Cybersecurity News & Threat Intel

“The Mother of All AI Supply Chain Flaws”: Critical MCP Vulnerability Exposes Millions to Remote Takeover

24 hours ago 0

A newly disclosed vulnerability at the heart of modern AI infrastructure is sending shockwaves across the cybersecurity industry raising urgent questions about how secure today’s...

The Hidden Infrastructure Fueling Mobile Proxy Abuse: Inside the Global SIM Farm Ecosystem Powering 4G/5G Fraud

Mobile & BYOD Security 35 minutes ago

Patch

Fortinet Patches Multiple Security Flaws Across Core Products, Including High-Severity Vulnerability in FortiSwitch

Fortinet has released a new batch of security advisories addressing multiple vulnerabilities across its enterprise security ecosystem, including FortiSwitch, FortiManager, FortiAnalyzer, and FortiSandbox Cloud....

Breaking news:

Mobile & BYOD Security

The Hidden Infrastructure Fueling Mobile Proxy Abuse: Inside the Global SIM Farm Ecosystem Powering 4G/5G Fraud

A sprawling global network of SIM farms masquerading as...

America

Insider Betrayal: Ransomware Negotiator Pleads Guilty to Aiding BlackCat Attacks

In a case that is sending shockwaves across the...

Stay on top of what's going on with our subscription deal!

Worldwide

AI & Cybersecurity

Humanitarian Aid Turned Weapon: UAC-0247 Cyberattacks Target Hospitals and Public Sector in Sophisticated Multi-Stage Campaign

A new wave of highly targeted cyberattacks is putting...

Patch

SAP Patch Day Alert: Critical SQL Injection Flaw (CVSS 9.9) Demands Immediate Action

SAP customers worldwide are facing a high-risk security moment...

Advanced Persistent Threat

Mirax Android Malware Emerges: Infected Devices Turned into Stealth Proxy Networks for Global Cybercrime

Security researchers have identified Mirax, a sophisticated Remote Access...

Network Security

Critical Alert: Palo Alto Networks Fixes High-Severity Flaw in Cortex XSOAR & XSIAM Microsoft Teams Integration

A newly disclosed vulnerability in Palo Alto Networks’ Cortex...

Cyberespionage Spying

Hack-for-Hire Espionage Exposed: BITTER-Linked Campaign Targets Civil Society with Mobile Spyware

A sophisticated hack-for-hire cyber espionage campaign targeting journalists, opposition...

Open Source Intelligence (OSINT)

“Contagious Interview” Campaign Infects Open-Source Ecosystems, Exposes New Supply Chain Threat

A sophisticated social engineering campaign disguised as job interviews...

Ransomware

The 24-Hour Hijack: How Storm-1175 Turns Your Unpatched Server Into a Ransomware Launchpad

There is a moment between the time a software...

Middle East

Iran-Linked Hackers Target Middle East Cloud Systems in Coordinated Password Spraying Campaign

The timing was anything but coincidental. On three separate...

Patch

Critical Cisco Vulnerability Exposes Systems to Remote Root-Level Attacks (CVE-2026-20160)

A newly disclosed critical vulnerability in Cisco Smart Software...

Worldwide

SentinelOne Annual Report – The New Cyber Battlefield: AI-Driven Attacks, Ransomware Evolution, and the Rise of Autonomous Threats

The global cyber threat landscape is entering a new...

Worldwide

NIST Just Rewrote the Rules on Cybersecurity Risk – And Your Workforce Is the Missing Piece

The U.S. National Institute of Standards and Technology has...

Europe

Russian Intelligence Targets Messaging Apps: Thousands of Accounts Compromised in Global Phishing Campaign

A new warning from the U.S. cybersecurity authorities has...

AI & Cybersecurity

“Claudy Day” Exposes Hidden Risks: Prompt Injection Flaw in Claude AI Enables Silent Data Exfiltration

A newly disclosed set of vulnerabilities in Claude AI,...

AI & Cybersecurity

Boggy Serpens Escalates Cyberespionage Campaigns with AI-Driven Malware and Trusted Account Hijacking

A newly published threat assessment by Palo Alto Networks...

Advanced Persistent Threat

Fake Telegram Malware Campaign Exploits Typosquatting to Deploy Stealthy Multi-Stage Loader

A sophisticated malware campaign is actively targeting users through...

Featured Interviews

#Interview: Shaping the UAE’s Digital Destiny: Building Sovereignty, Trust, and Resilience...

Read The Interview

More...

