‘DirtyClone’ Linux Kernel Vulnerability Leads to Root Access

A recently disclosed Linux kernel vulnerability, tracked as CVE-2026-43503 and referred to as DirtyClone, has been found to allow any local user to gain root privileges on affected systems. The flaw was discovered by security researchers at JFrog, who have published technical details and a proof of concept (PoC) targeting the issue. The vulnerability exists … Read more

US seizes hundreds of FIFA World Cup illegal streaming domains

The US Justice Department’s Criminal Division has taken a major step in protecting consumers and enforcing intellectual property rights worldwide by seizing nearly 400 web domains used for illegally streaming matches at the FIFA World Cup. These websites, which provided unauthorized real-time streams of the tournament, were operating in clear violation of U.S. copyright law. … Read more

Microsoft Removes 119 Edge Extensions That Hid Malware in Images and Fonts

Cybersecurity firm Microsoft has taken swift action to remove 119 Edge extensions from its online store after discovering that many of them were secretly harboring malware. The malicious code was embedded in seemingly innocuous images and fonts, making it nearly impossible for users to detect. The compromised extensions were designed to evade detection by security … Read more

Gamaredon Expands Ukraine Attacks with New Malware and Cloud Service Abuse

A sophisticated Ukrainian threat group, known as Gamaredon, has escalated its attacks on the country’s government and military targets with a new arsenal of malware and abused cloud services. The group’s latest expansion poses significant risks not just for Ukraine but also for global organizations that rely on cloud computing. Gamaredon, a well-known threat actor … Read more

Why Post-Quantum Cryptography Starts With Credentials

The Rise of Post-Quantum Cryptography Starts with Credentials In a significant shift towards strengthening digital security, organizations are embracing post-quantum cryptography (PQC) to protect against the looming threat of quantum computers that could potentially break current encryption methods. However, recent research highlights a crucial starting point for implementing PQC: secure credentials management. A key challenge … Read more

OpenAI Unveils GPT-5.6 Sol as Its Most Advanced Cybersecurity AI

OpenAI Unveils GPT-5.6 Sol as Its Most Advanced Cybersecurity AI, but with Strings Attached In a major development in the world of artificial intelligence (AI) and cybersecurity, OpenAI has announced the limited preview of its new GPT-5.6 model lineup, featuring three tier-based systems named Sol, Terra, and Luna. Among these, GPT-5.6 Sol stands out as … Read more

US Offers $10 Million Bounty for Russian State Hackers as Messaging App Attacks Evolve

The US government has announced a $10 million bounty for information leading to the identification of Russian state hackers who have been targeting high-profile individuals, including current and former government officials, military leaders, journalists, and politicians. The threat actors, tracked as UNC5792 and UNC4221, are linked to the Russian intelligence services (RIS) and have been … Read more

OpenAI and Anthropic Limit New AI Models to Trump-Approved Customers During Cybersecurity Review

In a move that has left the tech community reeling, OpenAI and Anthropic have both been restricted by the Trump administration from releasing their latest AI models to the public due to concerns over national security risks. The unprecedented government vetting of these powerful technologies has sparked debate about the balance between innovation and regulation. … Read more

Public PoC Released for Critical libssh2 CVE-2026-55200 Client-Side SSH Flaw

Critical SSH Flaw Exposes Millions to Remote Code Execution Attacks A devastating security vulnerability has been unearthed in the popular libssh2 library, used by millions of users worldwide for secure shell (SSH) connections. The flaw, identified as CVE-2026-55200, allows attackers to execute arbitrary code on vulnerable systems, exploiting a client-side weakness in the SSH protocol. … Read more

Microsoft Removes 119 Edge Extensions That Hid Malware in Images and Fonts

Microsoft’s Edge browser has been rocked by a significant security breach, with the company announcing the removal of 119 extensions that were secretly injecting malware into users’ browsers. The malicious extensions, which ranged from productivity tools to games and utilities, had been downloaded over 1 million times before being pulled from the Microsoft Store. The … Read more