cPanel, WHM Release Fixes for Three New Vulnerabilities — Patch Now

May 9, 2026 at 12:46PM cPanel has released updates to address three vulnerabilities in cPanel and Web Host Manager (WHM) that cou…

TCLBANKER Banking Trojan Targets Financial Platforms via WhatsApp and Outlook Worms

May 8, 2026 at 11:42PM Threat hunters have flagged a previously undocumented Brazilian banking trojan dubbed TCLBANKER that's…

New Linux PamDOORa Backdoor Uses PAM Modules to Steal SSH Credentials

May 8, 2026 at 02:11PM Cybersecurity researchers have disclosed details of a new Linux backdoor named PamDOORa that's being a…

Linux Kernel Dirty Frag LPE Exploit Enables Root Access Across Major Distributions

May 8, 2026 at 10:42AM Details have emerged about a new, unpatched local privilege escalation (LPE) vulnerability impacting the L…

PCPJack Credential Stealer Exploits 5 CVEs to Spread Worm-Like Across Cloud Systems

May 7, 2026 at 11:15PM Cybersecurity researchers have disclosed details of a new credential theft framework dubbed PCPJack that t…

PyPI Packages Deliver ZiChatBot Malware via Zulip APIs on Windows and Linux

May 7, 2026 at 02:50PM Cybersecurity researchers have discovered three packages on the Python Package Index (PyPI) repository tha…

vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution

May 7, 2026 at 09:45AM A dozen critical security vulnerabilities have been disclosed in the vm2 Node.js library that could be exp…

Mirai-Based xlabs_v1 Botnet Exploits ADB to Hijack IoT Devices for DDoS Attacks

May 7, 2026 at 01:51AM Cybersecurity researchers have exposed a new Mirai-derived botnet that self-identifies as xlabs_v1 and tar…

Your AI Agents Are Already Inside the Perimeter. Do You Know What They're Doing?

May 6, 2026 at 04:27PM Analysts recently confirmed what identity security teams have quietly feared: AI agents are being deployed…

Windows Phone Link Exploited by CloudZ RAT to Steal Credentials and OTPs

May 6, 2026 at 02:04PM Cybersecurity researchers have disclosed details of an intrusion that involved the use of a CloudZ remote …

Palo Alto PAN-OS Flaw Under Active Exploitation Enables Remote Code Execution

May 6, 2026 at 11:44AM Palo Alto Networks has released an advisory warning that a critical buffer overflow vulnerability in its P…

ScarCruft Hacks Gaming Platform to Deploy BirdCall Malware on Android and Windows

May 5, 2026 at 02:37PM The North Korea-aligned state-sponsored hacking group known as ScarCruft has compromised a video game plat…