2+ hour, 5+ min ago  (346+ words) Email bombing campaigns combined with fake IT support outreach are driving a surge in sophisticated Microsoft Teams phishing attacks. The attacks typically begin with email bombing, where victims are flooded with spam messages to create confusion and urgency. Shortly after,…...

2+ day, 3+ hour ago  (283+ words) Cybersecurity researchers at Guardio Labs have uncovered a massive phishing operation dubbed Account Dumpling that has compromised more than 30, 000 Facebook accounts worldwide. The threat actors developed a sophisticated, multi-cluster attack infrastructure to maximize their success rate against various targets. The…...

2+ day, 4+ hour ago  (388+ words) A critical zero-day vulnerability in c Panel and Web Host Manager (WHM) is under massive active exploitation following the public release of a sophisticated proof-of-concept exploit. Tracked as CVE-2026-41940, this flaw has already compromised tens of thousands of servers worldwide....

4+ day, 1+ min ago  (270+ words) A critical zero-day vulnerability, tracked as CVE-2026-41940, is currently being actively exploited across the web hosting industry. This CVSS 9. 8 flaw allows unauthenticated remote attackers to bypass c Panel and WHM login mechanisms, granting them full administrative control over servers. The…...

3+ day, 4+ hour ago  (362+ words) A newly uncovered cyber fraud campaign is abusing fake CAPTCHA pages to trick mobile users into sending large volumes of international SMS messages, resulting in unexpected phone bills and illicit profits for attackers. Unlike traditional malware campaigns, this operation does…...

4+ day, 11+ min ago  (453+ words) A long-dormant backdoor has been uncovered in the "Quick Page/Post Redirect Plugin," a popular Word Press add-on with over 70, 000 active installations. First, it featured a passive content injection mechanism. On every page viewed by a logged-out user, the plugin…...

5+ day, 3+ hour ago  (339+ words) Web hosting administrators must take immediate action, as c Panel has rolled out an emergency security update to address a critical vulnerability. Disclosed on April 28, 2026, this flaw impacts various authentication paths within the c Panel and Web Host Manager (WHM)…...

6+ day, 1+ hour ago  (342+ words) This upcoming feature aims to reduce users" reliance on third-party storage providers such as Google Drive and Apple"s i Cloud. By bringing backup storage in-house, Whats App gives users greater control over their data privacy and device storage limits....

6+ day, 3+ hour ago  (388+ words) A major security flaw in the popular productivity platform Click Up has exposed sensitive data, including 959 email addresses tied to Fortune 500 companies and government agencies. The primary vulnerability stems from a hardcoded Split. io SDK token left inside Click Up's…...

6+ day, 20+ hour ago  (647+ words) A new Vidar infostealer campaign is abusing fake software download links on You Tube to compromise corporate employees and sell their stolen credentials on Russian cybercrime marketplaces. In the investigated case, the victim was searching for software on You Tube…...