Tag: hacking

Google on Monday disclosed that a high-severity security flaw impacting an open-source Qualcomm component used in Android devices has been exploited in the wild. The vulnerability in question is CVE-2026-21385 (CVSS score: 7.8), a buffer over-read in the Graphics component. “Memory corruption when adding ...

The threat actor behind the recently disclosed artificial intelligence (AI)-assisted campaign targeting Fortinet FortiGate appliances leveraged an open-source, AI-native security testing platform called CyberStrikeAI to execute the attacks. The new findings come from Team Cymru, which detected its use following an analysis ...

The global cybersecurity landscape never stands still. This week, the 2025 list of the “Top 25 Most Dangerous Software Weaknesses” was released. While this extensive data is compiled by MITRE in partnership with the U.S. Homeland Security Systems Engineering and ...

What is Wireshark? Wireshark is the world’s most popular network protocol analyzer. It is used for troubleshooting, analysis, development and education. Wireshark is used by government agencies, educational institutions, corporations, small businesses and nonprofits alike to troubleshoot network issues. Additionally, ...

At 11:20 UTC on 18 November 2025, Cloudflare’s network began experiencing what the company described as “significant failures to deliver core network traffic”. The disruption quickly surfaced for customers and end-users as error pages—specifically HTTP 5XX status codes indicating server-side ...

This isn’t a theoretical risk. It’s happening now. For the past year, we’ve discussed the potential for AI to be misused in cybersecurity. Today, that potential has been fully, terrifyingly realized. We are no longer talking about AI-assisted phishing emails. ...

In a chilling demonstration of how quickly advanced spyware can weaponise a single browser flaw, researchers have confirmed that a previously unknown zero-day vulnerability in Google Chrome was actively exploited in targeted espionage attacks — and that the operation appears ...

Cybersecurity researchers are calling attention to a nefarious campaign targeting WordPress sites to make malicious JavaScript injections that are designed to redirect users to sketchy sites. “Site visitors get injected content that was drive-by malware like fake Cloudflare verification,” Sucuri ...

Redis has disclosed details of a maximum-severity security flaw in its in-memory database software that could result in remote code execution under certain circumstances. The vulnerability, tracked as CVE-2025-49844 (aka RediShell), has been assigned a CVSS score of 10.0. “An authenticated user may use ...

Tech giant Red Hat has acknowledged that it is investigating a security incident affecting its consulting arm, following public claims by a hacking group, Crimson Collective, that it gained unauthorized access to internal repositories and obtained sensitive customer data. While ...

Discord, one of the world’s leading communication platforms for gaming and online communities, has confirmed a data breach involving a third-party customer service provider that resulted in the exposure of sensitive user information. The breach affected a subset of users ...

In the modern landscape of software development, where projects rely on hundreds or even thousands of dependencies, the greatest risk often lies not in the code you write, but in the packages you inherit. The npm ecosystem, while foundational to ...

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has made a significant contribution to the global cybersecurity community with the public release of Thorium. This new, open-source platform is designed to assist malware and forensic analysts across government, public, and ...

The Tech memorial and the demise of Next Thing Co What is the C.H.I.P? All the way back in 2015, a new single-board computer hit the scene that went by the name C.H.I.P. and it was almost instantly funded on ...