Latest Cybersecurity News
Daily updates from the DAPSSA news desk.
Featured
Dashlane Discloses Brute-Force Attack, Encrypted Vaults of Fewer Than 20 Users Downloaded
2026-06-02T07:08:24.686Z |
Recent Posts
Dutch Authorities Dismantle Botnet Linked to 17 Million Infected Devices
2026-06-01T07:29:09.356Z |
PAN-OS GlobalProtect Authentication Bypass (CVE-2026-0257) Under Active Exploitation
2026-05-31T06:39:49.686Z |
ChatGPhish Vulnerability Turns ChatGPT Web Summaries Into a Phishing Surface
2026-05-30T06:00:35.624Z |
Critical Gogs RCE Vulnerability Lets Any Authenticated User Execute Arbitrary Code
2026-05-29T06:38:00.940Z |
Grandoreiro Malware and BTMOB RAT Campaigns Target Windows and Android Users
2026-05-28T06:36:42.515Z |
MuddyWater Uses DLL Side-Loading in Espionage Campaign Targeting 9 Countries
2026-05-27T06:45:34.070Z |
KnowledgeDeliver LMS Flaw Exploited to Deploy Godzilla and Cobalt Strike
2026-05-26T06:31:07.786Z |
npm Adds 2FA-Gated Publishing and Package Install Controls Against Supply Chain Attacks
2026-05-25T06:51:58.605Z |
npm Adds 2FA-Gated Publishing and Package Install Controls Against Supply Chain Attacks
2026-05-24T06:21:50.256Z |
First VPN Dismantled in Global Takedown Over Use by 25 Ransomware Groups
2026-05-23T05:52:20.740Z |
Cisco Patches CVSS 10.0 Secure Workload REST API Flaw Enabling Data Access
2026-05-22T06:31:10.872Z |
GitHub Internal Repositories Breached via Malicious Nx Console VS Code Extension
2026-05-21T06:34:25.572Z |
Grafana GitHub Breach Exposes Source Code via TanStack npm Attack
2026-05-20T06:32:29.408Z |
GitHub Actions Supply Chain Attack Redirects Tags to Steal CI/CD Credentials
2026-05-19T06:32:20.700Z |
NGINX CVE-2026-42945 Exploited in the Wild, Causing Worker Crashes and Possible RCE
2026-05-18T06:37:18.471Z |
Funnel Builder Flaw Under Active Exploitation Enables WooCommerce Checkout Skimming
2026-05-17T06:00:39.317Z |
Turla Turns Kazuar Backdoor Into Modular P2P Botnet for Persistent Access
2026-05-16T05:40:00.211Z |
CISA Adds Cisco SD-WAN CVE-2026-20182 to KEV After Admin Access Exploits
2026-05-15T06:08:30.460Z |
Microsoft's MDASH AI System Finds 16 Windows Flaws Fixed in Patch Tuesday
2026-05-14T06:02:00.402Z |
New Exim BDAT Vulnerability Exposes GnuTLS Builds to Potential Code Execution
2026-05-13T06:02:30.188Z |
TeamPCP Compromises Checkmarx Jenkins AST Plugin Weeks After KICS Supply Chain Attack
2026-05-12T05:52:00.381Z |
Ollama Out-of-Bounds Read Vulnerability Allows Remote Process Memory Leak
2026-05-11T06:13:09.016Z |
cPanel, WHM Release Fixes for Three New Vulnerabilities — Patch Now
2026-05-10T05:49:01.240Z |
TCLBANKER Banking Trojan Targets Financial Platforms via WhatsApp and Outlook Worms
2026-05-09T05:34:57.764Z |
Ivanti EPMM CVE-2026-6973 RCE Under Active Exploitation Grants Admin-Level Access
2026-05-08T05:16:12.359Z |
vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution
2026-05-07T05:45:38.663Z |
Critical Apache HTTP/2 Flaw (CVE-2026-23918) Enables DoS and Potential RCE
2026-05-06T05:42:49.491Z |
Phishing Campaign Hits 80+ Orgs Using SimpleHelp and ScreenConnect RMM Tools
2026-05-05T05:27:32.861Z |
CISA Adds Actively Exploited Linux Root Access Bug CVE-2026-31431 to KEV
2026-05-04T05:48:41.117Z |
Trellix Confirms Source Code Breach With Unauthorized Repository Access
2026-05-03T05:42:45.811Z |
30,000 Facebook Accounts Hacked via Google AppSheet Phishing Campaign
2026-05-02T05:22:51.100Z |
PyTorch Lightning and Intercom-client Hit in Supply Chain Attacks to Steal Credentials
