Threat Actors Push ClickFix Payload via Browser Cache
Cybersecurity researchers have uncovered a new version of the ‘ClickFix’ social engineering campaign. In this updated attack, malware is hidden directly inside the victim’s browser cache to avoid detection. This [...]
Critical zero-day vulnerability is being actively exploited in Dell RecoverPoint
The flaw, tracked as CVE-2026-22769, has a maximum CVSS score of 10.0 (Critical) and has been exploited since at least mid-2024. Incident response investigations link the activity to UNC6201, a [...]
Cloud Password Managers Expose 25 Security Flaws
Researchers from ETH Zurich have discovered 25 serious security vulnerabilities in three major cloud password managers: Bitwarden, LastPass, and Dashlane. Together, these platforms protect more than 60 million users worldwide. [...]
Critical Chrome Zero-Day Under Active Exploitation
Google has released an urgent Chrome update to fix a high-severity vulnerability that is actively being exploited. The Stable channel is now updated to 145.0.7632.75/.76 for Windows and macOS, and [...]
BeyondTrust Flaw Opens the Door to Complete Active Directory Compromise
A newly disclosed high-risk vulnerability, tracked as CVE-2026-1731, is impacting self-managed deployments of BeyondTrust Remote Support (RS) and Privileged Remote Access (PRA). The flaw enables attackers to send specially crafted [...]
Get Social