Russian APT28 Group Exploits SOHO Routers for Global DNS Hijacking
A new campaign by the Russia-linked threat actor APT28, also known as Forest Blizzard, has been discovered…
Hybrid P2P Botnet and 13-Year-Old Apache RCE Vulnerability Expose Security Risks
The cybersecurity landscape is constantly evolving, with new threats emerging every week. This week is no exception,…
The Hidden Dangers of AI Browser Extensions: A Growing Security Threat
A new and largely unaddressed threat is emerging in the realm of AI security: AI browser extensions….
EngageLab SDK Vulnerability Puts 50M Android Users at Risk, Including 30M Crypto Wallet Installs
A recently patched security vulnerability in the EngageLab SDK, a widely used third-party Android software development kit,…
Marimo RCE Flaw CVE-2026-39987 Exploited Within 10 Hours of Disclosure
A critical security vulnerability in Marimo, an open-source Python notebook for data science and analysis, has been…
The Hidden Dangers of AI Browser Extensions: A New Security Threat
While the discussion on AI security often focuses on protecting ‘shadow’ AI and GenAI consumption, a new…
EngageLab SDK Security Vulnerability Puts 50M Android Users at Risk
A recently discovered and patched security flaw in the EngageLab SDK, a widely used third-party Android software…
Backdoored Smart Slider 3 Pro Update Distributed via Compromised Nextend Servers
Unknown threat actors have hijacked the update system for the Smart Slider 3 Pro plugin for WordPress…
Google Enhances Chrome Security with DBSC on Windows
Google has announced the general availability of Device Bound Session Credentials (DBSC) for all Windows users of…
Weekly Cybersecurity Roundup: Hybrid P2P Botnets and Revitalized Apache RCE Vulnerabilities
This week’s cybersecurity news is filled with a mix of old and new threats, including the emergence…