Follow Cyber Kendra on Google News! | WhatsApp | Telegram

Security
Microsoft Discovered macOS Flaw That Leaked Apple Intelligence Data Across All Your Devices

Microsoft Discovered macOS Flaw That Leaked Apple Intelligence Data Across All Your Devices

A severe macOS vulnerability discovered by Microsoft researchers could have allowed attackers to steal highly sensitive data from Apple Intelligence …
AI Coding Platform Flaw Exposed Private Enterprise Apps

AI Coding Platform Flaw Exposed Private Enterprise Apps

A critical security flaw in the popular AI-powered coding platform Base44 allowed attackers to bypass authentication controls and gain unauthorized a…
Tea App Data Breach Exposes 72,000 Women’s Selfies and IDs

Tea App Data Breach Exposes 72,000 Women’s Selfies and IDs

A massive security breach at Tea, the women's dating safety app that recently topped Apple's App Store charts, has exposed approximately 72,0…
SharePoint ToolShell Flaw Under Massive Attack by Chinese Hackers

SharePoint ToolShell Flaw Under Massive Attack by Chinese Hackers

Microsoft issues emergency patches as three Chinese threat groups exploit zero-day flaws to deploy ransomware and steal sensitive data from thousands…
How to Benchmark Your Organization’s Cyber Security Posture in 2025

How to Benchmark Your Organization’s Cyber Security Posture in 2025

In today’s threat landscape, cybersecurity is no longer a tick-box exercise. It should be as integral to your business strategy as reliable internet …
Google Unveils New AI Security Arsenal to Prevents Real-World Cyberattack

Google Unveils New AI Security Arsenal to Prevents Real-World Cyberattack

Google has achieved a cybersecurity milestone by using artificial intelligence to prevent an active exploit attempt in the wild, marking the first ti…
FBI Warns of Deepfake Phishing Campaign Impersonating U.S. Officials

FBI Warns of Deepfake Phishing Campaign Impersonating U.S. Officials

The Federal Bureau of Investigation (FBI) recently warned of a widespread deepfake phishing campaign targeting U.S. federal and state officials and …
Critical Flaw Lets Attackers Hijack Train Brakes With $500 Radio Equipment

Critical Flaw Lets Attackers Hijack Train Brakes With $500 Radio Equipment

A critical security vulnerability in America's railway system allows attackers to remotely hijack train brake controls using inexpensive radio eq…
Critical Browser-Based Attack Chain Compromises Internal Networks Through Single Website Visit

Critical Browser-Based Attack Chain Compromises Internal Networks Through Single Website Visit

Security researchers have demonstrated a devastating new attack method that allows cybercriminals to execute remote code on internal corporate networ…
Critical Zero-Day Flaw in Fortinet FortiWeb Allows Complete System Takeover

Critical Zero-Day Flaw in Fortinet FortiWeb Allows Complete System Takeover

A severe pre-authentication SQL injection vulnerability in Fortinet's FortiWeb Fabric Connector has been discovered, allowing attackers to achiev…
ToolShell - Critical SharePoint Flaw Exposes to Unauthenticated Attacks

ToolShell - Critical SharePoint Flaw Exposes to Unauthenticated Attacks

Microsoft has released emergency patches for two critical SharePoint vulnerabilities discovered at Pwn2Own Berlin, one of which allows completely una…
'Enter, Exit, Leak': New CPU Side-Channel Attacks Break Isolation in Modern Processors

'Enter, Exit, Leak': New CPU Side-Channel Attacks Break Isolation in Modern Processors

Security researchers from Microsoft and ETH Zurich have uncovered four new speculative side-channel vulnerabilities in modern AMD and Intel processor…
Your Password Just Became Worthless: Why Hackers Are Winning the Authentication War

Your Password Just Became Worthless: Why Hackers Are Winning the Authentication War

New research reveals threat actors are bypassing advanced security systems by targeting the weakest link: human credentials Cybercriminals have drama…
Critical CitrixBleed 2 Zero-Day Enables Memory Theft, Bypasses Authentication

Critical CitrixBleed 2 Zero-Day Enables Memory Theft, Bypasses Authentication

A newly disclosed vulnerability in Citrix NetScaler appliances is allowing attackers to steal sensitive memory contents through a simple HTTP request…
Google Rushes to Fix Chrome's Fourth In-Wild Exploited Zero-Day - POC Released

Google Rushes to Fix Chrome's Fourth In-Wild Exploited Zero-Day - POC Released

Google has issued an emergency security update for Chrome to address a critical zero-day vulnerability that cybercriminals are actively exploiting in…
Critical Sudo Vulnerabilities Leads Root Access to Any Linux User

Critical Sudo Vulnerabilities Leads Root Access to Any Linux User

Two newly disclosed vulnerabilities in Sudo, the ubiquitous Linux privilege escalation tool, could allow virtually any local user to gain complete ad…
Catwatchful Android Spyware Exposes 62,000 Users Data

Catwatchful Android Spyware Exposes 62,000 Users Data

A critical SQL injection vulnerability has exposed the complete user database of Catwatchful, a sophisticated Android spyware operation that was secr…
Critical Zero-Day Vulnerability Grants Root Access to Wing FTP Servers Worldwide

Critical Zero-Day Vulnerability Grants Root Access to Wing FTP Servers Worldwide

A critical null-byte injection vulnerability in Wing FTP Server has been discovered that allows attackers to gain complete root access to affected sy…
CitrixBleed 2 Vulnerability Now Under Active Attack Worldwide

CitrixBleed 2 Vulnerability Now Under Active Attack Worldwide

A critical new vulnerability dubbed " CitrixBleed 2 " is being actively exploited by cybercriminals, marking a dangerous return of sessio…
BreachForums Administrators Arrested - French Police Dismantled Cybercrime's Underground Empire

BreachForums Administrators Arrested - French Police Dismantled Cybercrime's Underground Empire

Global cybercrime marketplace suffers devastating blow as French authorities capture the masterminds behind the world's largest stolen data tradi…