x86.se

11 Min Read

February 5, 2026

ThreatsDay Bulletin: Codespaces RCE, AsyncRAT C2, BYOVD Abuse, AI Cloud Intrusions & 15+ Stories

This week didn’t produce one big headline. It produced many small signals — the kind that quietly shape what attacks will look like next. Rese…

5 Min Read

February 5, 2026

The Buyer’s Guide to AI Usage Control

Today’s “AI everywhere” reality is woven into everyday…

4 Min Read

February 5, 2026

Infy Hackers Resume Operations with New C2 Servers After Iran Internet Blackout Ends

The elusive Iranian threat group known as Infy (aka Prince of Persia)…

4 Min Read

February 5, 2026

Critical n8n Flaw CVE-2026-25049 Enables System Command Execution via Malicious Workflows

A new, critical security vulnerability has been disclosed in the n8n…

0 Min Read

September 11, 2025

CISA Launches Roadmap for the CVE Program

In a new document, the US Cybersecurity and Infrastructure Security Agency (CISA) has confirmed its support for the Common Vulnerabilities and…

2 Min Read

September 11, 2025

New VMScape Spectre-BTI Attack Exploits Isolation Gaps in AMD and Intel CPUs

A novel speculative execution attack named VMSCAPE allows a malicious virtual machine (VM) to breach its security boundaries and…

3 Min Read

September 11, 2025

New Google AppSheet Phishing Scam Deliver Fake Trademark Notices

A phishing scam is exploiting Google’s trusted AppSheet platform to bypass email filters. Learn how hackers are using legitimate tools…

2 Min Read

September 11, 2025

Fileless Malware Deploys Advanced RAT via Legitimate Tools

A sophisticated fileless malware campaign exploiting legitimate system tools has been uncovered by cybersecurity researchers. The attack…

3 Min Read

September 11, 2025

New VMScape attack breaks guest-host isolation on AMD, Intel CPUs

A new Spectre-like attack dubbed VMScape allows a malicious virtual machine (VM) to leak cryptographic keys from an unmodified…

2 Min Read

September 11, 2025

Google Pixel 10 Adds C2PA Support to Verify AI-Generated Media Authenticity

Google on Tuesday announced that its new Google Pixel 10 phones support the Coalition for Content Provenance and Authenticity (C2PA) standard…

3 Min Read

September 11, 2025

12 Ways to Protect Your Business from Hackers During Remote Work

Michelle MooreUniversity of San Diego’sSeptember 11, 2025 Remote work is here to stay, with nearly a quarter of the U.S. workforce (22%)…

4 Min Read

September 11, 2025

Spectre haunts CPUs again: VMSCAPE vulnerability leaks cloud secrets

If you thought the world was done with side-channel CPU attacks, think again. ETH Zurich has identified yet another Spectre-based transient…

2 Min Read

September 11, 2025

Wyden Urges FTC Investigation Over Ascension Ransomware Hack

US Senator Ron Wyden of Oregon has called on the Federal Trade Commission to investigate Microsoft for cybersecurity lapses linked to…

2 Min Read

September 11, 2025

Akira ransomware affiliates continue breaching organizations via SonicWall firewalls

Over a year after SonicWall patched CVE-2024-40766, a critical flaw in its next-gen firewalls, ransomware attackers are still gaining a…

4 Min Read

September 11, 2025

Senator Wyden Urges FTC to Probe Microsoft for Ransomware-Linked Cybersecurity Negligence

U.S. Senator Ron Wyden has called on the Federal Trade Commission (FTC) to probe Microsoft and hold it responsible for what he called "gross…

3 Min Read

September 11, 2025

UK Rail Operator LNER Confirms Cyber Attack Exposing Passenger Data

LNER cyber attack exposes passenger contact details and journey data. No financial information or passwords were taken, but customers are…

4 Min Read

September 11, 2025

Boost Operational Resilience: Proactive Security with CORA Best Practices

On almost a monthly basis, the US Cybersecurity & Infrastructure Security Agency (CISA) publishes advisories about the latest…

2 Min Read

September 11, 2025

Palo Alto Networks User-ID Credential Agent Vulnerability Exposes password In Cleartext

A newly disclosed vulnerability in Palo Alto Networks’ User-ID Credential Agent for Windows, identified as CVE-2025-4235, could…

3 Min Read

September 11, 2025

Chinese APT Actor Compromises Military Firm with Novel Fileless Malware Toolset

A Chinese APT group has compromised a Philippines-based military firm using a novel, sophisticated fileless malware framework dubbed…

3 Min Read

September 11, 2025

SAP Issues Critical Security Patch for NetWeaver and Other Products, Warns of CVE-2025-42944

SAP has released a new security update addressing a broad range of vulnerabilities across its product ecosystem. Among the most alarming is a…

3 Min Read

September 11, 2025

Australia Warns of Ransomware Attacks Exploiting SonicWall VPN Flaw CVE-2024-40766

The Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) has issued an urgent alert regarding active exploitation of…

3 Min Read

September 11, 2025

SonicWall SSL VPN Flaw and Misconfigurations Actively Exploited by Akira Ransomware Hackers

Threat actors affiliated with the Akira ransomware group have continued to target SonicWall devices for initial access. Cybersecurity firm…

2 Min Read

September 11, 2025

France: Three Regional Healthcare Agencies Targeted by Cyber-Attacks

French regional healthcare agencies have been targeted by cyber-attacks compromising the personal data of patients across the country. On…

