x86.se

11 Min Read

February 5, 2026

ThreatsDay Bulletin: Codespaces RCE, AsyncRAT C2, BYOVD Abuse, AI Cloud Intrusions & 15+ Stories

This week didn’t produce one big headline. It produced many small signals — the kind that quietly shape what attacks will look like next. Rese…

5 Min Read

February 5, 2026

The Buyer’s Guide to AI Usage Control

Today’s “AI everywhere” reality is woven into everyday…

4 Min Read

February 5, 2026

Infy Hackers Resume Operations with New C2 Servers After Iran Internet Blackout Ends

The elusive Iranian threat group known as Infy (aka Prince of Persia)…

4 Min Read

February 5, 2026

Critical n8n Flaw CVE-2026-25049 Enables System Command Execution via Malicious Workflows

A new, critical security vulnerability has been disclosed in the n8n…

3 Min Read

September 9, 2025

U.S. sanctions cyber scammers who stole billions from Americans

The U.S. Department of the Treasury has sanctioned several large networks of cyber scam operations in Southeast Asia, which stole over $10…

2 Min Read

September 9, 2025

Microsoft Patch Tuesday September 2025 Fixes Risky Kernel Flaws

Three high-risk Windows kernel flaws were among the fixes included in Microsoft’s September 2025 Patch Tuesday updates released today.…

1 Min Read

September 9, 2025

As hackers exploit one high-severity SAP flaw, company warns of 3 more

SecurityBridge warned that CVE-2025-42957 allowed hackers with minimal system rights to mount “a complete system compromise with minimal…

4 Min Read

September 9, 2025

Innovator Spotlight: Xcape

Continuous Vulnerability Management: The New Cybersecurity Imperative Security leaders are drowning in data but starving for actionable…

Security

2 Min Read

September 9, 2025

Hackers hide behind Tor in exposed Docker API breaches

A threat actor targeting exposed Docker APIs has updated its malicious tooling with more dangerous functionality that could lay the foundation…

6 Min Read

September 9, 2025

The September 2025 Security Update Review

There’s a crispness in the air – at least here in North America – and with it comes the latest security patches from Adobe…

Security

3 Min Read

September 9, 2025

Windows 10 KB5065429 update includes 14 changes and fixes

Microsoft has released the KB5065429 cumulative update for Windows 10 22H2 and Windows 10 21H2, with fourteen fixes or changes, including…

7 Min Read

September 9, 2025

Microsoft September 2025 Patch Tuesday fixes 81 flaws, two zero-days

Today is Microsoft’s September 2025 Patch Tuesday, which includes security updates for 81 flaws, including two publicly disclosed…

Microsoft

6 Min Read

September 9, 2025

Windows 11 KB5065426 & KB5065431 cumulative updates released

September 9, 2025 01:37 PM Microsoft has released Windows 11 KB5065426 and KB5065431 cumulative updates for versions 24H2…

Security

2 Min Read

September 9, 2025

Kosovo hacker pleads guilty to running BlackDB cybercrime marketplace

Kosovo national Liridon Masurica has pleaded guilty to running BlackDB.cc, a cybercrime marketplace that has been active since 2018. Kosovar…

7 Min Read

September 9, 2025

Microsoft September 2025 Patch Tuesday – 81 Vulnerabilities Fixed Including 22 RCE

Microsoft has released its September 2025 Patch Tuesday updates, addressing a total of 81 security vulnerabilities across its product suite.…

2 Min Read

September 9, 2025

Plex tells users to change passwords due to data breach, pushes server owners to upgrade

Media streaming company Plex has suffered a data breach and is urging users to reset their account password and enable two-factor…

Security

2 Min Read

September 9, 2025

US charges admin of LockerGoga, MegaCortex, Nefilim ransomware

The U.S. Department of Justice has charged Ukrainian national Volodymyr Viktorovich Tymoshchuk for his role as the administrator of the…

Security

2 Min Read

September 9, 2025

Adobe patches critical SessionReaper flaw in Magento eCommerce platform

Adobe is warning of a critical vulnerability (CVE-2025-54236) in its Commerce and Magento Open Source platforms that researchers call…

2 Min Read

September 9, 2025

FortiDDoS OS Command Injection Vulnerability Let Attackers Execute Unauthorized Commands

Fortinet has disclosed a medium-severity vulnerability in its FortiDDoS-F product line that could allow a privileged attacker to execute…

4 Min Read

September 9, 2025

Exploring Key Technology Trends for 2024

Fast forward to today, and the importance of staying current with the latest tech trends can’t be overstated – it’s the…

2 Min Read

September 9, 2025

Threat Actor Accidentally Exposes AI-Powered Operations

A threat actor has unintentionally revealed their methods and day-to-day activities after installing Huntress security software on their own…

2 Min Read

September 9, 2025

Critical Ivanti Endpoint Manager Vulnerabilities Let Attackers Execute Remote Code

Ivanti has released security updates to address two high-severity vulnerabilities in its Endpoint Manager (EPM) software that could allow…

4 Min Read

September 9, 2025

Axios Abuse and Salty 2FA Kits Fuel Advanced Microsoft 365 Phishing Attacks

Threat actors are abusing HTTP client tools like Axios in conjunction with Microsoft’s Direct Send feature to form a “highly…

Security

1 Min Read

September 9, 2025

How External Attack Surface Management helps enterprises manage cyber risk

Every day, businesses spin up new digital services (websites, APIs, and cloud instances) and it can be for security teams to keep track.…

