DAPSSA – Decoding the Cyber World

Apache ActiveMQ CVE-2026-34197 Added to CISA KEV Amid Active Exploitation

2026-04-17T05:15:19.464Z |

n8n Webhooks Abused Since October 2025 to Deliver Malware via Phishing Emails

2026-04-16T05:16:09.198Z |

New PHP Composer Flaws Enable Arbitrary Command Execution — Patches Released

2026-04-15T05:10:51.541Z |

JanelaRAT Malware Targets Latin American Banks with 14,739 Attacks in Brazil in 2025

2026-04-14T05:10:23.313Z |

CPUID Breach Distributes STX RAT via Trojanized CPU-Z and HWMonitor Downloads

2026-04-13T05:26:59.206Z |

Citizen Lab: Law Enforcement Used Webloc to Track 500 Million Devices via Ad Data

2026-04-12T05:10:53.839Z |

GlassWorm Campaign Uses Zig Dropper to Infect Multiple Developer IDEs

2026-04-11T04:33:34.603Z |

EngageLab SDK Flaw Exposed 50M Android Users, Including 30M Crypto Wallets

2026-04-10T05:11:59.712Z |

New Chaos Variant Targets Misconfigured Cloud Deployments, Adds SOCKS Proxy

2026-04-09T04:57:13.039Z |

Russian State-Linked APT28 Exploits SOHO Routers in Global DNS Hijacking Campaign

2026-04-08T04:59:55.593Z |

Russian State-Linked APT28 Exploits SOHO Routers in Global DNS Hijacking Campaign

2026-04-07T17:40:20.753Z |

Docker CVE-2026-34040 Lets Attackers Bypass Authorization and Gain Host Access

2026-04-07T17:18:46.690Z |

Iran-Linked Password-Spraying Campaign Targets 300+ Israeli Microsoft 365 Organizations

2026-04-07T04:58:00.825Z |

$285 Million Drift Hack Traced to Six-Month DPRK Social Engineering Operation

2026-04-06T05:10:28.186Z |

China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing

2026-04-05T05:00:15.037Z |

China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing

2026-04-04T04:29:40.066Z |

Feds Disrupt IoT Botnets Behind Huge DDoS Attacks

2026-04-03T18:55:34.885Z | 2 min

‘CanisterWorm’ Springs Wiper Attack Targeting Iran

2026-04-03T18:55:32.884Z | 2 min

China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing

2026-04-03T18:55:30.660Z | 2 min

Microsoft Details Cookie-Controlled PHP Web Shells Persisting via Cron on Linux Servers

2026-04-03T17:48:16.562Z |

Citizen Lab Finds Cellebrite Tool Used on Kenyan Activist’s Phone in Police Custody

2026-02-18 | 3 minutes

Latest Cybersecurity News

Three Microsoft Defender Zero-Days Actively Exploited; Two Still Unpatched

Recent Posts

Apache ActiveMQ CVE-2026-34197 Added to CISA KEV Amid Active Exploitation

n8n Webhooks Abused Since October 2025 to Deliver Malware via Phishing Emails

New PHP Composer Flaws Enable Arbitrary Command Execution — Patches Released

JanelaRAT Malware Targets Latin American Banks with 14,739 Attacks in Brazil in 2025

CPUID Breach Distributes STX RAT via Trojanized CPU-Z and HWMonitor Downloads

Citizen Lab: Law Enforcement Used Webloc to Track 500 Million Devices via Ad Data

GlassWorm Campaign Uses Zig Dropper to Infect Multiple Developer IDEs

EngageLab SDK Flaw Exposed 50M Android Users, Including 30M Crypto Wallets

New Chaos Variant Targets Misconfigured Cloud Deployments, Adds SOCKS Proxy

Russian State-Linked APT28 Exploits SOHO Routers in Global DNS Hijacking Campaign

Russian State-Linked APT28 Exploits SOHO Routers in Global DNS Hijacking Campaign

Docker CVE-2026-34040 Lets Attackers Bypass Authorization and Gain Host Access

Iran-Linked Password-Spraying Campaign Targets 300+ Israeli Microsoft 365 Organizations

$285 Million Drift Hack Traced to Six-Month DPRK Social Engineering Operation

China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing

China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing

Feds Disrupt IoT Botnets Behind Huge DDoS Attacks

‘CanisterWorm’ Springs Wiper Attack Targeting Iran

China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing

Microsoft Details Cookie-Controlled PHP Web Shells Persisting via Cron on Linux Servers

Citizen Lab Finds Cellebrite Tool Used on Kenyan Activist’s Phone in Police Custody

Three Microsoft Defender Zero-Days Actively Exploited; Two Still Unpatched

Recent Posts

Apache ActiveMQ CVE-2026-34197 Added to CISA KEV Amid Active Exploitation

n8n Webhooks Abused Since October 2025 to Deliver Malware via Phishing Emails

New PHP Composer Flaws Enable Arbitrary Command Execution — Patches Released

JanelaRAT Malware Targets Latin American Banks with 14,739 Attacks in Brazil in 2025

CPUID Breach Distributes STX RAT via Trojanized CPU-Z and HWMonitor Downloads

Citizen Lab: Law Enforcement Used Webloc to Track 500 Million Devices via Ad Data

GlassWorm Campaign Uses Zig Dropper to Infect Multiple Developer IDEs

EngageLab SDK Flaw Exposed 50M Android Users, Including 30M Crypto Wallets

New Chaos Variant Targets Misconfigured Cloud Deployments, Adds SOCKS Proxy

Russian State-Linked APT28 Exploits SOHO Routers in Global DNS Hijacking Campaign

Russian State-Linked APT28 Exploits SOHO Routers in Global DNS Hijacking Campaign

Docker CVE-2026-34040 Lets Attackers Bypass Authorization and Gain Host Access

Iran-Linked Password-Spraying Campaign Targets 300+ Israeli Microsoft 365 Organizations

$285 Million Drift Hack Traced to Six-Month DPRK Social Engineering Operation

China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing

China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing

Feds Disrupt IoT Botnets Behind Huge DDoS Attacks

&#8216;CanisterWorm&#8217; Springs Wiper Attack Targeting Iran

China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing

Microsoft Details Cookie-Controlled PHP Web Shells Persisting via Cron on Linux Servers

Citizen Lab Finds Cellebrite Tool Used on Kenyan Activist’s Phone in Police Custody

‘CanisterWorm’ Springs Wiper Attack Targeting Iran