Cybersecurity researchers have disclosed ChatGPhish, a vulnerability affecting ChatGPT web summaries that could expose users to phishing attacks through malicious Markdown links, QR codes, and prompt injection techniques.
Palo Alto Networks has warned that CVE-2026-0257, a PAN OS GlobalProtect authentication bypass vulnerability, is being actively exploited, exposing unpatched systems to unauthorized VPN access.
Dutch authorities have dismantled a major botnet linked to at least 17 million infected devices, disrupting infrastructure used for cybercriminal activities involving compromised computers, smartphones, and IoT devices.
A critical vulnerability in WP Maps Pro plugin is being actively exploited by threat actors to create unauthorized administrator accounts on WordPress websites, prompting urgent security updates.
Cybersecurity researchers have uncovered a supply chain attack involving the codexui-android npm package, exposing OpenAI Codex authentication tokens through a malicious exfiltration mechanism affecting developers and Android app users.
A newly identified Russia linked cyber group, GREYVIBE, has been linked to persistent cyberattacks against Ukraine using AI assisted malware, phishing campaigns, and spyware targeting military, government, and civilian organizations.
Pakistan marked International Day of UN Peacekeepers by warning of rising cyber threats, misinformation, and climate related risks facing peacekeeping missions while reaffirming its commitment to global peace operations.
Microsoft warns of a cryptojacking campaign using AI chatbot recommendations to redirect users to malware sites impersonating trusted software utilities.
Cybersecurity researchers warn that threat actors are exploiting a critical FortiClient EMS vulnerability to distribute credential stealing malware across managed endpoints using malicious PowerShell scripts.
Apple is reportedly testing a new iPhone security feature that could automatically lock stolen devices using motion detection and Apple Watch proximity signals.
