Dark Reading

In Less Than 24 Hours, Attackers Weaponize Cisco CUCM Flaw

The flaw enables server-side request forgery (SSRF) and escalates privileges to root, impacting Cisco Unified CM and Unified ...

36 years ago, the best cyberpunk saga ever made got a second shot at a happy ending

Every compelling cyberpunk story makes space for a glimmer of hope. No matter how bleak or depressing things get in a hellish ...

The hits keep on coming for Cisco vulnerabilities

Switchzilla amid reports of new serious vulnerabilities under attack. First up is a server-side request forgery bug in its Unified Communications Manager tracked as CVE-2026-20230. Cisco disclosed and ...

Attacks on Cisco Unified CM observed

At the beginning of the month, Cisco patched a high-risk security vulnerability in Unified Communications Manager. Now it is ...
Tech Times

Stolen Passwords: Europol Seizes 27M Credentials in Infostealer Takedown

Operation Endgame malware takedown seized 326 servers, froze $47M in criminal cryptocurrency, and recovered 27 million stolen ...
Cybernews

Critical FFmpeg flaw discovered: just watching a video can fully compromise your system

A critical vulnerability in the FFmpeg media processing framework allows attackers to execute arbitrary code via malicious ...

Clean GitHub repo tricks AI coding agents into running malware

An agentic coding tool tasked with cloning and setting up a seemingly benign GitHub repository could execute a malicious ...
CSO Online

Hackers exploit critical PTC Windchill PLM software flaw

The popular product lifecycle management platform is under active exploitation for an RCE vulnerability that could put ...
SecurityWeek

Exploitable CI/CD Vulnerabilities Expose Millions of Repositories to Hijacking

Cordyceps, a systemic class of exploitable CI/CD vulnerabilities, allows unauthenticated attackers to hijack developer ...

Mule accounts decoded: The hidden banking layer behind cybercrime

Mule accounts have become a significant challenge for India's cybercrime enforcement agencies, as through these accounts the ...
SecurityWeek

In Other News: Chinese Mythos-Like AI, Tata Electronics Breach, Snyk Layoffs

Russia used Cellebrite to hack activist’s phone, Five Eyes issue urgent AI threat warning, macOS Gaslight backdoor, Scattered Spider guilty.

CISA sets urgent deadline to fix Cisco flaw exploited in attacks

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is giving federal agencies until Sunday to patch a ...