Cybersecurity news from across the internet
Cybersecurity news from across the internet

Cybersecurity researchers have discovered a cluster of seven malicious npm packages targeting the Vite frontend tooling ecosystem as part of a software supply chain attack. The malicious package campaign, codenamed Vite…

A vulnerability dubbed HollowByte allows unauthenticated attackers to trigger a denial-of-service (DoS) condition on OpenSSL servers with a malicious payload of just 11 bytes. [...]




Microsoft at Black Hat USA 2026: Defending trust in the age of AI and supply chain attacks
Three Steps to the Terminal: A Siemens ROX II Zero-Day Trilogy
ACR Stealer: Two observed intrusion chains amid increased threat activity
AI, Automation and Attacks: Unpacking the Unit 42 2026 Global Incident Response Report
ISC Stormcast For Friday, July 17th, 2026 https://isc.sans.edu/podcastdetail/10012, (Fri, Jul 17th)
VU#885548: Denial-of-service vulnerability in HTTP/2 servers via stalled flow-control conditions
VU#326070: SGLang contains a vulnerable pickle deserialization vulnerability through the expert-parallel subsystem
CISA Adds Three Known Exploited Vulnerabilities to Catalog
Shark vacuum flaw exposes cameras, home maps and Wi-Fi passwords
How to use GitHub safely
The backlash against Flock cameras is spreading
Trust, Verify, Protect: Modernizing Email Security for the Cloud