#Interview: InHouse Insights, From Awareness to Action – How Sainttly Group...

Read The Interview

More...

#Interview: Navigating Security Challenges in the IoT Era: Insights from Industry...

Read The Interview

More...

Middle East

View All

Hack-for-Hire Espionage Exposed: BITTER-Linked Campaign Targets Civil Society with Mobile Spyware

Cybercory Team - April 9, 2026

A sophisticated hack-for-hire cyber espionage campaign targeting journalists, opposition figures, and civil society in the Middle East has...

Iran-Linked Hackers Target Middle East Cloud Systems in Coordinated Password Spraying Campaign

Cybercory Team - April 6, 2026

The timing was anything but coincidental. On three separate days in March - the 3rd, 13th, and 23rd...

Boggy Serpens Escalates Cyberespionage Campaigns with AI-Driven Malware and Trusted Account Hijacking

March 18, 2026

Cyber War Meets Kinetic Conflict: How the Iran Crisis Is Redefining Modern Warfare

March 17, 2026

Cyber Diplomacy Takes Center Stage Ahead of GISEC Global 2026 at Cyber Envoys’ Breakfast Briefing

January 29, 2026

Cyber Envoys to Convene in Abu Dhabi as UAE Leads Global Cyber Diplomacy Ahead of GISEC 2026

January 27, 2026

UAE Ministry of Defence and EDGE to Host Coding and Cyber Challenges at UMEX 2026

January 19, 2026

Intersec 2026 Returns to Dubai: Where Global Security, Cyber Resilience, and Innovation Converge

January 5, 2026

AI & Cybersecurity

View All

“The Mother of All AI Supply Chain Flaws”: Critical MCP Vulnerability Exposes Millions to Remote Takeover

Ouaissou DEMBELE - April 20, 2026

A newly disclosed vulnerability at the heart of modern AI infrastructure is sending shockwaves across the cybersecurity industry raising urgent questions about...

Humanitarian Aid Turned Weapon: UAC-0247 Cyberattacks Target Hospitals and Public Sector in Sophisticated Multi-Stage Campaign

April 16, 2026

“Claudy Day” Exposes Hidden Risks: Prompt Injection Flaw in Claude AI Enables Silent Data Exfiltration

March 19, 2026

Boggy Serpens Escalates Cyberespionage Campaigns with AI-Driven Malware and Trusted Account Hijacking

March 18, 2026

Kali Linux Goes Local: Running AI-Powered Cybersecurity Tools Offline with Ollama and 5ire

March 10, 2026

The Top 10s

View All

Shielding Your Inbox: Top 10 Email Security Gateway Solutions in 2024

Ouaissou DEMBELE - June 12, 2024

Our inboxes are gateways to our personal and professional lives. They hold sensitive information, access credentials, and confidential communications. With phishing attacks,...

Fortressing Your Business Data: Top 10 Most Secure ERP Systems in 2024

June 11, 2024

The Digital Fortress: Top 10 Most Secure Operating Systems in 2024

June 10, 2024

Guarded Gates: Top Best 10 Secure Email Services in 2024

June 10, 2024

Securing the Gateway: Top Best 10 Web Application Firewalls (WAFs) in 2024

June 8, 2024

Africa

View All

Africa

NATION-STATE CYBERATTACKS IN AFRICA – Shadow Campaigns and the New Digital Scramble for Strategic Resources, Part 2

Africa

Gov’t to Establish National Cybersecurity Agency to Protect Kenyans’ Data

Africa

Hackers Breach Multiple Kenyan Government Websites, Temporarily Seize Presidency Portal

America

View All

America

Insider Betrayal: Ransomware Negotiator Pleads Guilty to Aiding BlackCat Attacks

America

Ghanaian National Pleads Guilty in $100M Romance Scam and Business Email Compromise Scheme

Asia

View All

Asia

Largest Multi-Agency Cyber Operation Launched to Counter APT Threat to Singapore’s Telecom Sector

Asia

Tudou Guarantee Winds Down After $12 Billion in Illicit Transactions, Shaking Southeast Asia’s Scam Economy

AI & Cybersecurity

China Tightens Cybersecurity Law to Rein in AI and Strengthen Incident Reporting

How To

View All

How To

How to identify fake social media profiles? A Guide to Unmasking the Imposters & Identifying Fake Social Media Profiles

