Cisco has released fresh patches to address what it described as a “critical” security vulnerability impacting multiple Unified Communications (CM) products and Webex Calling Dedicated Instance that it has been actively exploited as a zero-day in the wild. The vulnerability, CVE-2026-20045 (CVSS score: 8.2), could permit an unauthenticated remote attacker to execute arbitrary commands on…

Once trust is granted to the repository’s author, a malicious app executes arbitrary commands on the victim’s system with no other user interaction. ​ ​ ​Read More

The bait incudes plausible subject lines and credible messages, most likely thanks to attackers’ use of large language models to craft them. ​ ​ ​Read More

As many as 3,136 individual IP addresses linked to likely targets of the Contagious Interview activity have been identified, with the campaign claiming 20 potential victim organizations spanning artificial intelligence (AI), cryptocurrency, financial services, IT services, marketing, and software development sectors in Europe, South Asia, the Middle East, and Central America. The new findings ​…

The attack consists of a NexShield malicious browser extension, a social engineering technique to crash the browser, and a Python-based RAT. ​ ​ ​Read More

The CRM vendor advised ignoring or deleting suspicious emails and said the attacks were not tied to any breach or software vulnerability. ​ ​ ​Read More

The North Korean threat actors associated with the long-running Contagious Interview campaign have been observed using malicious Microsoft Visual Studio Code (VS Code) projects as lures to deliver a backdoor on compromised endpoints. The latest finding demonstrates continued evolution of the new tactic that was first discovered in December 2025, Jamf Threat Labs said. “This…

Familiar bugs in a popular open source framework for AI chatbots could give attackers dangerous powers in the cloud. ​ ​ ​Read More

ChatGPT Health promises robust data protection, but elements of the rollout raise big questions regarding user security and safety. ​ ​ ​Read More

Cybersecurity researchers have disclosed details of a security flaw that leverages indirect prompt injection targeting Google Gemini as a way to bypass authorization guardrails and use Google Calendar as a data extraction mechanism. The vulnerability, Miggo Security’s Head of Research, Liad Eliyahu, said, made it possible to circumvent Google Calendar’s privacy controls by hiding a…