A critical sandbox escape vulnerability has been disclosed in the popular vm2 Node.js library that, if successfully exploited, could allow attackers to run arbitrary code on the underlying...

Russians, Chinese spies, run-of-the-mill crims … Come one, come all. Everyone from Russian and Chinese government goons to financially motivated miscreants is exploiting a long-since-patched...

Cybersecurity researchers have disclosed two new security flaws in the n8n workflow automation platform, including a crucial vulnerability that could result in remote code execution. The...

Cyberattacks on health care not only pose increasing danger to hospitals and related facilities with “the massive, unpredictable cost of systemic operational failure” but have caused “lethal”...

If you work in security operations, the concept of the AI SOC agent is likely familiar. Early narratives promised total autonomy. Vendors seized on the idea of the "Autonomous SOC" and suggested a...

Threat actors with ties to China have been observed using an updated version of a backdoor called COOLCLIENT in cyber espionage attacks in 2025 to facilitate comprehensive data theft from infected...

​ The post Cyber Security Report 2026 appeared first on Check Point Research.

More work for admins on the cards as they await a full dump of fixes Things aren't over yet for Fortinet customers – the security shop has disclosed yet another critical FortiCloud SSO vulnerability.…

The U.S. Coast Guard’s Office of Maritime Cybersecurity Policy released a new guide, Work Instruction 001- Cybersecurity Training Verification Job Aid, to provide a clear and standardized...

When security teams discuss credential-related risk, the focus typically falls on threats such as phishing, malware, or ransomware. These attack methods continue to evolve and rightly command...

Today even small government agencies are under attack. How can they defend themselves?

WASHINGTON — Future cyberattacks on U.S. critical infrastructure may not involve ransom notes or obvious system lockouts. Instead, they could resemble standard daily operations right up until they...

Google on Tuesday revealed that multiple threat actors, including nation-state adversaries and financially motivated groups, are exploiting a now-patched critical security flaw in RARLAB WinRAR to...

Cybersecurity researchers have discovered two malicious packages in the Python Package Index (PyPI) repository that masquerade as spellcheckers but contain functionality to deliver a remote access...

FortiGuard Labs analyzes EncystPHP, a stealthy web shell exploiting CVE-2025-64328 in FreePBX environments to enable remote command execution, persistence, and long-term system compromise

Introduction This week Google and partners took action to disrupt what we believe is one of the largest residential proxy networks in the world, the IPIDEA proxy network. IPIDEA’s proxy...

Adding to previous research about an operation against Poland's electrical grid, analysts at Dragos say it affected dozens of facilities and disrupted operational technology.

Google researcher sits on UAC bypass for ages, only for it to become valid with new security feature Microsoft patched a bevy of bugs that allowed bypasses of Windows Administrator Protection...

A coding error, possibly introduced thanks to over-reliance on artificial intelligence (AI) vibe coding tools, has rendered an emergent strain of ransomware an acutely dangerous threat, according...

Cyble Vulnerability Intelligence researchers tracked 1,031 vulnerabilities in the last week, and nearly 200 already have a publicly available Proof-of-Concept (PoC), significantly increasing the...

Fortinet has begun releasing security updates to address a critical flaw impacting FortiOS that has come under active exploitation in the wild. The vulnerability, assigned the CVE identifier...

ESET researchers discover an Android spyware campaign targeting users in Pakistan via romance scam tactics, revealing links to a broader spy operation

Multiple vulnerabilities have been discovered in SolarWinds Web Help Desk, the most severe of which could allow for arbitrary code execution. SolarWinds Web Help Desk (WHD) is a web-based software...

Vietnam-based cybercrime actor appears to now be using AI to write scripts used in phishing campaigns

An alleged data breach involving Jabarprov was reported on January 25, 2026. Learn about the incident details, impact on customers, and recommended security measures.

The Bottom Line Up Front: Privacy as a Moat: In 2026, privacy is no longer a legal “tax”; it’s a competitive advantage that accelerates sales and builds brand equity. The End of Data Hoarding:...

The Bottom Line Up Front: Privacy as a Moat: In 2026, privacy is no longer a legal “tax”; it’s a competitive advantage that accelerates sales and builds brand equity. The End of Data Hoarding:...

Between December 2025 and January 2026, researchers uncovered a large-scale, systematic campaign targeting exposed large language model (LLM) and Model Context Protocol (MCP) infrastructure....

Nation-state groups are consistently exploiting the defect to target victims in military, government and technology for espionage. The post Cybercriminals and nation-state groups are exploiting a...

Meta on Tuesday announced it's adding Strict Account Settings on WhatsApp to secure certain users against advanced cyber attacks because of who they are and what they do. The feature, similar to...