Security Articles

Stay ahead of emerging threats with expert analysis from 95+ security articles, vulnerability reports, and cybersecurity insights — updated daily with the latest CVEs, threat actor campaigns, and security advisories. This week (Apr 21-25, 2026): a FIRESTARTER backdoor survives Cisco firewall patches in the ArcaneDoor federal breach, Microsoft ships a CVSS 9.1 ASP.NET Core flaw that lets attackers forge authentication cookies on Linux, three Microsoft Defender zero-days chain into SYSTEM takeover with two still unpatched, and Apple patches an iOS notification bug the FBI used to pull deleted Signal messages off an iPhone.

All Articles Advisory Cyber Attack Data Breach Exploit Malware Threat Actor Vulnerability

Severity: All Critical High Medium Low

25 articles found

Featured Story

critical

Feb 6, 2026

criticalCVE AdvisoryVulnerability

Microsoft Teams Vulnerability Allows Malware Delivery Through ...

A critical vulnerability in Microsoft Teams allows attackers to deliver malware through specially crafted meeting invitations.

By Danny MercerRead Full Article

critical

CVE AdvisoryVulnerability•Feb 2, 2026

Palo Alto GlobalProtect Zero-Day CVE-2026-0001 Under Attack

Nation-state actors exploiting a critical zero-day in Palo Alto GlobalProtect VPN targeting defense contractors. Patch now or isolate affected systems.

critical

Threat IntelNation StateGTG-1002 China •Feb 1, 2026

When AI Became the Hacker: Inside the First Autonomous Cyber Espionage Campaign

A Chinese state-sponsored group turned Anthropic's Claude into the hacker itself, building a framework that allowed the AI to independently infiltrate networks, harvest credentials, and steal data. This was the first documented case of AI doing the hacking, not just assisting it.

critical

Threat IntelGeneral•Jan 31, 2026

Weekly Recap: Google Disrupts IPIDEA, Kimwolf Botnet Spreads, React2Shell Exploited, Microsoft Patches 114 Flaws & More

This week's cybersecurity developments demonstrate how quickly attackers are co-opting existing infrastructure. From Google's disruption of the IPIDEA residential proxy network to Microsoft's 114-flaw Patch Tuesday, the patterns show attackers prioritizing persistence over speed.

medium

Threat IntelCyber Attack•Jan 15, 2026

CVE-2026-20805: The Windows Zero-Day That Makes Exploitation Reliable

CVE-2026-20805 is an information disclosure vulnerability in the Windows Desktop Window Manager that allows attackers to defeat ASLR protections. Despite its medium CVSS score of 5.5, the flaw is actively being exploited as a critical enabler for exploit chains.

Is Your Mobile App Secure?

Our CyberOne MobileAssess platform performs deep static analysis, source code decompilation, and runtime security testing for iOS and Android apps. From one-time assessments to year-long continuous testing, we find what surface-level scanners miss.

Learn About Mobile Pen Testing MSP Partner Program

PreviousPage 2 of 2

Stay Informed

Subscribe to our newsletter and get the latest security insights delivered to your inbox.