cyber security

Critical Android Zero-Click Vulnerability Grants Remote Shell Access

Critical Android Zero-Click Vulnerability Grants Remote Shell Access

Abinaya May 5, 2026

Google has published the May 2026 Android Security Bulletin, alerting the ecosystem to a highly severe remote...

pnpm 11 Turns On Minimum Release Age by Default to Reduce npm Supply Chain Risk

pnpm 11 Turns On Minimum Release Age by Default to Reduce npm Supply Chain Risk

Tushar Subhra Dutta May 5, 2026

The npm ecosystem has long been a target for supply chain attacks, where threat actors exploit the...

Microsoft Edge Stores All Saved Passwords in Cleartext Process Memory at Launch

Microsoft Edge Stores All Saved Passwords in Cleartext Process Memory at Launch

Guru Baran May 4, 2026

A security researcher has discovered that Microsoft Edge decrypts every stored password into process memory the moment...

Apache HTTP Server Exposes Millions of Servers to Remote Code Execution Attacks

Apache HTTP Server Exposes Millions of Servers to Remote Code Execution Attacks

Guru Baran May 4, 2026

The Apache Software Foundation has released a critical security update for Apache HTTP Server, patching five vulnerabilities,...

DigiCert Hacked via Weaponized Screensaver File to Obtain EV Code Signing Certificates

DigiCert Hacked via Weaponized Screensaver File to Obtain EV Code Signing Certificates

Guru Baran May 4, 2026

A sophisticated threat actor breached DigiCert’s internal support environment in early April 2026 by tricking support analysts...

New MicroStealer Malware Actively Attacking Telecom & Education Sectors

New MicroStealer Malware Actively Attacking Telecom & Education Sectors

Tushar Subhra Dutta May 4, 2026

A new infostealer malware called MicroStealer has quietly entered the threat landscape and is already showing a...

Bluekit Phishing Kit Automates Domains, 2FA Lures, and Session Hijacking in One Panel

Bluekit Phishing Kit Automates Domains, 2FA Lures, and Session Hijacking in One Panel

Tushar Subhra Dutta May 4, 2026

A newly identified phishing kit called Bluekit is changing how cybercriminals carry out phishing attacks by packing...

Malicious Tanstack Package Uses Postinstall Script to Steal Developer Environment Files

Malicious Tanstack Package Uses Postinstall Script to Steal Developer Environment Files

Tushar Subhra Dutta May 4, 2026

A malicious npm package impersonating the widely trusted TanStack project was discovered on April 29, 2026, silently...

New xlabs_v1 Botnet Targets Minecraft Servers Through ADB-Exposed Android Devices

New xlabs_v1 Botnet Targets Minecraft Servers Through ADB-Exposed Android Devices

Tushar Subhra Dutta May 4, 2026

A newly identified botnet called xlabs_v1 has been found targeting Minecraft game servers by exploiting Android devices...

DOJ Sentences Two Americans to Prison for ALPHV BlackCat Attacks on U.S. Victims

DOJ Sentences Two Americans to Prison for ALPHV BlackCat Attacks on U.S. Victims

Tushar Subhra Dutta May 4, 2026

Two American cybersecurity professionals were sentenced to four years each in federal prison on April 30, 2026,...

error: Content is protected !!