- VoidStealer malware steals Chrome master key via debugger trick
- Trivy vulnerability scanner breach pushed infostealer via GitHub Actions
- Google adds ‘Advanced Flow’ for safe APK sideloading on Android
- Microsoft Azure Monitor alerts abused for callback phishing attacks
- FBI Warns Russian Hackers Target Signal, WhatsApp in Mass Phishing Attacks
- Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity Manager
- CISA Flags Apple, Craft CMS, Laravel Bugs in KEV, Orders Patching by April 3, 2026
- Trivy Supply Chain Attack Triggers Self-Spreading CanisterWorm Across 47 npm Packages
- FBI links Signal phishing attacks to Russian intelligence services
- Patch Now: Oracle’s Fusion Middleware Has Critical RCE Flaw
- Oracle pushes emergency fix for critical Identity Manager RCE flaw
- Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets
- Police take down 373,000 fake CSAM sites in Operation Alice
- Cyber OpSec Fail: Beast Gang Exposes Ransomware Server
- Critical Langflow Flaw CVE-2026-33017 Triggers Attacks within 20 Hours of Disclosure