Follow Cyber Kendra on Google News! | WhatsApp | Telegram

Add as a preferred source on Google
Security
Hackers Exploit FortiWeb Zero-Day to Hijack Admin Accounts

Hackers Exploit FortiWeb Zero-Day to Hijack Admin Accounts

A critical security vulnerability in Fortinet's FortiWeb web application firewall is being actively exploited in the wild, allowing attackers to …
Anthropic Exposes First AI-Powered State-Sponsored Hack

Anthropic Exposes First AI-Powered State-Sponsored Hack

Anthropic has disclosed what security researchers are calling a watershed moment in cybersecurity: the first documented case of a largely autonomous …
Massive Knownsec Breach Exposes China's Global Hacking Arsenal and Target Lists

Massive Knownsec Breach Exposes China's Global Hacking Arsenal and Target Lists

One of China's largest cybersecurity firms has been compromised in what security experts are calling one of the most consequential state-backed h…
Three Notorious Hacker Groups Merge Into Cybercrime Supercartel

Three Notorious Hacker Groups Merge Into Cybercrime Supercartel

Three of the world's most prolific cybercrime collectives—Scattered Spider, LAPSUS, and Shiny Hunters—have merged into a unified threat alliance …
Google's AI Uncovers Critical Safari Flaws in iOS 26.1

Google's AI Uncovers Critical Safari Flaws in iOS 26.1

Apple has patched six critical WebKit vulnerabilities in iOS 26.1 and iPadOS 26.1, with all six flaws discovered by Google's AI-powered Big Sleep…
Hackers Weaponise OpenAI's API to Build Undetectable Backdoor

Hackers Weaponise OpenAI's API to Build Undetectable Backdoor

Cybersecurity researchers have uncovered a sophisticated backdoor that exploits OpenAI's legitimate services as a covert command-and-control chan…
iPhone Users Get More Scam Texts Than Android Phone, Google Reveals

iPhone Users Get More Scam Texts Than Android Phone, Google Reveals

Mobile scammers stole over $400 billion from victims worldwide in the past year, but new data shows Android users are experiencing far fewer attacks …
Google Refutes Gmail Breach Claims as 183 Million Credentials Surface in Database

Google Refutes Gmail Breach Claims as 183 Million Credentials Surface in Database

Widespread conversation over a supposed Gmail security breach affecting 183 million users has been dismissed by Google as a fundamental misunderstand…
Your AI Chats Were Sent to Strangers on Google Cloud

Your AI Chats Were Sent to Strangers on Google Cloud

A critical security vulnerability in Google Cloud Platform's Vertex AI service allowed users' AI-generated responses to be accidentally route…
Hackers Exploit Windows Server Flaw Hours After Emergency Patch

Hackers Exploit Windows Server Flaw Hours After Emergency Patch

Cybersecurity researchers have confirmed active exploitation of a critical Windows Server Update Services (WSUS) vulnerability just hours after Micro…
Critical Dolby Decoder Flaw Enables Zero-Click Attacks on Billions of Android Devices

Critical Dolby Decoder Flaw Enables Zero-Click Attacks on Billions of Android Devices

Google's Project Zero has disclosed a severe vulnerability in Dolby's DDPlus Unified Decoder that becomes a zero-click exploit on Android dev…
Nation-State Hackers Steal F5 BIG-IP Source Code in Months-Long Breach

Nation-State Hackers Steal F5 BIG-IP Source Code in Months-Long Breach

F5 Networks has disclosed a significant security breach where a sophisticated nation-state threat actor maintained persistent access to its systems f…
Microsoft Patches 6 Zero-Days as Windows 10 Reaches End of Life

Microsoft Patches 6 Zero-Days as Windows 10 Reaches End of Life

Microsoft has released critical October 2025 Patch Tuesday updates KB5066835, KB5066793, and KB5066791, addressing 172 vulnerabilities including six …
Android "Pixnapping" Flaw Lets Malicious Apps Steal 2FA Codes in Under 30 Seconds

Android "Pixnapping" Flaw Lets Malicious Apps Steal 2FA Codes in Under 30 Seconds

A sophisticated new attack vector targeting Android devices can covertly steal two-factor authentication codes, private messages, and location data—a…
Hackers Weaponize Browser Cache to Deliver Malware Without Detection

Hackers Weaponize Browser Cache to Deliver Malware Without Detection

Cybersecurity researchers have uncovered a sophisticated phishing campaign that exploits browser caching mechanisms to smuggle malware onto victims&#…
Critical Telerik UI Flaw Puts Millions of Enterprise Applications at Risk

Critical Telerik UI Flaw Puts Millions of Enterprise Applications at Risk

A newly disclosed vulnerability in Progress Telerik UI for ASP.NET AJAX could enable attackers to crash or potentially execute malicious code on mill…
SonicWall Breach Far Worse Than Reported: ALL Cloud Backup Users Compromised

SonicWall Breach Far Worse Than Reported: ALL Cloud Backup Users Compromised

SonicWall has dramatically expanded the scope of last month's security breach, confirming that all customers using its cloud backup service had t…
China-Linked Hackers Weaponise Popular Open-Source Tool to Target 100+ Organisations

China-Linked Hackers Weaponise Popular Open-Source Tool to Target 100+ Organisations

Security researchers have uncovered a sophisticated attack campaign where China-nexus threat actors exploited Nezha—a legitimate open-source server m…
Cybercriminals Redirect Employee Salaries to Fraudulent Accounts, says Microsoft

Cybercriminals Redirect Employee Salaries to Fraudulent Accounts, says Microsoft

Microsoft Threat Intelligence has uncovered a sophisticated cybercrime operation targeting U.S. universities, where hackers are compromising employee…
13-Year-Old Bug in Redis Puts 330,000 Instances at Risk

13-Year-Old Bug in Redis Puts 330,000 Instances at Risk

A critical remote code execution vulnerability lurking in Redis for over a decade has been discovered by cybersecurity researchers, potentially expos…