Here you can find the latest news and developments in the VPN world. Read about new breakthroughs, bypassing online censorship, and much more!
TP-Link has disclosed a high-severity command injection vulnerability affecting its Archer BE450 v1 and Archer BE7200 v1 routers. The flaw, tracked as CVE-2026-5509, can let…
Anthropic’s Claude experienced a major service disruption on June 2, with users reporting failed requests, slow responses, and unavailable sessions across several Claude products. The…
SolyxImmortal is a Python-based Windows information stealer that can collect browser passwords, cookies, documents, screenshots, and keystrokes from infected systems. The malware uses common Python…
A cross-ecosystem supply chain campaign called TrapDoor has used more than 34 malicious packages across npm, PyPI, and Crates.io to steal developer credentials, cloud keys,…
Mustang Panda has been linked to a new PlugX malware campaign that uses a fake browser update to infect Windows systems through a layered loader…
Microsoft’s vulnerability handling process is facing new scrutiny after security researcher Wahid Fayad claimed the Microsoft Security Response Center dismissed a dependency confusion report involving…
CISA has added a Palo Alto Networks PAN-OS vulnerability tracked as CVE-2026-0257 to its Known Exploited Vulnerabilities catalog after confirmed exploitation in the wild. The…
Anthropic is expanding Project Glasswing, its AI-focused cybersecurity program, to approximately 150 additional organizations across more than 15 countries. The move gives more vetted partners…
A critical vulnerability in KMW CCTV security cameras can let remote attackers reset the administrator password without authentication, giving them access to camera feeds and…
CISA has added an Oracle WebLogic Server vulnerability tracked as CVE-2024-21182 to its Known Exploited Vulnerabilities catalog after evidence of active exploitation. The agency announced…
Red Hat has confirmed a supply chain compromise affecting multiple npm packages published under the @redhat-cloud-services namespace after attackers used a compromised GitHub account to…
Russia’s Federal Security Service says it uncovered a large-scale cyber-espionage operation that placed malicious software on mobile devices used by high-ranking Russian officials. The FSB…
A solo Russian-speaking threat actor used stolen Gemini API keys and AI automation to run a long-running Telegram influence and fraud operation aimed at politically…
A WordPress malware campaign is using Steam Community profile comments as a covert command-and-control channel, giving attackers a way to hide instructions behind a trusted…
Microsoft has released KB5089573, a new optional preview cumulative update for Windows 11 version 25H2 and version 24H2. The update fixes an installation failure that…