Author: nitya

China-linked cyber espionage group “Webworm” has recently been linked to a major hacking campaign targeting European government organizations and other important sectors. Security researchers discovered that the attackers were using trusted online services like Discord and Microsoft Graph to secretly communicate with infected systems. This method allowed the hackers to hide their activity inside normal … Continued

Police and international cybercrime agencies have shut down a VPN service called “First VPN” that was allegedly being used by ransomware groups and cybercriminals. Authorities said the service helped attackers hide their identities during online crimes. The operation involved several countries working together to track and seize the VPN’s infrastructure. Officials believe the platform was … Continued

Cybersecurity researchers have recently warned about a serious attack method that is targeting websites through content delivery systems, also called CDNs. These systems are commonly used to improve website speed and performance by delivering files quickly to users. Many popular websites depend on third-party scripts and external services every day. Attackers are now exploiting these … Continued

SEPPMail Secure E-Mail Gateway, a platform used by many organizations for encrypted and secure email communication, has recently been found vulnerable to multiple critical security flaws. Security researchers discovered that these vulnerabilities could allow hackers to remotely access systems and even execute malicious code on affected servers. Because email gateways handle sensitive company communication every … Continued

Several major technology companies including Ivanti, Fortinet, SAP, VMware, and n8n have released urgent security patches after researchers discovered multiple dangerous vulnerabilities in their products. The reported flaws include Remote Code Execution, SQL Injection, privilege escalation, authentication bypass, and arbitrary file access issues. Security experts are advising organizations to update affected systems immediately to avoid … Continued

A new Windows vulnerability called MiniPlasma has recently become a serious concern in the cybersecurity community. Researchers discovered that the exploit can give attackers full SYSTEM-level access on fully updated Windows systems. What makes this issue more dangerous is that the vulnerability reportedly works even after installing the latest May 2026 Windows security updates. Because … Continued

OpenAI has confirmed that it was affected by the recent TanStack npm supply chain attack that targeted developers and software companies. The company said two employee devices inside its corporate environment were compromised during the incident. The attack involved malicious code hidden inside trusted npm packages used by developers worldwide. OpenAI stated that it immediately … Continued

Taiwan recently faced a serious cybersecurity incident that exposed major security weaknesses in railway communication systems. Reports revealed that a 23-year-old university student managed to interfere with Taiwan’s high-speed rail network using simple radio tools and software available online. The incident quickly gained global attention because it showed how easily critical infrastructure can be affected … Continued

Microsoft users and cybersecurity researchers are closely watching two newly revealed Windows zero-day vulnerabilities called YellowKey and GreenPlasma. Reports say these flaws affect Windows 11 and Windows Server 2022 and 2025 systems. The vulnerabilities were publicly disclosed by a researcher known online as Chaotic Eclipse or Nightmare-Eclipse. The same researcher had earlier revealed multiple Microsoft … Continued

A newly discovered security vulnerability in PraisonAI is being actively targeted by attackers only a few hours after becoming public. The flaw, identified as CVE-2026-44338, is an authentication bypass vulnerability that allows unauthorized users to access protected AI agent functions without logging in. Security researchers said the incident highlights how quickly cybercriminals now react to … Continued