Follow Cyber Kendra on Google News! | WhatsApp | Telegram

Add as a preferred source on Google
Security
Critical Dolby Decoder Flaw Enables Zero-Click Attacks on Billions of Android Devices

Critical Dolby Decoder Flaw Enables Zero-Click Attacks on Billions of Android Devices

Google's Project Zero has disclosed a severe vulnerability in Dolby's DDPlus Unified Decoder that becomes a zero-click exploit on Android dev…
Nation-State Hackers Steal F5 BIG-IP Source Code in Months-Long Breach

Nation-State Hackers Steal F5 BIG-IP Source Code in Months-Long Breach

F5 Networks has disclosed a significant security breach where a sophisticated nation-state threat actor maintained persistent access to its systems f…
Microsoft Patches 6 Zero-Days as Windows 10 Reaches End of Life

Microsoft Patches 6 Zero-Days as Windows 10 Reaches End of Life

Microsoft has released critical October 2025 Patch Tuesday updates KB5066835, KB5066793, and KB5066791, addressing 172 vulnerabilities including six …
Android "Pixnapping" Flaw Lets Malicious Apps Steal 2FA Codes in Under 30 Seconds

Android "Pixnapping" Flaw Lets Malicious Apps Steal 2FA Codes in Under 30 Seconds

A sophisticated new attack vector targeting Android devices can covertly steal two-factor authentication codes, private messages, and location data—a…
Hackers Weaponize Browser Cache to Deliver Malware Without Detection

Hackers Weaponize Browser Cache to Deliver Malware Without Detection

Cybersecurity researchers have uncovered a sophisticated phishing campaign that exploits browser caching mechanisms to smuggle malware onto victims&#…
Critical Telerik UI Flaw Puts Millions of Enterprise Applications at Risk

Critical Telerik UI Flaw Puts Millions of Enterprise Applications at Risk

A newly disclosed vulnerability in Progress Telerik UI for ASP.NET AJAX could enable attackers to crash or potentially execute malicious code on mill…
SonicWall Breach Far Worse Than Reported: ALL Cloud Backup Users Compromised

SonicWall Breach Far Worse Than Reported: ALL Cloud Backup Users Compromised

SonicWall has dramatically expanded the scope of last month's security breach, confirming that all customers using its cloud backup service had t…
China-Linked Hackers Weaponise Popular Open-Source Tool to Target 100+ Organisations

China-Linked Hackers Weaponise Popular Open-Source Tool to Target 100+ Organisations

Security researchers have uncovered a sophisticated attack campaign where China-nexus threat actors exploited Nezha—a legitimate open-source server m…
Cybercriminals Redirect Employee Salaries to Fraudulent Accounts, says Microsoft

Cybercriminals Redirect Employee Salaries to Fraudulent Accounts, says Microsoft

Microsoft Threat Intelligence has uncovered a sophisticated cybercrime operation targeting U.S. universities, where hackers are compromising employee…
13-Year-Old Bug in Redis Puts 330,000 Instances at Risk

13-Year-Old Bug in Redis Puts 330,000 Instances at Risk

A critical remote code execution vulnerability lurking in Redis for over a decade has been discovered by cybersecurity researchers, potentially expos…
Critical Zero-Auth Flaw in Oracle E-Business Suite Enables Remote Code Execution

Critical Zero-Auth Flaw in Oracle E-Business Suite Enables Remote Code Execution

Oracle has released an emergency security alert for a critical zero-day vulnerability in its E-Business Suite that could allow attackers to execute m…
Critical Linux Kernel Flaw Exposes Millions to Memory Corruption Attacks

Critical Linux Kernel Flaw Exposes Millions to Memory Corruption Attacks

A severe vulnerability in the Linux kernel's TLS (Transport Layer Security) subsystem could allow attackers to corrupt memory and potentially gai…
Critical Unity Flaw Exposes 70% of Mobile Games to Code Execution

Critical Unity Flaw Exposes 70% of Mobile Games to Code Execution

A high-severity vulnerability in Unity's runtime could allow attackers to execute malicious code in thousands of games and applications, affectin…
Discord Hack Exposes User Data Through Compromised Support System

Discord Hack Exposes User Data Through Compromised Support System

UPDATE (October 8, 2025): Discord has revised its initial security disclosure, confirming that approximately 70,000 users worldwide had their governm…
10 Cloud Security Risks Businesses Face in 2026

10 Cloud Security Risks Businesses Face in 2026

In 2024, the world witnessed two of the most devastating cloud security incidents in recent history. The Snowflake data breach exposed hundreds of or…
Fake Signal and ToTok Apps Deliver Spyware to Privacy-Focused Users in UAE

Fake Signal and ToTok Apps Deliver Spyware to Privacy-Focused Users in UAE

Privacy-conscious Android users in the United Arab Emirates are being targeted by sophisticated spyware campaigns disguised as secure messaging apps,…
Red Hat Breach Exposes 800 Customer Reports Containing Credentials and Network Maps

Red Hat Breach Exposes 800 Customer Reports Containing Credentials and Network Maps

Enterprise Linux giant Red Hat has confirmed a major security incident after hackers infiltrated a GitLab instance used by its consulting division, p…
New VMware Zero-Day Exploited Chinese Hackers

New VMware Zero-Day Exploited Chinese Hackers

A critical privilege escalation vulnerability in VMware products was exploited in the wild for nearly a year before being patched, security researche…
Hackers Exploit Cisco Firewall Zero-Days, CISA Issues Emergency Directive

Hackers Exploit Cisco Firewall Zero-Days, CISA Issues Emergency Directive

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued Emergency Directive, ordering federal agencies to immediately identify an…
Critical ForcedLeak Flaw Lets Attackers Steal Salesforce Customer Data

Critical ForcedLeak Flaw Lets Attackers Steal Salesforce Customer Data

Security researchers have uncovered a critical vulnerability in Salesforce's AI-powered Agentforce platform that allowed attackers to steal sensi…