OWASP CVE Lite CLI New Tool to Scan for Vulnerabilities in Your Projects

June 5, 2026

CVE Lite CLI is a free, open-source vulnerability scanner officially recognized as an OWASP Incubator Project, designed to bring dependency

Suspicious Polyfill login prompts pop up on Toshiba, Muji websites

June 5, 2026

Tech giant Toshiba and mega-retailer Muji warned visitors that suspicious sign-in screens popping up on their websites could collect credentials.

Hola Browser for Windows Delivery Pipeline Compromised to Deliver Cryptominer

June 5, 2026

A trusted browser application has landed at the center of a supply chain security incident after researchers discovered that its

CISA: Hackers now exploit SolarWinds Serv-U flaw to crash servers

June 5, 2026

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned today that hackers are now actively exploiting a recently patched high-severity

Chinese APT deploys new malware to keep access to hacked networks

June 5, 2026

A Chinese espionage group tracked as UNC5221 has been accessing Microsoft 365 environments using the Brickstorm backdoor and previously undocumented

IronWorm and New Miasma Worm Variant Hit npm in Supply Chain Attacks

June 5, 2026

Multiple software supply chain attacks have hit the npm ecosystem, with threat actors using both malicious and poisoned versions of

Android Spyware Asin Targets Arabic Users via Fake News, PDF and War Map Apps

June 5, 2026

Ravie LakshmananJun 05, 2026Spyware / Mobile Security Arabic-speaking users have emerged as the target of a new Android spyware codenamed

Hackers Exploit Critical Everest Forms Pro WordPress Plugin Flaw to Take Over Sites

June 5, 2026

Threat actors are actively exploiting a critical security flaw in Everest Forms Pro, a WordPress plugin with about 4,000 active

VECT 2.0 Ransomware Can Damage Files Its Own Decryptor Cannot Reliably Restore

June 5, 2026

A new ransomware strain called VECT 2.0 is raising serious concerns among security professionals, and for a troubling reason —

Cisco warns of unpatched SD-WAN zero-day exploited in attacks

June 5, 2026

On Thursday, Cisco warned of a high-severity, unpatched zero-day in the Cisco Catalyst SD-WAN Manager (tracked as CVE-2026-20245) actively exploited in

ClawHub, Cisco, Vercels Malicious Skill Detector Bypassed to upload Malicious Skills

June 4, 2026

AI skill scanners from ClawHub, Cisco, and Vercel’s skills. The platform can be bypassed with minimal effort, allowing malicious skills

IronWorm Supply Chain Attack Uses Malicious npm Packages to Steal Developer Secrets

June 4, 2026

A newly discovered malware campaign called IronWorm has been silently targeting software developers through poisoned npm packages, stealing credentials, API

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.