Microsoft has disclosed a now-patched security flaw in Windows Admin Center that could allow an attacker to escalate their privileges. Windows Admin Center is a locally deployed, browser-based management tool… Read More »Microsoft Patches CVE-2026-26119 Privilege Escalation in Windows Admin Center
An international cybercrime operation against online scams has led to 651 arrests and recovered more than $4.3 million as part of an effort led by law enforcement agencies from 16… Read More »INTERPOL Operation Red Card 2.0 Arrests 651 in African Cybercrime Crackdown
Cybersecurity researchers have discovered what they say is the first Android malware that abuses Gemini, Google’s generative artificial intelligence (AI) chatbot, as part of its execution flow and achieves persistence.… Read More »PromptSpy Android Malware Abuses Gemini AI to Automate Recent-Apps Persistence
The cyber threat space doesn’t pause, and this week makes that clear. New risks, new tactics, and new security gaps are showing up across platforms, tools, and industries — often… Read More »ThreatsDay Bulletin: OpenSSL RCE, Foxit 0-Days, Copilot Leak, AI Password Flaws & 20+ Stories
We’ve all seen this before: a developer deploys a new cloud workload and grants overly broad permissions just to keep the sprint moving. An engineer generates a “temporary” API key… Read More »From Exposure to Exploitation: How AI Collapses Your Response Window
Cybersecurity researchers have disclosed details of a new Android trojan called Massiv that’s designed to facilitate device takeover (DTO) attacks for financial theft. The malware, according to ThreatFabric, masquerades as… Read More »Fake IPTV Apps Spread Massiv Android Malware Targeting Mobile Banking Users
Cybersecurity researchers have disclosed details of a new campaign dubbed CRESCENTHARVEST, likely targeting supporters of Iran’s ongoing protests to conduct information theft and long-term espionage. The Acronis Threat Research Unit… Read More »CRESCENTHARVEST Campaign Targets Iran Protest Supporters With RAT Malware
New research from the Citizen Lab has found signs that Kenyan authorities used a commercial forensic extraction tool manufactured by Israeli company Cellebrite to break into a prominent dissident’s phone,… Read More »Citizen Lab Finds Cellebrite Tool Used on Kenyan Activist’s Phone in Police Custody
Cybersecurity researchers have disclosed a critical security flaw in the Grandstream GXP1600 series of VoIP phones that could allow an attacker to seize control of susceptible devices. The vulnerability, tracked… Read More »Grandstream GXP1600 VoIP Phones Exposed to Unauthenticated Remote Code Execution
In 2025, navigating the digital seas still felt like a matter of direction. Organizations charted routes, watched the horizon, and adjusted course to reach safe harbors of resilience, trust, and… Read More »Cybersecurity Tech Predictions for 2026: Operating in a World of Permanent Instability