Home

CISA Adds Actively Exploited Linux Root Access Bug CVE-2026-31431 to KEV

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added a recently disclosed security flaw impacting various Linux distributions to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in th…

by The Hacker News May 3, 2026

Trellix Confirms Source Code Breach With Unauthorized Repository Access

Cybersecurity company Trellix has announced that it suffered a breach that enabled unauthorized access to a “portion” of its source code. It said it “recently identified” the compromise of its source code repository and that it began working with “lead…

by The Hacker News May 2, 2026

30,000 Facebook Accounts Hacked via Google AppSheet Phishing Campaign

A newly discovered Vietnamese-linked operation has been observed using a Google AppSheet as a “phishing relay” to distribute phishing emails with an aim to compromise Facebook accounts. The activity has been codenamed AccountDumpling by Guardio, with t…

by The Hacker News May 1, 2026

Breaking News

CISA Adds Actively Exploited Linux Root Access Bug CVE-2026-31431 to KEV

Trellix Confirms Source Code Breach With Unauthorized Repository Access

30,000 Facebook Accounts Hacked via Google AppSheet Phishing Campaign

Cybercrime Groups Using Vishing and SSO Abuse in Rapid SaaS Extortion Attacks

China-Linked Hackers Target Asian Governments, NATO State, Journalists, and Activists

Top Five Sales Challenges Costing MSPs Cybersecurity Revenue

Two Cybersecurity Professionals Get 4-Year Sentences in BlackCat Ransomware Attacks

Poisoned Ruby Gems and Go Modules Exploit CI Pipelines for Credential Theft

PyTorch Lightning and Intercom-client Hit in Supply Chain Attacks to Steal Credentials

ThreatsDay Bulletin: SMS Blaster Busts, OpenEMR Flaws, 600K Roblox Hacks and 25 More Stories

New Python Backdoor Uses Tunneling Service to Steal Browser and Cloud Credentials

EtherRAT Distribution Spoofing Administrative Tools via GitHub Facades

New Linux ‘Copy Fail’ Vulnerability Enables Root Access on Major Distributions

Google Fixes CVSS 10 Gemini CLI CI RCE and Cursor Flaws Enable Code Execution

SAP-Related npm Packages Compromised in Credential-Stealing Supply Chain Attack

New Wave of DPRK Attacks Uses AI-Inserted npm Malware, Fake Firms, and RATs

Webinar: How to Automate Exposure Validation to Match the Speed of AI Attacks

What to Look for in an Exposure Management Platform (And What Most of Them Get Wrong)

Critical cPanel Authentication Vulnerability Identified — Update Your Server Immediately

CISA Adds Actively Exploited ConnectWise and Windows Flaws to KEV

Latest from the Blog

CISA Adds Actively Exploited Linux Root Access Bug CVE-2026-31431 to KEV

Trellix Confirms Source Code Breach With Unauthorized Repository Access

30,000 Facebook Accounts Hacked via Google AppSheet Phishing Campaign