How To

How to avoid social engineering scams on social media?: The Social Siren Song

How To

How To Avoid Online Shopping Scams?: The Siren Song of Savings

How To

How to protect your credit card information online?: Fort Knox for Your Wallet

What Is

View All

DoS & DDoS

Under Siege: Understanding DoS and DDoS Attacks in Cybersecurity

What Is

What Is VPN? Tunneling Through the Web: A Comprehensive Guide

What Is

What Is A Computer Virus? The Invisible Invaders: A Comprehensive Guide

What Is

What Is Ransomware? Held Hostage in the Digital Age: Understanding the Threat

Europe

€12.5M Privacy Blow: Italian Regulator Fines Poste Italiane and Postepay Over Mobile App Data Practices

Cybercory Team - April 21, 2026

Europe

Russian Intelligence Targets Messaging Apps: Thousands of Accounts Compromised in Global Phishing Campaign

Cybercory Team - March 23, 2026

View All

Oceania

Data Breach

Australian Privacy Regulator Launches Landmark Civil Penalty Action Against Optus Over 2022 Data Breach

On 8 August 2025, the Australian Information Commissioner (AIC)...

America

US Deports Notorious Australian Hacker After Landmark Cybercrime Conviction

DENVER/ADELAIDE – United States Immigration and Customs Enforcement (ICE)...

Data Breach

Australia’s Privacy Alarm Bells: A Deep Dive into the Notifiable Data Breaches Report (July-December 2024)

In an era where cyber threats are escalating with...

Banking & Finance

ASIC Sues FIIG Securities Over Cybersecurity Failures Leading to Data Theft

The Australian Securities and Investments Commission (ASIC) has launched...

Education System

Cybersecurity Breach at the University of Notre Dame Australia: Investigation Underway

The University of Notre Dame Australia is currently investigating...

Hacked - Breached

Breached

eScan Confirms Update Infrastructure Incident, Assures Customers No Product Vulnerability

America

Betterment Confirms Hacker Gained System Access, Issues Critical Security Update to Customers

Breached

Cognizant Hit With US Lawsuits After TriZetto Healthcare Data Breach

Breached

F5 Confirms Nation-State Cyberattack on Product Development Systems – Here’s What You Need to Know and Do

Breached

Discord Confirms Third-Party Security Breach Exposing 70,000 User ID Photos

View All

Zero-Day

Virtual private networks (VPNs)

Critical WatchGuard Firebox VPN Vulnerability Actively Exploited in the Wild

Application Security

Final Patch Tuesday of 2025: Microsoft Releases 57 Security Updates, Including Actively Exploited Zero-Day and Critical Vulnerabilities Across Windows and Chromium-Based Edge

Patch

Breaking News: Chrome Zero-Day Exploited in the Wild – Urgent Update Released

Europe

Dutch NCSC Confirms Advanced Zero-Day Attacks on Citrix NetScaler: Multiple Critical Organizations Breached

Patch

Apple Urges Immediate Update as July 2025 Security Patches Address Multiple Zero‑Days

View All

Cryptocurrencies

Blockchain & Crypto Security

CPX Unveils Crypto Defense Solution to Fortify Security in the Digital Asset Ecosystem

Banking & Finance

Future Blockchain Summit x Fintech Surge Returns to Power the Next Era of Digital Assets

Blockchain & Crypto Security

Microsoft Takes Down 338 Websites to Disrupt RaccoonO365 Phishing Empire

Blockchain & Crypto Security

Google Play Enforces Stricter Global Licensing Rules for Cryptocurrency Apps

Application Security

Securing Kubernetes: Understanding and Mitigating Threats to Containerized Environments

View All

Cloud Security

Phishing Campaign Abuses Google Cloud to Steal Microsoft 365 Credentials

Cloud Security

Phishing Campaign Abuses Google Cloud Automation to Slip Past Security Defenses

Cloud Security

Open Letter to Samsung: A Growing Outcry Over Forced Israeli-Founded Bloatware in the WANA Region

Application Security

One Token to Rule Them All: Critical Entra ID Flaw Could Have Exposed Every Tenant

AI & Cybersecurity

Ooredoo and Qatar Airways Sign MoU to Establish Qatar as Regional AI, Cloud & Cybersecurity Innovation Hub

View All

Ransomware

America

Insider Betrayal: Ransomware Negotiator Pleads Guilty to Aiding BlackCat Attacks

Ransomware

The 24-Hour Hijack: How Storm-1175 Turns Your Unpatched Server Into a Ransomware Launchpad

Africa

Senegal’s Tax Authority Hit by Massive Cyberattack: Experts Warn of Deeper Crisis if Action Isn’t Taken

Europe

Akira Ransomware Attack Forces 158-Year-Old KNP Logistics to Shut Down in the UK

AI & Cybersecurity

PromptLock: ESET Uncovers First Known AI-Powered Ransomware

View All

The Hidden Infrastructure Fueling Mobile Proxy Abuse: Inside the Global SIM Farm Ecosystem Powering 4G/5G Fraud

A sprawling global network of SIM farms masquerading as commercial mobile proxy infrastructure is drawing growing scrutiny from cybersecurity researchers, raising serious concerns about...