2026-05-01T05:53:24.769Z |
SAP-Related npm Packages Compromised in Credential-Stealing Supply Chain Attack
2026-04-30T05:43:53.065Z |
Researchers Discover Critical GitHub CVE-2026-3854 RCE Flaw Exploitable via Single Git Push
2026-04-29T05:39:11.799Z |
Checkmarx Confirms GitHub Repository Data Posted on Dark Web After March 23 Attack
2026-04-28T05:44:01.974Z |
Researchers Uncover Pre-Stuxnet ‘fast16’ Malware Targeting Engineering Software
2026-04-27T05:38:48.869Z |
Researchers Uncover Pre-Stuxnet ‘fast16’ Malware Targeting Engineering Software
2026-04-26T05:24:27.495Z |
FIRESTARTER Backdoor Hit Federal Cisco Firepower Device, Survives Security Patches
2026-04-25T04:59:25.919Z |
UNC6692 Impersonates IT Helpdesk via Microsoft Teams to Deploy SNOW Malware
2026-04-24T05:20:58.491Z |
Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain
2026-04-23T05:15:46.272Z |
SystemBC C2 Server Reveals 1,570+ Victims in The Gentlemen Ransomware Operation
2026-04-22T05:12:22.608Z |
SGLang CVE-2026-5760 (CVSS 9.8) Enables RCE via Malicious GGUF Model Files
2026-04-21T05:13:47.499Z |
Vercel Breach Tied to Context AI Hack Exposes Limited Customer Credentials
2026-04-20T05:25:44.899Z |
[Webinar] Eliminate Ghost Identities Before They Expose Your Enterprise Data
2026-04-19T05:15:19.043Z |
Three Microsoft Defender Zero-Days Actively Exploited; Two Still Unpatched
2026-04-18T04:55:36.035Z |
Apache ActiveMQ CVE-2026-34197 Added to CISA KEV Amid Active Exploitation
2026-04-17T05:15:19.464Z |
n8n Webhooks Abused Since October 2025 to Deliver Malware via Phishing Emails
2026-04-16T05:16:09.198Z |
New PHP Composer Flaws Enable Arbitrary Command Execution — Patches Released
2026-04-15T05:10:51.541Z |
JanelaRAT Malware Targets Latin American Banks with 14,739 Attacks in Brazil in 2025
2026-04-14T05:10:23.313Z |
CPUID Breach Distributes STX RAT via Trojanized CPU-Z and HWMonitor Downloads
2026-04-13T05:26:59.206Z |
Citizen Lab: Law Enforcement Used Webloc to Track 500 Million Devices via Ad Data
2026-04-12T05:10:53.839Z |
GlassWorm Campaign Uses Zig Dropper to Infect Multiple Developer IDEs
2026-04-11T04:33:34.603Z |
EngageLab SDK Flaw Exposed 50M Android Users, Including 30M Crypto Wallets
2026-04-10T05:11:59.712Z |
New Chaos Variant Targets Misconfigured Cloud Deployments, Adds SOCKS Proxy
2026-04-09T04:57:13.039Z |
Russian State-Linked APT28 Exploits SOHO Routers in Global DNS Hijacking Campaign
2026-04-08T04:59:55.593Z |
Russian State-Linked APT28 Exploits SOHO Routers in Global DNS Hijacking Campaign
2026-04-07T17:40:20.753Z |
Docker CVE-2026-34040 Lets Attackers Bypass Authorization and Gain Host Access
2026-04-07T17:18:46.690Z |
Iran-Linked Password-Spraying Campaign Targets 300+ Israeli Microsoft 365 Organizations
2026-04-07T04:58:00.825Z |
$285 Million Drift Hack Traced to Six-Month DPRK Social Engineering Operation
2026-04-06T05:10:28.186Z |
China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing
2026-04-05T05:00:15.037Z |
China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing
2026-04-04T04:29:40.066Z |
Feds Disrupt IoT Botnets Behind Huge DDoS Attacks
2026-04-03T18:55:34.885Z | 2 min
‘CanisterWorm’ Springs Wiper Attack Targeting Iran
2026-04-03T18:55:32.884Z | 2 min
China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing
2026-04-03T18:55:30.660Z | 2 min
Microsoft Details Cookie-Controlled PHP Web Shells Persisting via Cron on Linux Servers
2026-04-03T17:48:16.562Z |
Citizen Lab Finds Cellebrite Tool Used on Kenyan Activist’s Phone in Police Custody
2026-02-18 | 3 minutes