Compromised Nx Console 18.95.0 Targeted VS Code Developers with Credential Stealer

May 19, 2026 at 01:19PM Cybersecurity researchers have flagged a compromised version of the Nx Console extension that was publish…

Mini Shai-Hulud Pushes Malicious AntV npm Packages via Compromised Maintainer Account

May 19, 2026 at 10:24AM Cybersecurity researchers have discovered a fresh software supply chain attack campaign that has compromi…

INTERPOL Operation Ramz Disrupts MENA Cybercrime Networks with 201 Arrests

May 18, 2026 at 10:51PM INTERPOL has coordinated a first-of-its-kind cybercrime crackdown across the Middle East and North Africa…

Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flaws

May 18, 2026 at 04:24PM Ivanti, Fortinet, n8n, SAP, and VMware have released security fixes for various vulnerabilities that coul…

Four Malicious npm Packages Deliver Infostealers and Phantom Bot DDoS Malware

May 18, 2026 at 02:27PM Cybersecurity researchers have discovered four new npm packages containing information-stealing malware, …

MiniPlasma Windows 0-Day Enables SYSTEM Privilege Escalation on Fully Patched Systems

May 18, 2026 at 10:29AM Chaotic Eclipse, the security researcher behind the recently disclosed Windows flaws, YellowKey and Green…

NGINX CVE-2026-42945 Exploited in the Wild, Causing Worker Crashes and Possible RCE

May 17, 2026 at 05:27PM A newly disclosed security flaw impacting NGINX Plus and NGINX Open has come under active exploitation in…

Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt

May 17, 2026 at 12:43PM Grafana has disclosed that an "unauthorized party" obtained a token that granted them the abili…

Funnel Builder Flaw Under Active Exploitation Enables WooCommerce Checkout Skimming

May 16, 2026 at 08:50PM A critical security vulnerability impacting the Funnel Builder plugin for WordPress has come under ac…

On-Prem Microsoft Exchange Server CVE-2026-42897 Exploited via Crafted Email

May 15, 2026 at 11:49AM Microsoft has disclosed a new security vulnerability impacting on-premise versions of Exchange Server tha…

CISA Adds Cisco SD-WAN CVE-2026-20182 to KEV After Admin Access Exploits

May 15, 2026 at 10:58AM The U.S.Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a newly disclosed vulne…

Stealer Backdoor Found in 3 Node-IPC Versions Targeting Developer Secrets

May 14, 2026 at 10:52PM Cybersecurity researchers are sounding the alarm about what has been described as "malicious activit…