Latest Cybersecurity News

Stay informed with real-time threat intelligence, vulnerability disclosures, and expert analysis from the cybersecurity community.

All Malware & Threats463 Vulnerabilities239 Data Breaches20 Ransomware0 APT & Threat Actors0 Cloud Security0 MENA Cybersecurity0 Compliance & Frameworks0 Tools & Tutorials0 Industry News1114

Webinar Today: Securing Identity Across Humans, Machines and AI

SecurityWeek

Industry News

Webinar Today: Securing Identity Across Humans, Machines and AI

From service accounts to AI-driven processes, identity is evolving faster than most security programs can adapt. Discover strategies for reducing risk and regaining control.

SecurityWeek22h ago1m2

Vulnerabilities

CISA Adds One Known Exploited Vulnerability to Catalog

CISA Alerts

Vulnerabilities

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.

CISA Alerts22h ago1m2

Vulnerabilities

MAXHUB Pivot Client Application

CISA Alerts

Vulnerabilities

MAXHUB Pivot Client Application

View CSAF

CISA Alerts22h ago3m2

ThreatsDay Bulletin: Edge Plaintext Passwords, ICS 0-Days, Patch-or-Die Alerts and 25+ New Stories

The Hacker News

Industry News

ThreatsDay Bulletin: Edge Plaintext Passwords, ICS 0-Days, Patch-or-Die Alerts and 25+ New Stories

ThreatsDay Bulletin: fake apps, supply chain attacks, AI-fueled exploits, ransomware chaos, and the biggest cyber threats this week.

The Hacker News22h ago20m2

Cisco Patches High-Severity Vulnerabilities in Enterprise Products

SecurityWeek

Industry News

Cisco Patches High-Severity Vulnerabilities in Enterprise Products

Successful exploitation of the flaws could lead to code execution, server-side request forgery attacks, and denial-of-service conditions.

SecurityWeek23h ago2m2

Palo Alto Networks firewall zero-day exploited for nearly a month

BleepingComputer

Malware & Threats

Palo Alto Networks firewall zero-day exploited for nearly a month

Palo Alto Networks warned customers that suspected state-sponsored hackers have been exploiting a critical-severity PAN-OS firewall zero-day vulnerability for nearly a month.

BleepingComputer23h ago3m3

Day Zero Readiness: The Operational Gaps That Break Incident Response

The Hacker News

Industry News

Day Zero Readiness: The Operational Gaps That Break Incident Response

Delayed IR access and 14-day logs limit visibility during breaches, increasing attacker dwell time and recovery costs.

The Hacker News23h ago14m2

Gemini CLI Vulnerability Could Have Led to Code Execution, Supply Chain Attack

SecurityWeek

Industry News

Gemini CLI Vulnerability Could Have Led to Code Execution, Supply Chain Attack

Attackers could inject prompts into a GitHub issue and take over the AI agent designed to automatically triage the issue.

SecurityWeek23h ago2m2

Fake Claude AI website delivers new 'Beagle' Windows malware

BleepingComputer

Malware & Threats

Fake Claude AI website delivers new 'Beagle' Windows malware

A fake version for the Claude AI website offers a malicious Claude-Pro Relay download that pushes a previously undocumented backdoor for Windows named Beagle.

BleepingComputer1d ago4m3

PyPI Packages Deliver ZiChatBot Malware via Zulip APIs on Windows and Linux

The Hacker News

Industry News

PyPI Packages Deliver ZiChatBot Malware via Zulip APIs on Windows and Linux

ZiChatBot malware spread via 3 PyPI packages in July 2025 uses Zulip APIs as C2, enabling stealthy attacks across systems

The Hacker News1d ago3m2

Claude AI Guided Hackers Toward OT Assets During Water Utility Intrusion

SecurityWeek

Industry News

Claude AI Guided Hackers Toward OT Assets During Water Utility Intrusion

Dragos has published a report describing how threat actors used Claude AI in an attack on a water and drainage utility in Mexico.

SecurityWeek1d ago3m2

vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution

The Hacker News

Industry News

vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution

12 vm2 flaws (CVSS up to 10.0) enable sandbox escape in ≤3.11.1, causing remote code execution risk; patched in 3.11.2.

The Hacker News1d ago3m2