CISA: Hackers now exploit SolarWinds Serv-U flaw to crash servers

June 5, 2026

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned today that hackers are now actively exploiting a recently patched high-severity

Chinese APT deploys new malware to keep access to hacked networks

June 5, 2026

A Chinese espionage group tracked as UNC5221 has been accessing Microsoft 365 environments using the Brickstorm backdoor and previously undocumented

IronWorm and New Miasma Worm Variant Hit npm in Supply Chain Attacks

June 5, 2026

Multiple software supply chain attacks have hit the npm ecosystem, with threat actors using both malicious and poisoned versions of

Android Spyware Asin Targets Arabic Users via Fake News, PDF and War Map Apps

June 5, 2026

Ravie LakshmananJun 05, 2026Spyware / Mobile Security Arabic-speaking users have emerged as the target of a new Android spyware codenamed

Hackers Exploit Critical Everest Forms Pro WordPress Plugin Flaw to Take Over Sites

June 5, 2026

Threat actors are actively exploiting a critical security flaw in Everest Forms Pro, a WordPress plugin with about 4,000 active

VECT 2.0 Ransomware Can Damage Files Its Own Decryptor Cannot Reliably Restore

June 5, 2026

A new ransomware strain called VECT 2.0 is raising serious concerns among security professionals, and for a troubling reason —

Cisco warns of unpatched SD-WAN zero-day exploited in attacks

June 5, 2026

On Thursday, Cisco warned of a high-severity, unpatched zero-day in the Cisco Catalyst SD-WAN Manager (tracked as CVE-2026-20245) actively exploited in

ClawHub, Cisco, Vercels Malicious Skill Detector Bypassed to upload Malicious Skills

June 4, 2026

AI skill scanners from ClawHub, Cisco, and Vercel’s skills. The platform can be bypassed with minimal effort, allowing malicious skills

IronWorm Supply Chain Attack Uses Malicious npm Packages to Steal Developer Secrets

June 4, 2026

A newly discovered malware campaign called IronWorm has been silently targeting software developers through poisoned npm packages, stealing credentials, API

DentaQuest data breach exposed info of 2.6 million accounts

June 4, 2026

A data breach at the dental benefits administrator DentaQuest has reportedly exposed the sensitive data of 2.6 million accounts. The

Cisco Patches CVE-2026-20230 in Unified CM as Exploit Code Goes Public

June 4, 2026

Swati KhandelwalJun 04, 2026Vulnerability / Network Security Cisco has patched a bug in Unified Communications Manager that lets an unauthenticated

Claude Code GitHub Action Flaw Let One Malicious Issue Hijack Repositories

June 4, 2026

Swati KhandelwalJun 04, 2026Vulnerability / AI Security A security researcher found a flaw in Anthropic’s Claude Code GitHub Action that

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.