x86.se

3 Min Read

June 22, 2026

Canada’s Spy Agency Used First-of-Its-Kind Warrant to Clean Botnet-Infected Devices

Canada's spy service got a judge's permission to reach into infected servers, home routers, and IoT gear sitting on Canadian soil and neutralize two forei…

3 Min Read

June 22, 2026

AryStinger Malware Infects 4,300 Legacy Routers to Build Reconnaissance Proxy Network

A new malware family is turning forgotten home routers into a…

2 Min Read

June 22, 2026

INTERPOL Warns Phishing, Ransomware, and AI Scams Are Rising Across Asia-Pacific

A new report from INTERPOL has revealed a "dramatic increase" in…

2 Min Read

June 20, 2026

Hackers Exploit Gravity SMTP WordPress Plugin Bug to Expose API Keys

Threat actors are exploiting a recently patched security flaw impacting…

8 Min Read

September 16, 2025

RevengeHotels: a new wave of attacks leveraging LLMs and VenomRAT

Background RevengeHotels, also known as TA558, is a threat group that has been active since 2015, stealing credit card data from hotel guests…

0 Min Read

September 16, 2025

API Threats Surge to 40,000 Incidents in 1H 2025

The financial services, telecoms and travel sectors were in the crosshairs of threat actors in the first half of the year, after Thales…

0 Min Read

September 16, 2025

FinWise Bank Warns of Insider Data Breach

A US fintech player has notified customers that their personal information may have been compromised after a former employee accessed it. The…

2 Min Read

September 16, 2025

0-Click Linux Kernel KSMBD RCE Exploit From N-Day Vulnerabilities

A 0-Click Linux Kernel KSMBD RCE Exploit From N-Day Vulnerabilities, achieving remote code execution on a two-year-out-of-date Linux 6.1.45…

3 Min Read

September 16, 2025

Phoenix RowHammer Attack Bypasses Advanced DDR5 Memory Protections in 109 Seconds

A team of academics from ETH Zürich and Google has discovered a new variant of a RowHammer attack targeting Double Data Rate 5 (DDR5)…

2 Min Read

September 16, 2025

New Phoenix Rowhammer Attack Variant Bypasses Protection With DDR5 Chips

A new Rowhammer attack variant named Phoenix can bypass the latest protections in modern DDR5 memory chips, researchers have revealed. The…

2 Min Read

September 16, 2025

40 npm Packages Compromised in Supply Chain Attack Using bundle.js to Steal Credentials

Cybersecurity researchers have flagged a fresh software supply chain attack targeting the npm registry that has affected more than 40 packages…

1 Min Read

September 16, 2025

OpenAI's new GPT-5 Codex model takes on Claude Code

OpenAI is rolling out the GPT-5 Codex model to all Codex instances, including Terminal, IDE extension, and Codex Web (chatgpt.com/codex).…

2 Min Read

September 15, 2025

Google confirms fraudulent account created in law enforcement portal

Google has confirmed that hackers created a fraudulent account in its Law Enforcement Request System (LERS) platform that law enforcement uses…

3 Min Read

September 15, 2025

Mustang Panda Deploys SnakeDisk USB Worm to Deliver Yokai Backdoor on Thailand IPs

The China-aligned threat actor known as Mustang Panda has been observed using an updated version of a backdoor called TONESHELL and a…

Security

2 Min Read

September 15, 2025

FinWise insider breach impacts 689K American First Finance customers

FinWise Bank is warning on behalf of corporate customers that it suffered a data breach after a former employee accessed sensitive files after…

Security

3 Min Read

September 15, 2025

New Phoenix attack bypasses Rowhammer defenses in DDR5 memory

Academic researchers have devised a new variant of Rowhammer attacks that bypass the latest protection mechanisms on DDR5 memory chips from SK…

2 Min Read

September 15, 2025

Microsoft: Exchange 2016 and 2019 reach end of support in 30 days

Microsoft has reminded administrators again that Exchange 2016 and Exchange 2019 will reach the end of extended support next month and…

Microsoft

2 Min Read

September 15, 2025

Microsoft to force install the Microsoft 365 Copilot app in October

Next month, Microsoft will begin automatically installing the Microsoft 365 Copilot app on Windows devices outside of the EEA region that have…

2 Min Read

September 15, 2025

HybridPetya Mimics NotPetya, Adds UEFI Compromise

A newly identified ransomware strain called HybridPetya has appeared on the VirusTotal platform. Uploaded in February 2025, the sample showed…

9 Min Read

September 15, 2025

Securing Linux Systems in the Age of AI: Unified Security Strategies for Modern Enterprises

Introduction In the rapidly evolving landscape of cybersecurity, the integration of Artificial Intelligence (AI) has emerged as a…

0 Min Read

September 15, 2025

SEO Poisoning Targets Chinese Users with Fake Software Sites

A search engine optimization (SEO) poisoning attack aimed at Chinese-speaking Microsoft Windows users has been identified by security…

Microsoft

2 Min Read

September 15, 2025

Microsoft fixes Windows 11 audio issues confirmed in December

Microsoft has removed a safeguard hold that prevented some users from upgrading their systems to Windows 11 24H2 due to compatibility issues…

4 Min Read

September 15, 2025

Preparing for the EU’s DORA amidst Technical Controls Ambiguity

The financial sector is bracing for a significant shift in its digital landscape as the EU’s Digital Operational Resilience Act (DORA)…

Microsoft

2 Min Read

September 15, 2025

Microsoft says Windows September updates break SMBv1 shares

Microsoft has confirmed that the September 2025 Windows security updates are causing connection issues to Server Message Block (SMB) v1…

