Threat actors are actively exploiting a critical security flaw impacting an open-source content management system (CMS) known as MetInfo, according to new findings from VulnCheck. The vulnerability in question is CVE-2026-29014 (CVSS score: 9.8), a code injection flaw that could result in arbitrary Source: The Hacker News
A sophisticated China-nexus advanced persistent threat (APT) group has been attributed to attacks targeting government entities in South America since at least late 2024 and government agencies in southeastern Europe in 2025. The activity is being tracked by Cisco Talos under the moniker UAT-8302, w Source: The Hacker News
pnpm 11 introduces a new default security feature to combat supply chain attacks in the npm ecosystem. This update enables a minimum release age for packages, directly addressing the risk of malicious code injection into developer environments. The move aims to enhance security protections and reduce the overall attack surface for software development. Source: Cybersecurity […]
A security researcher has uncovered a critical vulnerability in Microsoft Edge, revealing that the browser decrypts and stores all saved passwords in cleartext process memory upon launch. This exposure occurs regardless of user activity, making credentials susceptible to memory scraping attacks. The flaw, disclosed by PaloAltoNtwks Norway, highlights a significant risk to user data. Source: […]
India's CERT-In has issued a warning regarding the increasing prevalence of AI-driven cyber threats. The advisory specifically highlights concerns related to a potential threat named 'Mythos'. This alert underscores the evolving landscape of cyber risks powered by artificial intelligence. Source: Cityairnews
Amazon's Simple Email Service (SES) is being exploited by threat actors to launch sophisticated phishing campaigns. These malicious emails are designed to bypass standard security filters and render traditional reputation-based blocking mechanisms ineffective. The technique allows attackers to deliver highly convincing phishing messages directly to inboxes, increasing the risk of compromise. Source: BleepingComputer
Cybersecurity firm Trellix has disclosed a data breach after attackers gained access to a portion of its source code repository. This incident involves unauthorized access to the company's internal development environment. The breach underscores the critical need for robust supply chain security and continuous monitoring of vendor risks. Source: BleepingComputer
A recent report indicates a significant surge in credential theft attempts targeting Indian IT firms. Over 265 million detections of credential theft were recorded, highlighting a widespread and persistent threat landscape. This increase emphasizes the urgent need for enhanced cybersecurity measures, particularly around remote access and identity management. Source: Thehawk
India's cybersecurity agency has issued a warning about emerging AI capabilities. Anthropic's Mythos AI is reportedly compressing the timeline between identifying software flaws and developing functional exploits. This acceleration poses a significant new challenge for cybersecurity defenses, potentially increasing the speed and impact of cyber attacks. Source: Techinasia
India's CERT-In has issued a high-severity advisory concerning the 'Mythos' threat, which officials deem unprecedented. The directive urges all organizations to treat this threat with extreme caution and implement robust security measures. This development occurs as Anthropic introduces its Claude Security offering, highlighting growing concerns around advanced threats. Source: MediaNama
ESET has announced the establishment of a dedicated entity in India, aiming to bolster its long-term growth strategy across the APAC region. This move comes as India's cybersecurity landscape experiences a significant increase in complexity and threats, including ransomware. The new entity will enable ESET to better serve the growing demand for robust cybersecurity solutions […]
Progress Software has issued a critical security bulletin for its MOVEit Automation platform, detailing two highly severe vulnerabilities. These flaws could enable attackers to bypass security checkpoints and gain full system control over affected systems. The vulnerabilities pose a significant risk given MOVEit Automation's widespread use for secure enterprise file transfers. Source: Cybersecurity News
CISA has issued a warning regarding the active exploitation of the 'Copy Fail' Linux security vulnerability. Threat actors are leveraging a recently disclosed proof-of-concept exploit to gain root access to affected systems. This critical flaw allows attackers to take full control of vulnerable Linux machines. Source: BleepingComputer
Microsoft has confirmed that its April 2026 security updates are causing significant failures in third-party backup applications. The issue specifically affects software utilizing the psmounterex.sys driver, leading to operational disruptions. Organizations relying on these backup solutions should be aware of the problem and monitor for official resolutions from Microsoft. Source: BleepingComputer
Over 40,000 servers have been compromised due to ongoing exploitation of a cPanel vulnerability. The attacks are targeting CVE-2026-41940, a recently patched zero-day flaw. This vulnerability grants administrative access to affected systems, posing a significant risk. Source: Security Week
The Apache MINA project has released urgent security updates to address two critical vulnerabilities. These flaws could enable attackers to execute arbitrary code on affected systems. Developers are strongly advised to update their software immediately to prevent potential exploitation. Source: Cybersecurity News
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning regarding a critical security flaw in cPanel & WHM web hosting platforms. This vulnerability, tracked as CVE-2026-41940, has been added to CISA's Known Exploited Vulnerabilities (KEV) catalog, confirming active exploitation by threat actors. The flaw affects WebPros products and poses a significant […]
A new wave of cyberattacks is leveraging email bombing and fake IT support calls on Microsoft Teams to trick employees. These sophisticated phishing campaigns aim to gain remote access to user devices. Security researchers warn these attacks are increasing and pose a significant threat. Source: Cybersecurity News
Threat actors are now leveraging artificial intelligence to rapidly discover and exploit zero-day vulnerabilities. This shift enables them to identify and weaponize software flaws in minutes, fundamentally changing the speed of cyberattacks. Organizations across all sectors face heightened and accelerated risks from these AI-driven, machine-speed attacks. Source: Cybersecurity News
Microsoft Defender is erroneously identifying legitimate DigiCert root certificates as Trojan:Win32/Cerdigent.A!dha. This widespread false-positive issue is causing alerts and, in some instances, the removal of critical certificates from Windows systems. Operators must be aware of this issue to prevent unnecessary remediation or operational disruption. Source: BleepingComputer