France Titres Confirms Data Breach After Hacker Claims 19 Million Records for Sale
France Titres, also known as ANTS, has confirmed a security incident on the ants.gouv.fr portal after a hacker claimed to have stolen and offered French…
News
Here you can find the latest news and developments in the VPN world. Read about new breakthroughs, bypassing online censorship, and much more!
New Lotus Wiper Targets Venezuelan Energy and Utility Firms
A newly documented data-wiping malware called Lotus was used in destructive attacks against energy and utility organizations in Venezuela. Kaspersky says the malware was designed…
How Businesses Can Stop Fraud Across the Customer Journey Without Slowing Real Users
Fraud prevention works best when it starts before damage happens. Businesses now need to check risk at signup, login, checkout, and account recovery without forcing…
UK Regulator Investigates Telegram and Teen Chat Sites Over Child Safety Concerns
Ofcom has opened formal investigations into Telegram, Teen Chat, and Chat Avenue under the UK’s Online Safety Act. The regulator is looking at whether Telegram…
CISA Orders Agencies to Secure Cisco SD-WAN Systems After New Flaw Hits Exploited List
CISA has added CVE-2026-20133, a Cisco Catalyst SD-WAN Manager vulnerability, to its Known Exploited Vulnerabilities catalog after confirming active exploitation. The agency gave U.S. federal…
Fake Crypto Wallet Apps Hit Apple’s App Store in China to Steal Seed Phrases
A new FakeWallet campaign placed 26 fake crypto wallet apps inside Apple’s App Store, mainly targeting iPhone users in China. The apps copied well-known wallet…
The Gentlemen Ransomware Gang Expands Attacks With SystemBC Botnet
The Gentlemen ransomware operation is expanding its attack toolkit with SystemBC, a proxy malware often used to hide malicious traffic and support post-compromise activity inside…
Microsoft Starts Rolling Out a Simpler Windows Insider Program With Experimental and Beta Channels
Microsoft has started rolling out its revamped Windows Insider Program, replacing the older channel structure with a simpler setup built around two main channels: Experimental…
Microsoft Teams Phishing Campaign Deploys New “Snow” Malware Suite
A newly tracked threat group called UNC6692 is using Microsoft Teams chats to trick employees into installing a custom malware suite named Snow. The campaign…
New BlackFile Extortion Group Uses Vishing Calls to Target Retail and Hospitality Firms
A new extortion group known as BlackFile is using phone calls, fake IT support messages, and stolen login codes to break into corporate systems. The…
Pack2TheRoot Flaw Gives Local Linux Users a Path to Root Access
A newly disclosed Linux vulnerability called Pack2TheRoot can let a local unprivileged user gain root access through PackageKit, the system service used by many Linux…
DORA Turns Credential Management Into a Financial Risk Control
The EU’s Digital Operational Resilience Act has changed how financial institutions need to treat passwords, privileged access, and authentication. Under DORA, weak credential management is…
Over 10,000 Zimbra Servers Remain Exposed to Ongoing XSS Attacks
More than 10,000 internet-exposed Zimbra Collaboration Suite servers remain vulnerable to an actively exploited cross-site scripting flaw, according to Shadowserver. The vulnerability, tracked as CVE-2025-48700,…
Hackers Exploit Critical File Upload Flaw in Breeze Cache WordPress Plugin
Hackers are actively exploiting a critical vulnerability in the Breeze Cache WordPress plugin that can let unauthenticated attackers upload arbitrary files to vulnerable websites. The…
Bitwarden CLI npm Package Compromised in Developer Credential Theft Attack
Bitwarden has confirmed that a malicious version of its @bitwarden/cli npm package was briefly distributed through npm on April 22, 2026. The affected release, @bitwarden/[email protected],…