Browsing: Cybersecurity

NGINX CVE-2026-42945 Exploited in the Wild, Causing Worker Crashes and Possible RCE

Cybersecurity May 17, 2026

Ravie LakshmananMay 17, 2026Server Security / Vulnerability A newly disclosed security flaw impacting NGINX Plus and NGINX Open has come…

Tycoon2FA hijacks Microsoft 365 accounts via device-code phishing

Cybersecurity May 17, 2026

The Tycoon2FA phishing kit now supports device-code phishing attacks and abuses Trustifi click-tracking URLs to hijack Microsoft 365 accounts. Despite…

Cisco warns of new critical SD-WAN flaw exploited in zero-day attacks

Cybersecurity May 17, 2026

Cisco is warning that a critical Catalyst SD-WAN Controller authentication bypass flaw, tracked as CVE-2026-20182, was actively exploited in zero-day…

Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt

Cybersecurity May 17, 2026

Ravie LakshmananMay 17, 2026Data Breach / Cybercrime Grafana has disclosed that an “unauthorized party” obtained a token that granted them…

Week in review: Cisco patches SD-WAN 0-day, unpatched Microsoft Exchange Server flaw exploited

Cybersecurity May 17, 2026

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Review: Foundations of Cybersecurity, 2nd…

Microsoft to automatically roll back faulty Windows drivers

Cybersecurity May 17, 2026

Microsoft is introducing a new capability that will allow it to remotely roll back problematic Windows drivers delivered through Windows…

How AI Hallucinations Are Creating Real Security Risks

Cybersecurity May 17, 2026

AI hallucinations are introducing serious security risks into critical infrastructure decision-making by exploiting human trust through highly confident yet incorrect…

Session Theft, MaaS, and Rapid Evolution

Cybersecurity May 17, 2026

In recent months, a new infostealer malware known as REMUS has emerged across the cybercrime landscape, drawing attention from security…

Ghostwriter Targets Ukrainian Government With Geofenced PDF Phishing, Cobalt Strike

Cybersecurity May 17, 2026

The Belarus-aligned threat group known as Ghostwriter has been attributed to a fresh set of attacks targeting governmental organizations in…

Microsoft rejects critical Azure vulnerability report, no CVE issued

Cybersecurity May 16, 2026

A security researcher claims Microsoft quietly fixed an Azure Backup for AKS vulnerability after rejecting his report, and blocking a CVE…

Browsing: Cybersecurity

NGINX CVE-2026-42945 Exploited in the Wild, Causing Worker Crashes and Possible RCE

Tycoon2FA hijacks Microsoft 365 accounts via device-code phishing

Cisco warns of new critical SD-WAN flaw exploited in zero-day attacks

Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt

Week in review: Cisco patches SD-WAN 0-day, unpatched Microsoft Exchange Server flaw exploited

Microsoft to automatically roll back faulty Windows drivers

How AI Hallucinations Are Creating Real Security Risks

Session Theft, MaaS, and Rapid Evolution

Ghostwriter Targets Ukrainian Government With Geofenced PDF Phishing, Cobalt Strike

Microsoft rejects critical Azure vulnerability report, no CVE issued

11 Ways to Lower Your Cell Phone Bill

Google Search Console adds AI performance reports and blocking controls

Cisco sees quantum networking as the future of networking

How To Use Lighthouse To Test Your Website For Agentic Readiness

Our Picks

11 Ways to Lower Your Cell Phone Bill

Google Search Console adds AI performance reports and blocking controls

Cisco sees quantum networking as the future of networking