News News & Analysis

News

Badges, Bytes and Blackmail

Behind the scenes of law enforcement in cyber: what do we know…

Jan 30, 2026

NEWS

News

Two Ivanti EPMM Zero-Day RCE Flaws Actively Exploited, Security Updates Released

Ivanti has rolled out security updates to address two security flaws impacting…

Jan 30, 2026

NEWS

News

ThreatsDay Bulletin: New RCEs, Darknet Busts, Kernel Bugs & 25+ More Stories

This week’s updates show how small changes can create real problems. Not…

Jan 29, 2026

NEWS

News

SolarWinds Fixes Four Critical Web Help Desk Flaws With Unauthenticated RCE and Auth Bypass

SolarWinds has released security updates to address multiple security vulnerabilities impacting SolarWinds…

Jan 29, 2026

NEWS

News

Google Disrupts IPIDEA — One of the World’s Largest Residential Proxy Networks

Google on Wednesday announced that it worked together with other partners to…

Jan 29, 2026

NEWS

News

Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution

A critical sandbox escape vulnerability has been disclosed in the popular vm2…

Jan 28, 2026

NEWS

News

Password Reuse in Disguise: An Often-Missed Risky Workaround

When security teams discuss credential-related risk, the focus typically falls on threats…

Jan 28, 2026

NEWS

News

ClickFix Attacks Expand Using Fake CAPTCHAs, Microsoft Scripts, and Trusted Web Services

Cybersecurity researchers have disclosed details of a new campaign that combines ClickFix-style…

Jan 27, 2026

NEWS

News

Indian Users Targeted in Tax Phishing Campaign Delivering Blackmoon Malware

Cybersecurity researchers have discovered an ongoing campaign that’s targeting Indian users with…

Jan 26, 2026

NEWS

News

Winning Against AI-Based Attacks Requires a Combined Defensive Approach

If there’s a constant in cybersecurity, it’s that adversaries are always innovating.…

Jan 26, 2026

NEWS

News

Badges, Bytes and Blackmail

Two Ivanti EPMM Zero-Day RCE Flaws Actively Exploited, Security Updates Released

ThreatsDay Bulletin: New RCEs, Darknet Busts, Kernel Bugs & 25+ More Stories

SolarWinds Fixes Four Critical Web Help Desk Flaws With Unauthenticated RCE and Auth Bypass

Google Disrupts IPIDEA — One of the World’s Largest Residential Proxy Networks

Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution

Password Reuse in Disguise: An Often-Missed Risky Workaround

ClickFix Attacks Expand Using Fake CAPTCHAs, Microsoft Scripts, and Trusted Web Services

Indian Users Targeted in Tax Phishing Campaign Delivering Blackmoon Malware

Winning Against AI-Based Attacks Requires a Combined Defensive Approach

NIST Limits CVE Enrichment After 263% Surge in Vulnerability Submissions

Apache ActiveMQ CVE-2026-34197 Added to CISA KEV Amid Active Exploitation

ThreatsDay Bulletin: Defender 0-Day, SonicWall Brute-Force, 17-Year-Old Excel RCE and 15 More Stories

UAC-0247 Targets Ukrainian Clinics and Government in Data-Theft Malware Campaign