2 Min Read

September 11, 2025

ChillyHell macOS Malware Resurfaces, Using Google.com as a Decoy

A previously dormant macOS threat, ChillyHell, is reviving. Read how this malware can bypass security checks, remain hidden, and install…

2 Min Read

September 11, 2025

NVIDIA NVDebug Tool Vulnerability Let Attackers Escalate Privileges

NVIDIA has released a security update for its NVDebug tool to address three high-severity vulnerabilities that could allow an…

2 Min Read

September 11, 2025

Ukrainian Ransomware Fugitive Added to Europe’s Most Wanted

A 28-year-old Ukrainian has been added to a list of Europe’s most wanted fugitives for alleged participation in LockerGoga ransomware attacks.…

3 Min Read

September 11, 2025

Fake Madgicx Plus and SocialMetrics Extensions Are Hijacking Meta Business Accounts

Cybersecurity researchers have disclosed two new campaigns that are serving fake browser extensions using malicious ads and fake websites to…

Continuous Threat Exposure Management

4 Min Read

September 11, 2025

Cracking the Boardroom Code: Helping CISOs Speak the Language of Business

CISOs know their field. They understand the threat landscape. They understand how to build a strong and cost-effective security stack. They…

2 Min Read

September 11, 2025

LNER Reveals Supply Chain Attack Compromised Customer Information

The operator of one of the UK’s busiest rail lines has admitted that an unauthorized third party has accessed customer details via a supplier.…

Press Release

1 Min Read

September 11, 2025

1.5 billion packets per second DDoS attack detected with FastNetMon

London, United Kingdom, September 11th, 2025, CyberNewsWire FastNetMon today announced that it detected a record-scale distributed…

20 Min Read

September 11, 2025

Vulnerability Management – common understanding and language enable teamwork

Part of a series This Blog post is part of the series Vulnerability Management Series: 3D (Definition, Deep-Dive, and Difficulties) Part 1…

2 Min Read

September 11, 2025

ACSC Warns Of Sonicwall Access Control Vulnerability Actively Exploited In Attacks

The Australian Cyber Security Centre (ACSC) has issued a critical alert regarding a severe access control vulnerability in…

2 Min Read

September 11, 2025

AsyncRAT Exploits ConnectWise ScreenConnect to Steal Credentials and Crypto

Cybersecurity researchers have disclosed details of a new campaign that leverages ConnectWise ScreenConnect, a legitimate Remote Monitoring…

2 Min Read

September 11, 2025

Microsoft Copilot to Be Powered by Two AIs: OpenAI and Now Anthropic

Ddos September 11, 2025 The Information has reported that Microsoft is preparing to announce, within the coming weeks, the integration of…

2 Min Read

September 11, 2025

High-Severity Flaws in Sunshine for Windows Allow Privilege Escalation

The CERT Coordination Center (CERT/CC) has issued a vulnerability note warning of two critical local security flaws affecting Sunshine for…

3 Min Read

September 11, 2025

Beyond Cobalt Strike: A New Open-Source Hacking Tool Is on the Rise

Ddos September 11, 2025 Researchers at Palo Alto Networks’ Unit 42 have published a report detailing the rise of AdaptixC2, an open-source…

2 Min Read

September 11, 2025

CVE-2025-8696: DoS Flaw in Stork UI Allows Unauthenticated Attackers to Crash Servers

Ddos September 11, 2025 The Internet Systems Consortium (ISC) has issued a security advisory addressing a high-severity flaw in Stork UI, a…

2 Min Read

September 11, 2025

ACSC Warns of Active Exploitation of SonicWall SSL VPN Vulnerability (CVE-2024-40766)

Ddos September 11, 2025 The Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) has issued an alert on the active…

September 11, 2025

CVE-2025-58063: CoreDNS Vulnerability Could Disrupt DNS Updates

Ddos September 11, 2025 The CoreDNS project has disclosed a vulnerability in its etcd plugin, tracked as CVE-2025-58063 (CVSS 7.1), which…

3 Min Read

September 10, 2025

Akira ransomware crims abusing trifecta of SonicWall security holes for extortion attacks

Affiliates of the Akira ransomware gang are again exploiting a critical SonicWall vulnerability abused last summer, after a suspected zero-day…

Security

2 Min Read

September 10, 2025

DDoS defender targeted in 1.5 Bpps denial-of-service attack

A DDoS mitigation service provider in Europe was targeted in a massive distributed denial-of-service attack that reached 1.5 billion…

Microsoft

2 Min Read

September 10, 2025

Microsoft waives fees for Windows devs publishing to Microsoft Store

Microsoft announced that, starting today, individual Windows developers will no longer have to pay for publishing their applications on the…

2 Min Read

September 10, 2025

Hackers left empty-handed after massive NPM supply-chain attack

The largest supply-chain compromise in the history of the NPM ecosystem has impacted roughly 10% of all cloud environments, but…

2 Min Read

September 10, 2025

Chinese APT Hits Philippine Military Firm with New EggStreme Fileless Malware

Bitdefender uncovers EggStreme, a fileless malware by a China-based APT targeting the Philippine military and APAC organisations.…

2 Min Read

September 10, 2025

New Fileless Malware Attack Uses AsyncRAT for Credential Theft

LevelBlue Labs has published new research on a recent attack that used a fileless loader to deliver AsyncRAT, a well-known Remote Access…

2 Min Read

September 10, 2025

Pixel 10 fights AI fakes with new Android photo verification tech

Google is integrating C2PA Content Credentials into the Pixel 10 camera and Google Photos, to help users distinguish between authentic,…

Explore Trending Topics