8+ hour, 49+ min ago  (396+ words) A signed software operation linked to a company called Dragon Boss Solutions LLC has reportedly been silently disabling antivirus products on more than 23, 000 endpoints worldwide According to research published by Huntress on Tuesday, the'campaign used a legitimate code-signing certificate and…...

14+ hour, 19+ min ago  (408+ words) Microsoft published a higher-than-usual list of fixes for CVEs as part of its monthly Patch Tuesday update round yesterday, including two zero-day vulnerabilities. One of these, CVE-2026-32201, is being actively exploited in the wild. It is described as a server…...

2+ week, 1+ day ago  (323+ words) The National Cyber Security Centre (NCSC) explained that it is still "working to fully understand UK impact and any potential cases of active exploitation affecting UK networks." It added that CVE-2025-53521 could lead to remote code execution (RCE) "when a…...

2+ mon, 2+ day ago  (377+ words) Over 260, 000 Google Chrome users have downloaded fake AI assistants designed to deliver malicious browser extensions which can steal login credentials, monitor emails and enable remote access by attackers. Over 30 Google Chrome extensions designed to deliver the phoney AI assistants have…...

1+ week, 5+ day ago  (558+ words) Investments in AI security products continued at pace in March 2026, as security vendors continue to focus on AI, while AI vendors have made moves to bring additional security expertise in-house through mergers and acquisitions. Major deals included Open AI's acquisition…...

9+ mon, 1+ week ago  (322+ words) A severe vulnerability in the widely used Forminator Word Press plugin has been disclosed, exposing websites to the risk of arbitrary file deletion and potential site takeover. The flaw, which affects versions up to 1. 44. 2, allows unauthenticated users to include arbitrary…...

6+ mon, 2+ hour ago  (305+ words) A security vulnerability affecting millions of Word Press websites has been uncovered in the widely used Slider Revolution plugin. The flaw, tracked as CVE-2025-9217, could allow users with contributor-level permissions or higher to read sensitive files stored on a site's…...

7+ mon, 2+ week ago  (281+ words) A serious security issue has been discovered in the Word Press Paid Membership Subscriptions plugin, which is used by over 10, 000 sites to manage memberships and recurring payments. Versions 2. 15. 1 and below are affected by an unauthenticated SQL injection vulnerability, tracked as…...

5+ mon, 2+ week ago  (206+ words) Threat actors are attempting to exploit three critical CVEs from 2024 impacting two popular Word Press plugins, according to Wordfence. The security vendor claimed that the bugs affect the Guten Kit and Hunk Companion plugins which have over 40, 000 and 8000 active installations…...

1+ week, 9+ hour ago  (269+ words) A critical arbitrary file upload vulnerability in Ninja Forms " File Upload Plugin has been identified, exposing thousands of Word Press sites to potential compromise. The issue affects plugin versions up to 3. 3. 26 and allows unauthenticated attackers to upload malicious files, potentially…...