Chrome 0-Day CVE-2026-2441 Exploited in the Wild
Google patched a critical zero-day vulnerability in Chrome on February 13, 2026. The flaw, tracked as CVE-2026-2441, is a use-after-free error in the browser’s CSS…
Lumma Stealer and Ninja Browser Attack Global Organizations Through 4,000+ Malicious Google Groups
Attackers created over 4,000 malicious Google Groups and 3,500 Google-hosted URLs to distribute Lumma Stealer and trojanized Ninja Browser malware worldwide. CTM360 threat researchers uncovered…
Canada Goose 600K Customer Records Leaked: ShinyHunters Claims Third-Party Breach
ShinyHunters claims to have stolen over 600,000 Canada Goose customer records. The 1.67GB dataset contains names, emails, phone numbers, billing/shipping addresses, IP addresses, order histories,…
Nucleus Security Raises $20M Series C: Exposure Management Platform Expansion
Nucleus Security raised $20 million in Series C funding led by Delta-v Capital. The Sarasota, Florida company, founded by former US Department of Defense experts,…
Global Defense Industry Faces Multi-Nation Cyber Onslaught: Google Threat Intelligence Warning
Hacktivists, state-sponsored actors, and cybercriminals from Russia, China, North Korea, and Iran target the global Defense Industrial Base (DIB). Google Threat Intelligence Group (GTIG) documents…
Microsoft Enables Windows Baseline Security: Runtime Protections Active by Default
Microsoft will activate Windows Baseline Security Mode by default. This ensures only signed applications, drivers, and services run on Windows systems. Runtime integrity safeguards block…
ApolloMD Data Breach Exposes 626,540 Patients: Qilin Ransomware Attack Confirmed
A May 2025 cyberattack compromised sensitive health data for 626,540 individuals at ApolloMD. Hackers accessed files between May 22-23 containing names, addresses, birth dates, diagnoses,…
China Relaunches Tianfu Cup Hacking Contest with Government Control and Secrecy
China brought back the Tianfu Cup hacking competition in 2026 under Ministry of Public Security oversight. The event ran January 29-30 with heavy restrictions. No…
Check Point Acquires Cyata, Cyclops, and Rotate to Boost AI Security and Exposure Management
Check Point Software Technologies announced three acquisitions alongside strong 2025 earnings. The company bought Israeli firms Cyata, Cyclops, and Rotate to advance AI security and…
Pastebin Comments Spread ClickFix JavaScript Attack to Steal Crypto Swaps
Crooks use Pastebin comments to push ClickFix scams targeting crypto users. Fake “Swapzone.io arbitrage exploits” trick victims into running JavaScript in browser address bars. Code…
November 21, 2025
1 comment 
