8+ hour, 15+ min ago  (326+ words) A weaponized proof-of-concept exploit framework, c Panel Sniper, has been publicly released to exploit a critical vulnerability in c Panel and Web Host Manager. Security researcher Yunus Emre "zta" recently published the c Panel Sniper exploit, which requires no external…...

1+ day, 4+ hour ago  (419+ words) A new Android surveillance tool called Kids Protect is being marketed as a spyware-as-a-service platform that lets buyers rebrand and resell the malware under their own name. Security researchers at Certo found the tool advertised on a clear-web hacking forum,…...

2+ day, 4+ hour ago  (309+ words) A critical authentication bypass vulnerability in c Panel & WHM, tracked as'CVE-2026-41940, is being actively exploited in the wild, forcing emergency patch rollouts across the global web hosting industry. Security researchers at watch Towr have released a proof-of-concept (Po C) detection tool…...

2+ day, 5+ hour ago  (202+ words) Most significantly, Git Hub-based exfiltration is now the'primary'mechanism rather than a fallback, and the operation shifts from the REST API to the'Graph QL API'for posting encrypted payloads. The malware also introduces a'fallback for Git Hub repository poisoning. If no Git…...

3+ day, 6+ hour ago  (284+ words) Google has released an urgent security update for its Chrome browser, patching multiple critical vulnerabilities that could allow attackers to execute arbitrary code on affected systems. The update, rolled out via Chrome Stable Channel version 147. 0. 7727. 137/138 for Windows and mac OS…...

3+ day, 5+ hour ago  (352+ words) Microsoft has acknowledged a newly introduced issue affecting Remote Desktop Protocol (RDP) connections following its April 14, 2026, Patch Tuesday rollout. The problem impacts systems running Windows 11 version 26 H1 (KB5083768, OS Build 28000. 1836), where recently enhanced security warnings may render incorrectly, disrupting user interaction and…...

3+ day, 21+ hour ago  (688+ words) A newly analyzed DDo S botnet named Kamasers has emerged as one of the most operationally dangerous malware families observed in recent threat intelligence reporting, combining multi-vector distributed denial-of-service capabilities with a built-in loader function that opens infected systems to…...

4+ day, 46+ min ago  (333+ words) Whats App is advancing its privacy-first strategy by developing a proprietary cloud backup service with mandatory end-to-end encryption (E2 EE), aiming to eliminate reliance on third-party storage platforms like Google Drive and Apple i Cloud. Whats App is actively building an…...

4+ day, 6+ hour ago  (362+ words) A major incident involving a Claude Opus 4. 6-powered AI coding agent has raised serious concerns about AI safety and infrastructure security. The agent, operating through the Cursor editor, accidentally deleted the entire production database and backups of the Saa S…...

4+ day, 6+ hour ago  (388+ words) Security researchers from Threat Labz have uncovered a deceptive threat hiding within the official Google Play Store. A fake document reader application, designed to look like a standard file management utility, was found secretly delivering the dangerous Anatsa Android banking…...