A suspected North Korea linked threat actor has compromised multiple cryptocurrency organizations and moved across the crypto supply chain, from staking platforms to exchange infrastructure,…
A ClickFix malware campaign targets cryptocurrency and Web3 professionals by pretending to be venture capital investors on LinkedIn. Attackers start friendly, research-backed conversations, then push…
Attackers have spread a fake Android emergency alert app through SMS messages that impersonate Israel’s Home Front Command, according to CloudSEK. The malicious APK presents…
A newly documented MongoDB denial-of-service flaw, CVE-2026-25611, can let an unauthenticated attacker exhaust server memory and crash a MongoDB instance by sending specially crafted messages…
Check Point Research says it observed a sharp rise in attempts to exploit internet-connected Hikvision and Dahua IP cameras across Israel, Qatar, Bahrain, Kuwait, the…
Cisco warned that a critical bug in Cisco Secure Firewall Management Center (FMC) can let a remote attacker bypass authentication through the web interface and…
LastPass warned customers about a new phishing campaign that began around March 1, 2026. Attackers send fake “forwarded email threads” that look like internal support…
Cisco warned that multiple flaws in Cisco Catalyst SD-WAN Manager (formerly vManage) can let attackers bypass authentication, read sensitive data, overwrite files, and escalate privileges…
Security researchers have disclosed a critical FreeScout flaw that can let an attacker run commands on a FreeScout server by sending a single crafted email…
Google has shipped a Chrome security update that moves the Stable channel to 145.0.7632.159/160 on Windows and macOS, and 145.0.7632.159 on Linux. Google published the…
November 21, 2025
1 comment 
