Security researchers have revealed a serious vulnerability affecting cPanel that could allow attackers to bypass authentication and gain access to server control panels. The issue impacts multiple authentication paths and affects all supported versions of cPanel and WebHost Manager. Attackers can exploit this flaw to log in without valid credentials, potentially taking control of hosting […]
Security researchers have identified a campaign involving 73 fake extensions for Visual Studio Code that are being used to distribute malware known as GlassWorm v2. These extensions were uploaded to the Open VSX marketplace and are designed to closely resemble legitimate tools. Many imitate the names, icons, and descriptions of real extensions, making it difficult […]
A powerful new artificial intelligence system developed by Anthropic is beginning to change how the world approaches cybersecurity, and this time the story is not about fear but progress. The model, known as Claude Mythos, has shown an extraordinary ability to identify hidden software vulnerabilities at a scale that was previously impossible. Rather than creating […]
A serious data exposure involving Fiverr has raised alarms after sensitive user files—including tax forms, contracts, IDs, and login credentials—were discovered publicly accessible through Google search results. The issue appears to stem from how files were stored and shared on the platform, rather than a traditional “hack,” but the consequences are just as concerning for […]
A newly uncovered security flaw in a widely used Android component has revealed how a single hidden weakness can quietly put millions of users in danger. The issue stems from the EngageLab SDK, a third party tool embedded in many apps to power push notifications and user engagement features. While it operates behind the scenes, […]
A massive and coordinated malware campaign has exposed just how dangerous seemingly harmless browser add-ons can be. Security researchers have identified 108 malicious Chrome extensions that were secretly stealing sensitive user data, hijacking sessions, and injecting harmful scripts, all while posing as useful everyday tools. At first glance, these extensions appeared legitimate. They advertised features […]
A major new cybersecurity warning has revealed that hundreds of millions of iPhones could be at risk from a powerful malware tool called DarkSword if they are not running the latest software. Researchers have found that hacker groups have been using it to silently break into vulnerable devices around the world. DarkSword works by chaining […]
A recently discovered security issue showed that hackers could secretly take sensitive information from ChatGPT conversations without users knowing. Security researchers found that hidden tricks could be used to quietly collect data from chats. The issue has now been fixed, but it highlights how even trusted AI tools can have hidden risks. The attack worked […]
A new type of malware called DeepLoad is being used by hackers to steal sensitive information, especially saved passwords from web browsers. This attack uses a trick known as “ClickFix,” where users are fooled into thinking they need to fix a problem on their computer. Instead, they are actually helping the malware get installed. The […]
Microsoft is warning about a new cyberattack where hackers are using WhatsApp messages to trick people into infecting their computers with malware. This campaign began around February 2026 and mainly targets Windows users by sending harmful files that look like normal attachments. The goal is to get someone to open the file so the attack […]