Cyber Security
A critical heap buffer overflow vulnerability has been disclosed in 7-Zip version 26.00, enabling attackers to achieve arbitrary code execution via a vtable hijack by exploiting a defect in the tool’s NTFS archive handler. Tracked as CVE-2026-48095 and assigned...
Cyber Security
A newly identified scareware kit called CypherLoc is locking victims’ browsers and tricking them into calling fake Microsoft support lines. The kit has been linked to roughly 2.8 million attacks since the start of 2026, making it one of the more aggressive...
Cyber Security
PyrsistenceSniper is an advanced tool for detecting offline persistence, enabling cybersecurity analysts to identify 117 separate persistence mechanisms across Windows, Linux, and macOS platforms. Originally inspired by Autoruns and PersistenceSniper, this...
Cyber Security
A highly sophisticated supply chain attack has compromised the Laravel-Lang ecosystem, injecting credential-stealing remote code execution backdoors into 233 package versions across 700 GitHub repositories. Discovered in May 2026 by Socket and Aikido, threat actors...
Cyber Security
“`html The npm registry executed a swift platform-wide action last week after supply chain breaches jeopardized numerous developers. On May 19, npm rendered invalid every granular access token with write privileges that circumvent two-factor authentication,...
Cyber Security
“`html Two previous executives of a U.S.-based call routing and analytics firm have admitted guilt to federal offenses for knowingly facilitating India-based call centers in deceiving thousands of American victims through intricate tech-support scam operations...