2 Min Read

September 9, 2025

Zoom Security Update – Patch for Multiple Vulnerabilities in Clients for Windows and macOS

Zoom released a security update addressing multiple vulnerabilities in its software, including Zoom Workplace and various clients for Windows…

2 Min Read

September 9, 2025

Microsoft: Anti-spam bug blocks links in Exchange Online, Teams

Microsoft is working to resolve a known issue that causes an anti-spam service to mistakenly block Exchange Online and Microsoft Teams…

2 Min Read

September 9, 2025

Salty2FA Phishing Kit Unveils New Level of Sophistication

A phishing campaign leveraging the Salty2FA kit has been uncovered by cybersecurity researchers, revealing advanced techniques that highlight…

Security

2 Min Read

September 9, 2025

SAP fixes maximum severity NetWeaver command execution flaw

SAP has addressed 21 new vulnerabilities affecting its products, including three critical severity issues impacting the…

7 Min Read

September 9, 2025

Software Supply Chain Attacks

In today’s rapidly evolving business landscape, software supply chain attacks are becoming increasingly common—and more…

4 Min Read

September 9, 2025

Open Source Community Thwarts Massive npm Supply Chain Attack

A potential npm supply chain disaster was averted in record time after attackers took over a verified developer’s credentials. On September 8,…

2 Min Read

September 9, 2025

Axios User Agent Helps Automate Phishing on “Unprecedented Scale”

Security experts have warned of a huge uptick in automated phishing activity abusing the Axios user agent and Microsoft’s Direct Send…

3 Min Read

September 9, 2025

RatOn Android Malware Detected With NFC Relay and ATS Banking Fraud Capabilities

A new Android malware called RatOn has evolved from a basic tool capable of conducting Near Field Communication (NFC) relay attacks to a…

3 Min Read

September 9, 2025

SAP Security Patch Day September 2025 – 21 Vulnerabilities and 4 Critical One’s Patched

As part of its scheduled security maintenance, SAP released its September 2025 Patch Day notes, addressing a total of 21 new vulnerabilities…

Microsoft

2 Min Read

September 9, 2025

Microsoft testing new AI features in Windows 11 File Explorer

Microsoft is testing new File Explorer AI-powered features that will enable Windows 11 users to work with images and documents without needing…

2 Min Read

September 9, 2025

Magento and Adobe SessionReaper Vulnerability Exposes Thousands Of Online Stores to Attacks

Adobe has issued an emergency security patch for a critical vulnerability in its Magento and Adobe Commerce platforms, dubbed…

3 Min Read

September 9, 2025

SAP Patch Tuesday: Key Vulnerabilities in September 2025

The September 2025 SAP Patch Tuesday brings a critical batch of security updates addressing a diverse portfolio of vulnerabilities across…

2 Min Read

September 9, 2025

Chinese Cyber Espionage Campaign Impersonates US Congressman

US lawmakers have accused the Chinese government of being behind a cyber espionage campaign that impersonated a prominent Congressman. The…

Vulnerabilities

1 Min Read

September 9, 2025

Vulnerability in SMSEagle devices

CVE ID CVE-2025-10095 Publication date 09 September 2025 Vendor Proximus sp. z o.o. Product SMSEagle Vulnerable versions All before 6.11…

2 Min Read

September 9, 2025

Chinese Salt Typhoon and UNC4841 Hackers Teamed Up to Attack Government and Corporate Infrastructure

Cybersecurity researchers began tracking a sophisticated campaign in the closing months of 2024, targeting both government and corporate…

Artificial Intelligence

2 Min Read

September 9, 2025

[Webinar] Shadow AI Agents Multiply Fast — Learn How to Detect and Control Them

⚠️ One click is all it takes. An engineer spins up an “experimental” AI Agent to test a workflow. A business unit…

4 Min Read

September 9, 2025

From MostereRAT to ClickFix: New Malware Campaigns Highlight Rising AI and Phishing Risks

Cybersecurity researchers have disclosed details of a phishing campaign that delivers a stealthy banking malware-turned-remote access trojan…

Business Continuity

5 Min Read

September 9, 2025

How Leading CISOs are Getting Budget Approval

It’s budget season. Once again, security is being questioned, scrutinized, or deprioritized. If you’re a CISO or security leader,…

4 Min Read

September 9, 2025

TOR-Based Cryptojacking Attack Expands Through Misconfigured Docker APIs

Cybersecurity researchers have discovered a variant of a recently disclosed campaign that abuses the TOR network for cryptojacking attacks…

1 Min Read

September 9, 2025

CVE-2025-7350: Critical RCE Flaw in Rockwell Stratix Switches Scores CVSS 9.6

Ddos September 9, 2025 Rockwell Automation has issued a security advisory for a critical vulnerability in its Stratix industrial Ethernet…

2 Min Read

September 9, 2025

Salesloft: GitHub Account Breach Was Ground Zero in Drift Campaign

A major data theft campaign targeting Salesforce data via the Salesloft Drift app began after threat actors compromised a key GitHub account,…

2 Min Read

September 9, 2025

New Technique Uncovered To Exploit Linux Kernel Use-After-Free Vulnerability

A new technique to exploit a complex use-after-free (UAF) vulnerability in the Linux kernel successfully bypasses modern security…

Explore Trending Topics