America

Insider Betrayal: Ransomware Negotiator Pleads Guilty to Aiding BlackCat Attacks

In a case that is sending shockwaves across the cybersecurity industry, a U.S.-based ransomware negotiator has admitted to secretly collaborating with cybercriminals turning from...

Europe

€12.5M Privacy Blow: Italian Regulator Fines Poste Italiane and Postepay Over Mobile App Data Practices

In a landmark enforcement action that is sending shockwaves across Europe’s financial and fintech sectors, Italy’s data protection authority - Garante per la protezione...

AI & Cybersecurity

“The Mother of All AI Supply Chain Flaws”: Critical MCP Vulnerability Exposes Millions to Remote Takeover

A newly disclosed vulnerability at the heart of modern AI infrastructure is sending shockwaves across the cybersecurity industry raising urgent questions about how secure...

AI & Cybersecurity

Humanitarian Aid Turned Weapon: UAC-0247 Cyberattacks Target Hospitals and Public Sector in Sophisticated Multi-Stage Campaign

A new wave of highly targeted cyberattacks is putting hospitals, local governments, and even defense-linked operators at risk leveraging deception, advanced malware, and stealthy...

Patch

SAP Patch Day Alert: Critical SQL Injection Flaw (CVSS 9.9) Demands Immediate Action

SAP customers worldwide are facing a high-risk security moment following the release of April 2026 Patch Day updates, which include a critical SQL Injection...

Oceania

Social Media Ban Fails? Over 60% of Under-16s Still Active Online, Study Reveals

Efforts to restrict children’s access to social media are facing a harsh reality check. A new study has revealed that more than 60% of...

Advanced Persistent Threat

Mirax Android Malware Emerges: Infected Devices Turned into Stealth Proxy Networks for Global Cybercrime

Security researchers have identified Mirax, a sophisticated Remote Access Trojan (RAT) that is redefining mobile malware by transforming infected smartphones into residential proxy nodes,...

Network Security

Critical Alert: Palo Alto Networks Fixes High-Severity Flaw in Cortex XSOAR & XSIAM Microsoft Teams Integration

A newly disclosed vulnerability in Palo Alto Networks’ Cortex platforms is raising fresh concerns around the security of enterprise integrations, especially those connected to...

Cyberespionage Spying

Hack-for-Hire Espionage Exposed: BITTER-Linked Campaign Targets Civil Society with Mobile Spyware

A sophisticated hack-for-hire cyber espionage campaign targeting journalists, opposition figures, and civil society in the Middle East has been uncovered highlighting how relatively simple...

Open Source Intelligence (OSINT)

“Contagious Interview” Campaign Infects Open-Source Ecosystems, Exposes New Supply Chain Threat

A sophisticated social engineering campaign disguised as job interviews is quietly infiltrating the global developer community compromising open-source ecosystems and exposing a dangerous new...

Ransomware

The 24-Hour Hijack: How Storm-1175 Turns Your Unpatched Server Into a Ransomware Launchpad

There is a moment between the time a software vendor announces a critical vulnerability and the time your IT team applies the patch that...

Middle East

Iran-Linked Hackers Target Middle East Cloud Systems in Coordinated Password Spraying Campaign

The timing was anything but coincidental. On three separate days in March - the 3rd, 13th, and 23rd - while missile strikes rained down...

Patch

Critical Cisco Vulnerability Exposes Systems to Remote Root-Level Attacks (CVE-2026-20160)

A newly disclosed critical vulnerability in Cisco Smart Software Manager On-Prem (SSM On-Prem) is raising serious concerns across the cybersecurity community, with the potential...

Worldwide

SentinelOne Annual Report – The New Cyber Battlefield: AI-Driven Attacks, Ransomware Evolution, and the Rise of Autonomous Threats

The global cyber threat landscape is entering a new era one defined by automation, artificial intelligence, and increasingly sophisticated adversaries. The latest annual threat...

Worldwide