Identity

Actively exploited funnel builder flaw allows WooCommerce checkout skimming

Ravi LakshmananMay 16, 2026Vulnerabilities / Website Security A critical security vulnerability affecting the Funnel Builder plugin for WordPress has been exploited to inject malicious JavaScript code into WooCommerce checkout pages with the purpose of stealing payment data. Details…

Identity

Turla turns Kazuar backdoor into modular P2P botnet for persistent access

Identity

Four OpenClaw flaws allow data theft, privilege escalation, and persistence

Identity

What you can learn about your real attack surface by observing your tools for 45 days

Identity

TanStack supply chain attack attacks two OpenAI employee devices, forcing macOS updates

Identity

On-premises Microsoft Exchange Server CVE-2026-42897 can be exploited via crafted email

Identity

CISA adds Cisco SD-WAN CVE-2026-20182 to KEV after administrator access exploit

Identity

Cisco Catalyst SD-WAN Controller Authentication Bypass Is Actively Abused to Gain Administrative Access

North Korea’s APT37 uses Facebook social engineering to deliver RokRAT malware

By April 13, 20260

Ravi LakshmananApril 13, 2026Social engineering/threat intelligence A North Korean hacker group tracked as APT37 (also…

OpenAI revokes macOS app certificates following malicious Axios supply chain incident

By April 13, 20260

OpenAI disclosed a GitHub Actions workflow used to sign a macOS app that downloaded the…

Cloud Threat Retrospective 2026 | Wiz Research

By April 13, 20260

Traditional vulnerabilities remain a key factor in cloud threat actor activity in 2025. In publicly…

CPUID Compromise Distributes STX RAT via Trojanized CPU-Z and HWMonitor Downloads

By April 12, 20260

Rabi LakshmananApril 12, 2026Malware/Threat Intelligence An unknown attacker has compromised CPUID (‘cpuid[.]com”), a website that…

Adobe patches actively exploited Acrobat Reader flaw CVE-2026-34621

By April 12, 20260

Rabi LakshmananApril 12, 2026Vulnerabilities / Endpoint Security Adobe has released an emergency update to fix…

Law enforcement uses Webloc to track 500 million devices via advertising data

By April 11, 20260

Hungary’s domestic intelligence agency, El Salvador’s national police, and several law enforcement agencies and police…

What's Hot

The haves and have-nots of the AI gold rush

Research repository ArXiv bans authors for a year if they let AI do all the work

Offline desk gadget that actually made me sit up straighter

Identity

Actively exploited funnel builder flaw allows WooCommerce checkout skimming

Turla turns Kazuar backdoor into modular P2P botnet for persistent access

Four OpenClaw flaws allow data theft, privilege escalation, and persistence

What you can learn about your real attack surface by observing your tools for 45 days

TanStack supply chain attack attacks two OpenAI employee devices, forcing macOS updates

On-premises Microsoft Exchange Server CVE-2026-42897 can be exploited via crafted email

CISA adds Cisco SD-WAN CVE-2026-20182 to KEV after administrator access exploit

Cisco Catalyst SD-WAN Controller Authentication Bypass Is Actively Abused to Gain Administrative Access

North Korea’s APT37 uses Facebook social engineering to deliver RokRAT malware

OpenAI revokes macOS app certificates following malicious Axios supply chain incident

Cloud Threat Retrospective 2026 | Wiz Research

CPUID Compromise Distributes STX RAT via Trojanized CPU-Z and HWMonitor Downloads

Adobe patches actively exploited Acrobat Reader flaw CVE-2026-34621

Law enforcement uses Webloc to track 500 million devices via advertising data

Latest Posts

The haves and have-nots of the AI gold rush

Research repository ArXiv bans authors for a year if they let AI do all the work

Offline desk gadget that actually made me sit up straighter

Actively exploited funnel builder flaw allows WooCommerce checkout skimming

$60 billion AI chip darling Cerebras consumes $8 million a month and nearly dies an early death

Trending News

Tesla Dojo: Elon Musk’s big plan to build an AI supercomputer, explained

AI Health Coaches Are Coming Soon to a Device Near You

Sudanese Army Plays More Capital Khartoum from RSF | Sudan War News

Castilla-La Mancha Ignites Innovation: fiveclmsummit Redefines Tech Future

Local Power, Health Innovation: Alcolea de Calatrava Boosts FiveCLM PoC with Community Engagement

The Future of Digital Twins in Healthcare: From Virtual Replicas to Personalized Medical Models

Human Digital Twins: The Next Tech Frontier Set to Transform Healthcare and Beyond

What's Hot

Identity

Latest Posts

Trending News

Subscribe to Updates