Follow on Google News
First Malicious Outlook Add-In Found Stealing Over 4,000 Microsoft Account Credentials
Cybersecurity researchers have uncovered what appears to be the first ever malicious add-in for Microsoft Outlook discovered in the wild. The add-in was hijacked and…
Windows 11 Notepad Vulnerability Allowed Malicious Code to Run via Markdown Links
Microsoft has patched a serious security flaw in the Windows 11 Notepad app that could let attackers run harmful code simply by convincing a user…
ZAST.AI Secures $6M Pre-A to Scale Zero-False-Positive AI Code Security
Seattle, USA — ZAST.AI, an AI-driven code security startup, has closed a $6 million Pre-A funding round led by Hillhouse Capital, bringing its total financing…
Fortinet Patches Critical SQL Injection Flaw in FortiClientEMS Enabling Unauthenticated Code Execution
Fortinet has released an urgent security update to fix a critical SQL injection vulnerability (CVE-2026-21643) affecting its FortiClientEMS product. The flaw could allow a remote,…
Study: Ransomware Attackers Now Seek Silent, Long-Term Access
According to the Picus Red Report 2026, cyber attackers are shifting away from loud, destructive ransomware encryption toward stealthy, long-term access that stays hidden inside…
DPRK Operatives Impersonate Professionals on LinkedIn to Infiltrate Comparnies Worldwide
North Korean operatives are increasingly using real LinkedIn identities to infiltrate companies, applying for remote jobs under stolen or fabricated profiles as part of a…
North Korea-Linked UNC1069 Targets Cryptocurrency Firms using AI and ML
North Korean threat actors tied to the cluster known as UNC1069 have been observed conducting highly tailored attacks against cryptocurrency companies and fintech organizations. The…
SolarWinds Web Help Desk RCE Exploited in Multi-Stage Enterprise Attacks on Exposed Servers
According to Microsoft & Huntress, threat actors are actively exploiting internet-exposed SolarWinds Web Help Desk (WHD) instances to gain remote code execution and pivot deeper…
China-Linked UNC3886 Targets Singapore Telecom Sector in Global Cyber Espionage Campaign
According to Cyber Security of Singapore & Reuters, China-linked threat actor UNC3886 has conducted a deliberate cyber espionage campaign against Singapore’s telecommunications sector, targeting all…
SmarterTools’ SmarterMail email server breached by the Warlock ransomware group
SmarterTools’ SmarterMail email server was breached by the Warlock ransomware group after attackers exploited unpatched vulnerabilities in the software. If you’re part of the security…
November 21, 2025
1 comment 
