Follow on Google News
Malicious Chrome Extensions Exposed: Stealing Business Data, 2FA Codes, and Browser History
Security researchers have uncovered multiple malicious Google Chrome extensions that are abusing browser permissions to steal sensitive data. These include extensions aimed at Meta Business…
npm Overhauls Authentication to Reduce Supply Chain Risk but Attacks Still Possible
npm has completed a major update to how developers authenticate when publishing packages. The change aims to reduce the risk of supply chain attacks by…
BeyondTrust RCE (CVE-2026-1731) is being probed and attacked in the wild
A critical unauthenticated remote code execution flaw in BeyondTrust Remote Support and some Privileged Remote Access releases is being actively probed and exploited by attackers.…
Critical Vulnerability in next-mdx-remote Library Lets Servers Run Malicious Code During SSR
A critical remote code execution (RCE) flaw has been found in the widely used next-mdx-remote library that can let attackers run arbitrary code when dynamic…
Google Says Hackers Are Abusing Gemini AI for Every Stage of Cyberattacks
State-backed and criminal hackers are increasingly using Google’s Gemini AI model to assist with cyberattack campaigns. The misuse covers many parts of an attack lifecycle,…
Crazy Ransomware Gang Abuses Employee Monitoring Tool to Stay Hidden Inside Corporate Networks
Cybersecurity researchers have confirmed that a member of the Crazy ransomware gang abused legitimate employee monitoring software and a remote support tool to maintain persistence…
SSHStalker Botnet Uses Legacy Exploits and IRC C2 to Hijack Linux Systems
Cybersecurity researchers have uncovered a new Linux botnet operation known as SSHStalker, which targets exposed SSH servers and uses the classic Internet Relay Chat (IRC)…
Microsoft Patches 59 Vulnerabilities Including Six Actively Exploited Zero-Days
Microsoft has released its February 2026 Patch Tuesday security updates to fix 59 software vulnerabilities, including six zero-day flaws that have been exploited in the…
Exposed Cloud Training Apps Now a Major Enterprise Risk as Crypto-Mining and Exploits Spread
Training and demo web applications that are meant to run in safe, isolated environments are being found publicly exposed on enterprise cloud systems. Security research…
Reynolds Ransomware Bundles Vulnerable Driver to Kill EDRs — Technical Readout and Source Links
Cybersecurity researchers have identified a new ransomware family called Reynolds that embeds a bring-your-own-vulnerable-driver (BYOVD) component directly into its malware payload. This technique lets attackers…
November 21, 2025
1 comment 
