Massive Canvas LMS Breach, Unpatched Linux Zero-Day, and Palo Alto Firewall Exploits Rattle Global Organizations

Critical Unpatched 'Dirty Frag' Linux Zero-Day Allows Instant Root Access

A critical, unpatched zero-day vulnerability in the Linux kernel, dubbed 'Dirty Frag' and tracked as CVE-2026-43284, has been publicly disclosed. The flaw, which has reportedly existed for nine years within the kernel's `algif_aead` cryptographic interface, al...

New 'BARADAI' Ransomware Emerges, Demanding Up to $80,000

Researchers at CYFIRMA have identified a new ransomware strain named BARADAI that is actively targeting Windows systems. The malware encrypts files on local and network drives, appending a unique extension and dropping a ransom note with contact instructions....

Fraudulent 'CallPhantom' Apps on Google Play Scammed 7.3 Million Users

ESET researchers have exposed a massive fraud operation on the Google Play Store named 'CallPhantom.' The campaign involved 28 fraudulent apps that were collectively downloaded over 7.3 million times, primarily targeting users in India and the Asia-Pacific reg...

New Cloud Worm 'PCPJack' Steals Secrets, Eradicates Rival Malware

Researchers at SentinelLabs have discovered a new modular cloud worm named 'PCPJack' that actively steals credentials and secrets from a wide range of cloud services. The malware targets secrets for AWS, GitHub, Slack, Kubernetes, and various cryptocurrency ex...

CISO Role Crisis: Demands, Legal Risks, and Shortages Make Position Untenable

The role of the Chief Information Security Officer (CISO) is becoming increasingly untenable in 2026, according to a new report from the United States Cybersecurity Institute. A severe shortage of qualified professionals is being exacerbated by expanding job s...

Ransomware Landscape Report: Qilin Leads, 'The Gentlemen' Surges in Q1 2026

Update:A BlackFog report for Q1 2026 indicates a severe underreporting crisis in ransomware, with 2,160 undisclosed attacks tracked via dark-web leak sites compared to only 264 public disclosures. This 10-to-1 ratio suggests the true scale of the ransomware epidemic...

Actively Exploited Windows Zero-Day (CVE-2026-32202) Steals NTLM Hashes Without User Clicks

Update:New intelligence confirms that the Russian state-sponsored group APT28 (Fancy Bear) is actively exploiting CVE-2026-32202. The campaign specifically targets government and defense entities in Europe, Ukraine, and NATO member states. Attackers are delivering ma...

Microsoft Details Phishing Campaign Targeting 35,000 Users

Update:Further analysis of the Microsoft AiTM phishing campaign suggests the use of Phishing-as-a-Service (PhaaS) kits, enabling rapid deployment. The attack chain is further mapped to MITRE ATT&CK techniques including T1480.001 (CAPTCHA Evasion), T1003 (OS Credentia...

Critical Palo Alto Networks Zero-Day (CVE-2026-0300) Actively Exploited for RCE

Update:The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has officially added CVE-2026-0300 to its Known Exploited Vulnerabilities (KEV) catalog. This action mandates that all federal agencies apply mitigations or patches for the critical Palo Alto Net...

CISA Considers Slashing Critical Vulnerability Patching Deadline to 72 Hours

Update:The new report reiterates CISA's consideration of a 72-hour patching deadline, expanding on the AI models driving this concern by explicitly mentioning OpenAI's GPT-5.4-Cyber alongside Anthropic's Mythos. It also offers a more detailed breakdown of compliance...