategies.

BleepingComputerApr 28, 20267m4

Dozens of Open VSX Extension Clones Linked to GlassWorm Malware

SecurityWeek

Industry News

Dozens of Open VSX Extension Clones Linked to GlassWorm Malware

Over 70 cloned Open VSX extensions are likely sleeper extensions designed to distribute malware.

SecurityWeekApr 28, 20263m4

Vulnerabilities

NSA GRASSMARLIN

CISA Alerts

Vulnerabilities

NSA GRASSMARLIN

View CSAF

CISA AlertsApr 28, 20263m4

Sevii Launches Cyber Swarm Defense to Make Agentic AI Security Costs Predictable

SecurityWeek

Industry News

Sevii Launches Cyber Swarm Defense to Make Agentic AI Security Costs Predictable

Agentic AI can be expensive to use, causing further and unpredictable pressure on tight budgets.

SecurityWeekApr 28, 20264m4

Vulnerabilities

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA Alerts

Vulnerabilities

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.

CISA AlertsApr 28, 20261m4

Why Secure Data Movement Is the Zero Trust Bottleneck Nobody Talks About

The Hacker News

Industry News

Why Secure Data Movement Is the Zero Trust Bottleneck Nobody Talks About

84% of leaders say cross-network data sharing raises risk in 2026, as 53% rely on manual transfers, widening Zero Trust gaps.

The Hacker NewsApr 28, 20266m4

Electric Motorcycles and Scooters Face Hacking Risks to Security and Rider Safety

SecurityWeek

Industry News

Electric Motorcycles and Scooters Face Hacking Risks to Security and Rider Safety

Vulnerabilities in Zero Motorcycles electric motorcycles and Yadea electric scooters can pose physical security and safety risks.

SecurityWeekApr 28, 20264m4

No Patch for New PhantomRPC Privilege Escalation Technique in Windows

SecurityWeek

Industry News

No Patch for New PhantomRPC Privilege Escalation Technique in Windows

A fake RPC server can be used to listen for RPC requests and impersonate the target service to elevate privileges to System.

SecurityWeekApr 28, 20265m4

Industry News

Critical Unpatched Flaw Leaves Hugging Face LeRobot Open to Unauthenticated RCE

The Hacker News

Industry News

Critical Unpatched Flaw Leaves Hugging Face LeRobot Open to Unauthenticated RCE

Cybersecurity researchers have disclosed details of a critical security flaw impacting LeRobot, Hugging Face's open-source robotics platform with nearly 24,000 GitHub stars, that could be exploited to achieve remote code execution. The vulnerability in question is CVE-2026-25874 (CVSS score: 9.3)...

The Hacker NewsApr 28, 20261m4

Germany Suspects Russia Is Behind Signal Phishing That Targeted Top Officials

SecurityWeek

Industry News

Germany Suspects Russia Is Behind Signal Phishing That Targeted Top Officials

Federal prosecutors have been conducting a preliminary investigation since mid-February 2026 into alleged cyberattacks on Signal accounts.

SecurityWeekApr 28, 20263m4

After Mythos: New Playbooks For a Zero-Window Era

The Hacker News

Industry News

After Mythos: New Playbooks For a Zero-Window Era

AI models like Claude Mythos find vulnerabilities in minutes, collapsing patch windows and forcing assume-breach defenses to contain threats.

The Hacker NewsApr 28, 20266m4