Cyber Security News

Researchers have exposed a catastrophic vulnerability hiding inside the “Claude in Chrome” extension. By weaponizing an otherwise harmless, zero-permission extension, invisible attackers can completely hijack the trusted AI assistant. Transform it into a malicious puppet that silently pillages private Gmail messages, restricted Google Drive documents, and secret GitHub repositories. This terrifying blind spot exposes the […]

The post Claude’s Chrome Extension Vulnerability Allows Malicious Extensions to Steal Gmail and Drive Data appeared first on Cyber Security News.

A serious cluster of vulnerabilities has been uncovered in PHP’s core string processing and ext-soap components, putting numerous web servers at immediate risk of total takeover. While the SOAP extension has a notorious history of memory corruption flaws, this latest discovery crosses the red line into unauthenticated Remote Code Execution (RCE). GitHub security teams are […]

The post Critical PHP SOAP Extension Vulnerabilities Enables Remote Code Execution Attacks appeared first on Cyber Security News.

Online shoppers have long been targets of digital theft, but a recent wave of attacks has raised the stakes in a troubling new way. Hackers tied to the notorious Magecart group are now hiding credit card skimmers inside Google Tag Manager (GTM) containers, turning a widely trusted web tool into a silent weapon against unsuspecting […]

The post Magecart Hackers Abuse Google Tag Manager to Inject Credit Card Skimmers appeared first on Cyber Security News.

A supply chain attack that started with a relatively obscure open-source scanner has now reached one of the most widely used application security tools in the industry. In May 2026, a malicious version of the Checkmarx Jenkins AST plugin was quietly published to the Jenkins Marketplace, exposing development pipelines to credential theft and unauthorized access. […]

The post TeamPCP Compromised Checkmarx Jenkins AST Plugin Following KICS Supply Chain Attack appeared first on Cyber Security News.

In a chilling blow to mobile security, Google’s May 2026 Android Security Bulletin has unmasked a catastrophic zero-click vulnerability lurking within the core Android System. The CVE-2026-0073 flaw in Android’s adbd daemon lets nearby threat actors remotely gain full shell access without victim interaction. Unearthed by BARGHEST security researchers, this critical cryptographic breakdown completely shatters […]

The post PoC Exploit Released for Android Zero-Click Vulnerability that Enables Remote Shell Access appeared first on Cyber Security News.

A dangerous Android banking malware known as TrickMo has resurfaced with a powerful new variant, and this time it is more stealthy, more capable, and harder to stop than ever before. The threat is actively targeting users of banking apps, digital wallets, and authenticator applications across Europe, putting financial data and account access at serious […]

The post TrickMo Android Banking Malware Targets Banking, Wallet, and Authenticator Apps appeared first on Cyber Security News.

OpenAI has introduced Daybreak, a strategic initiative to change how modern software is built and defended against emerging threats. Moving away from traditional reactive patching, Daybreak focuses on making software resilient by design from the very beginning of the development process. This approach provides defenders with the critical advantage of identifying risks earlier in the […]

The post OpenAI Daybreak Automates Vulnerability Detection and Fixing appeared first on Cyber Security News.

A new tool, BitUnlocker, reveals a practical downgrade attack against Microsoft’s BitLocker encryption, allowing attackers with physical access to decrypt protected volumes on patched Windows 11 machines in under 5 minutes by exploiting a crucial gap between patching and certificate revocation. The attack is rooted in CVE-2025-48804, one of four critical zero-day vulnerabilities discovered by […]

The post New BitUnlocker Downgrade Attack on Windows 11 Allows Access to Encrypted Disks in 5 Minutes appeared first on Cyber Security News.

A fatal authentication bypass vulnerability is actively affecting cPanel and WebHost Manager (WHM) servers worldwide. Tracked as CVE-2026-41940 and bearing an apocalyptic maximum severity score of 9.8, this critical flaw has essentially handed the keys to the kingdom directly to cybercriminals. Without needing a single username or password, unauthenticated remote attackers are ruthlessly shattering security […]

The post Hackers Abuse CVE-2026-41940 to Take Over cPanel and WHM Servers appeared first on Cyber Security News.

A significant supply-chain compromise affecting 84 npm package artifacts across the TanStack namespace. The malicious versions, published to the npm registry at approximately 19:20 and 19:26 UTC, contain a suspected credential-stealing payload targeting CI systems, including GitHub Actions. According to Socket, the compromise spans 42 TanStack packages — two malicious versions each including widely used […]

The post 84 TanStack npm Packages Hacked in Ongoing Supply-Chain Attack Targeting CI Credentials appeared first on Cyber Security News.