2 Min Read

September 15, 2025

AI-Forged Military IDs Used in North Korean Phishing Attack

A North Korean threat actor has leveraged AI to create fake South Korean military agency ID card images used in a spear-phishing campaign,…

3 Min Read

September 15, 2025

6 Browser-Based Attacks Security Teams Need to Prepare For Right Now

Attacks that target users in their web browsers have seen an unprecedented rise in recent years. In this article, we'll explore what a…

24 Min Read

September 15, 2025

⚡ Weekly Recap: Bootkit Malware, AI-Powered Attacks, Supply Chain Breaches, Zero-Days & More

In a world where threats are persistent, the modern CISO's real job isn't just to secure technology—it's to preserve institutional trust…

Vulnerabilities

2 Min Read

September 15, 2025

Critical LangChainGo Vulnerability Let Attackers Access Sensitive Files by Injecting Malicious Prompts

A high-severity vulnerability was identified in LangChainGo, the Go implementation of the popular LLM orchestration framework LangChain. …

2 Min Read

September 15, 2025

CVE-2025-58434: Critical FlowiseAI Flaw Enables Full Account Takeover

A severe security vulnerability has been discovered in FlowiseAI, an open-source AI workflow automation tool, exposing users to the risk of…

2 Min Read

September 15, 2025

OpenAI’s New Grove Incubator Is Building the Next Generation of AI Startups

OpenAI recently unveiled its internal incubation initiative, OpenAI Grove. Unlike traditional startup accelerators or incubator programs,…

2 Min Read

September 15, 2025

IBM QRadar SIEM Vulnerability Let Attackers Perform Unauthorized Actions

A critical permission misconfiguration in the IBM QRadar Security Information and Event Management (SIEM) platform could allow local…

Ransomware

2 Min Read

September 15, 2025

CISA at Risk After OIG Accuses it of Wasting Federal Funds

The US Cybersecurity and Infrastructure Security Agency (CISA) wasted taxpayers’ money and imperilled its mission to protect the nation from…

2 Min Read

September 15, 2025

Phishing Campaigns Drop RMM Tools for Remote Access

Malicious actors are using multiple lures in new phishing campaigns designed to install remote monitoring and management (RMM) software onto…

2 Min Read

September 15, 2025

Samsung Zero-Day Exploit CVE-2025-21043 Patched After Active Attacks on Android Devices

Samsung has released security updates to patch a critical zero-day vulnerability actively exploited against Android devices. Tracked as…

7 Min Read

September 15, 2025

ACR Stealer – Uncovering Attack Chains, Functionalities And IOCs

ACR Stealer represents one of the most sophisticated information-stealing malware families actively circulating in 2025, distinguished by its…

3 Min Read

September 15, 2025

AI-Powered Villager Pen Testing Tool Hits 11,000 PyPI Downloads Amid Abuse Concerns

A new artificial intelligence (AI)-powered penetration testing tool linked to a China-based company has attracted nearly 11,000 downloads on…

3 Min Read

September 15, 2025

FlowiseAI Password Reset Token Vulnerability Allows Account Takeover

A critical vulnerability affecting FlowiseAI’s Flowise platform has been disclosed, revealing a severe authentication bypass flaw that…

2 Min Read

September 15, 2025

HiddenGh0st, Winos and kkRAT Exploit SEO, GitHub Pages in Chinese Malware Attacks

Chinese-speaking users are the target of a search engine optimization (SEO) poisoning campaign that uses fake software sites to distribute…

2 Min Read

September 15, 2025

Linux CUPS Vulnerability Let Attackers Remote DoS and Bypass Authentication

Two critical vulnerabilities have been discovered in the Linux Common Unix Printing System (CUPS), exposing millions of systems to remote…

2 Min Read

September 15, 2025

PoC Available: FlowiseAI Flaw (CVE-2025-58434) Allows Full Account Takeover (CVSS 9.8)

The open-source generative AI development platform FlowiseAI, widely used for building AI agents and LLM workflows, has been found vulnerable…

2 Min Read

September 15, 2025

Digiever NVR Flaws (CVE-2025-10264, CVE-2025-10265) Let Hackers Steal Credentials & Take Control

The Taiwan Computer Emergency Response Team (TWCERT/CC) has issued a vulnerability note warning of two critical security flaws in…

2 Min Read

September 15, 2025

CVE-2025-9556 (CVSS 9.8):Critical Vulnerability in LangChainGo Puts LLM Apps at Risk

The rise of large language model (LLM) applications has made frameworks like LangChain and its ports foundational for developers worldwide.…

3 Min Read

September 15, 2025

Phishing Wave Hits U.S. Energy Giants: Chevron, ConocoPhillips Targeted

The U.S. energy industry has become a prime target for large-scale phishing operations in 2025, according to new research from Hunt…

2 Min Read

September 14, 2025

Samsung Fixes Image Parsing Vulnerability Exploited in Android Attacks

Samsung has patched a serious security vulnerability that hackers were already using in live attacks against its Android devices. The issue,…

Security

3 Min Read

September 14, 2025

FBI warns of UNC6040, UNC6395 hackers stealing Salesforce data

The FBI has issued a FLASH alert warning that two threat clusters, tracked as UNC6040 and UNC6395, are compromising organizations’…

5 Min Read

September 14, 2025

Beyond the Firewall: Protecting Your Marketing Department from Cyber Threats and Safeguarding Digital Assets

Digital media created more opportunities for companies to engage with consumers than ever before, but such increased interconnectedness has a…

Explore Trending Topics