SoundCloud Cyberattack Leaves 28M Users Exposed
The breach has already triggered widespread chaos across the platform, with users worldwide reporting connection failures and cryptic error messages....
widespread
React2Shell flaw (CVE-2025-55182) exploited for remote code execution
Sophos analysts are investigating the widespread exploitation of a critical vulnerability dubbed ‘React2Shell’ that affects React Server Components versions 19.0.0,...
JPCERT/CC Reports Widespread Exploitation of Array Networks AG Gateway Vulnerability
JPCERT/CC Reports Widespread Exploitation of Array Networks AG Gateway Vulnerability Pierluigi Paganini December 05, 2025 Array Networks AG gateways have...
Google Uses Courts, Congress to Counter Massive Smishing Campaign
Google is taking a multi-pronged approach to stopping a widespread global smishing operation that targeted more than a million...
Email Bombs Exploit Lax Authentication in Zendesk
Cybercriminals are abusing a widespread lack of authentication in the customer service platform Zendesk to flood targeted email inboxes with...
Researchers warn of widespread RDP attacks by 100K-node botnet
Researchers warn of widespread RDP attacks by 100K-node botnet Pierluigi Paganini October 14, 2025 A botnet of 100K+ IPs from...
European Airport Disruptions Caused by Ransomware: EU Cyber Office
The widespread disruptions at airports across Europe that started over the weekend and spilled into Monday was the result...
LastPass Warns of Fake Repositories Infecting macOS with Atomic Infostealer
Sep 20, 2025Ravie LakshmananSoftware Security / Malware LastPass is warning of an ongoing, widespread information stealer campaign targeting Apple macOS...
Counterfeit CAPTCHA PDFs Disseminate Lumma Stealer through Webflow, GoDaddy, and Alternative Domains
Security analysts have revealed an extensive phishing scheme that employs forged CAPTCHA visuals distributed via PDF files hosted on Webflow's...
Hackers Exploit CAPTCHA Technique to Circumvent Security Scanners in Webflow CDN PDFs
There has been a wide-ranging phishing scheme detected that is utilizing fake PDF files stored on the Webflow content distribution...
Recent “DoubleClickjacking” Breach Circumvents Safeguards Against Clickjacking on Prominent Websites
Security analysts have unveiled a fresh "ubiquitous timing-related security flaw" that exploits a dual-select method to enable clickjacking assaults and...
Matrix Botnet Exploiting IoT Gadgets in Extensive DDoS Botnet Operation
An individual known as Matrix has been connected to a broad distributed denial-of-service (DoD) operation that utilizes exploits and misconfigurations...
The Latest Method Through Which Intruders are Evading MFA: Session Hijacking 2.0
In circumventing widespread Multi-Factor Authentication (MFA) implementation, assailants are increasingly resorting to session hijacking. The statistics support this assertion, evident...
Session Encryption — A New Method That Intruders Use to Circumvent MFA
Thieves are progressively resorting to session encryption to evade extensive MFA implementation. The data provides evidence of this, such as:...
Is there an effective solution from Microsoft to avoid a situation like the one with CrowdStrike in the future?
According to the company's official website, the solution is widely adopted by leading global corporations. This includes 298 companies listed...
