Microsoft Outlook.com Issue Blocks Some Users From Accessing Emails
Microsoft is investigating an Outlook.com service issue that is preventing some users from signing in and accessing their mailboxes. The disruption began on Monday, April…
New ClickFix Attack Uses Cmdkey and Regsvr32 Instead of PowerShell to Evade Detection
A new ClickFix variant is replacing PowerShell with native Windows tools, making the social engineering attack harder for security teams to detect. The campaign tricks…
North Korean Hackers Target Drug Companies With Fake Excel Files and Dropbox-Based Malware
North Korean hackers linked to the Kimsuky group are targeting pharmaceutical companies with a fake Excel-themed file that secretly launches malware on Windows systems. The…
EU Wants Google to Share Search Data With Rival Search Engines and AI Chatbots
The European Commission wants Google to share anonymized search data with rival search engines under the Digital Markets Act. The proposed measures would apply to…
macOS textutil and KeePassXC Can Create Security Risks in Automated Pipelines
Security researchers are warning that two trusted tools, macOS textutil and KeePassXC, can become risky when automated systems process attacker-controlled files with unsafe assumptions. The…
New Malware Campaign Uses Fake Government Project Emails to Target Pakistan Officials
A new malware campaign is targeting government employees in Pakistan through spear-phishing emails that impersonate trusted internal communication. The attack uses fake project documents, staged…
Vidar Malware Campaign Uses Fake YouTube Downloads to Steal Corporate Credentials
Vidar malware is being spread through fake software downloads promoted in YouTube videos, putting corporate users at risk of credential theft, browser data theft, and…
Critical Gemini CLI Flaw Lets Attackers Target CI Workflows With Remote Code Execution
Google has patched a critical Gemini CLI vulnerability that could allow remote code execution in automated development workflows. The issue affects the npm package @google/gemini-cli…
ClickUp API Key Exposure Reportedly Revealed 959 Corporate and Government Email Addresses
ClickUp is facing scrutiny after a security researcher reported that a hardcoded API key in a public JavaScript file exposed 959 email addresses and 3,165…
Notepad++ 8.9.4 Fixes Vulnerability That Could Crash the App and Expose Memory Data
Notepad++ users should update to version 8.9.4 after maintainers fixed a security issue that could allow attackers to crash the application or expose memory address…
November 21, 2025
1 comment 