A popular artificial intelligence repository on Hugging Face was recently found hiding dangerous malware that targeted Windows users. The repository, named “Open-OSS/privacy-filter,” had racked up over 200,000 downloads before the platform’s team stepped in and removed it. The malicious package disguised itself as a legitimate privacy filtering tool. It copied its model card nearly verbatim […]

The post Trending Hugging Face Repository With 200k Downloads Executes Malware on Windows Machines appeared first on Cyber Security News.

Traditional ransomware disrupts organizations by encrypting data and demanding payment for decryption keys. However, a newly disclosed technique called GhostLock demonstrates a fundamentally different availability attack that achieves the same business disruption without writing a single encrypted byte to disk. Discovered by Kim Dvash, an Offensive Security Team Leader, GhostLock exploits standard Windows file-sharing behavior […]

The post GhostLock Attack Leverages Windows file-sharing to Lock Files Access Like Ransomware appeared first on Cyber Security News.

A sophisticated new cyberattack campaign is targeting Windows systems using a fake image file to sneak dangerous malware past security defenses. The operation, named Operation SilentCanvas, tricks victims into running a malicious PowerShell script disguised as a harmless JPEG photo, ultimately handing attackers full and silent control of the infected machine. The attack begins when […]

The post Hackers Use Weaponized JPEG File to Deploy Trojanized ScreenConnect Malware appeared first on Cyber Security News.

Threat actors are executing a sophisticated malvertising campaign targeting macOS users via poisoned Google Ads and deceptive artificial intelligence applications. Researchers recently uncovered an operation that redirects victims to fraudulent landing pages via sponsored search results. By combining trusted hosting platforms with the notorious “Clickfix” social engineering tactic, attackers are successfully distributing MacSync payloads and […]

The post macOS Malware Leverages Google Ads and Legitimate Claude.ai Shared Chats to Deliver Malware appeared first on Cyber Security News.

A long-active information stealer is making headlines again, and this time it is targeting more than just passwords. Vidar malware, a credential-harvesting tool in circulation since late 2018, has been observed running through a sophisticated multi-stage attack chain designed to slip past modern security defenses with ease. The threat is active and capable of walking […]

The post Vidar Malware Targets Browser Credentials, Cookies, Crypto Wallets, and System Data appeared first on Cyber Security News.

Google has rolled out a significant update to its reCAPTCHA verification system that fundamentally alters how websites verify human traffic. Announced on April 22 at the Google Cloud Next 2026 conference, the new mechanism operates through Google’s Cloud Fraud Defense tool and introduces a mandatory QR code challenge for suspicious traffic. While designed to combat […]

The post Google reCAPTCHA Update Blocks Privacy-Focused Android Users From Sites appeared first on Cyber Security News.

JDownloader, the popular open-source download manager trusted by millions of users worldwide, was at the center of a serious supply chain attack in early May 2026. Attackers quietly compromised the official jdownloader.org website and replaced legitimate installer download links with malicious files carrying a fully functional Python-based remote access trojan. Anyone who downloaded what they […]

The post JDownloader Downloader Hacked to Infect Users With New Python RAT appeared first on Cyber Security News.

Full Disk Encryption (FDE) is a security feature that encrypts the entire contents of a disk drive, ensuring that all data stored on the drive is protected from unauthorized access, even if the device is physically stolen. FDE uses robust encryption algorithms to encrypt data on the fly, providing seamless protection without impacting system performance. […]

The post 10 Best Full Disk Encryption Tools in 2026 appeared first on Cyber Security News.

As we navigate through 2026, the cybersecurity landscape has never been more complex. Threat actors are actively leveraging advanced AI, highly evasive techniques, and fileless architectures to bypass traditional security controls. For security operation centers (SOCs), incident responders, and threat hunters, static analysis alone is no longer sufficient. You need highly controlled environments where you […]

The post Top 10 Best Interactive Malware Analysis Tools in 2026 appeared first on Cyber Security News.

ODINI is a sophisticated proof-of-concept malware capable of extracting sensitive information from air-gapped computers protected by Faraday cages. By modulating the targeted computer’s CPU workload to generate low-frequency magnetic fields, this covert channel successfully transmits data through advanced physical isolation barriers. Developed by a team led by Mordechai Guri at Israel’s Ben-Gurion University, the ODINI […]

The post ODINI Malware Uses CPU Magnetic Emissions to Breach Faraday-Shielded Air-Gapped Computers appeared first on Cyber Security News.