Friday , July 10 2026

Cyber Attack

Denmark Says Russia Carried Out Two ‘Destructive and Disruptive’ Cyber-Attacks

Denmark

Denmark has accused Russia of orchestrating two harmful cyber-attacks dubbed ‘destructive and disruptive’. The Danish Defence Intelligence Service revealed on Thursday that Moscow conducted a cyber-attack on a Danish water utility in 2024 and executed DDoS attacks on Danish websites prior to the municipal and regional council elections in November. …

Read More »

1.7 Million Login Attempts Target Palo Alto and Cisco SSL VPNs in 16 Hours

1.7 million

GreyNoise reported that login attempts on GlobalProtect portals surged to 1.7 million over 16 hours, targeting various VPNs, including Palo Alto Networks GlobalProtect and Cisco SSL VPN. Data revealed that over 10,000 unique IP addresses targeted infrastructure in the United States, Mexico, and Pakistan. The malicious traffic originated almost entirely …

Read More »

Cisco and SonicWall warn zero-day exploited in attacks

zero-day

Cisco warned customers maximum-severity Cisco AsyncOS zero-day actively exploited in attacks targeting Secure Email Gateway (SEG) and Secure Email and Web Manager (SEWM) appliances. This yet-to-be-patched zero-day (CVE-2025-20393) affects only Cisco SEG and Cisco SEWM appliances with non-standard configurations, when the Spam Quarantine feature is enabled and exposed on the …

Read More »

Hacker exploited Critical React2Shell flaw to deploy ransomware within a minute

React2Shell

A financially motivated ransomware gang exploited React2Shell vulnerability (CVE-2025-55182) to quickly access corporate networks and deploy malware less than a minute later. React2Shell (CVE-2025-55182) is a maximum severity vulnerability in React Server Components (RSC) which was publicly disclosed on 3 December 2025. The vulnerability impacts the Flight Protocol, a core …

Read More »

17 Firefox Extensions Hide Malware in Icon Files, Compromising Thousands of Users

17 Firefox Extensions

At least 17 Firefox extensions managed to evade detection by hiding malware in their icons. Thousands of users have been compromised, and these harmful add-ons remain accessible on the Firefox platform. Koi Security found 17 Firefox extensions that look safe, with no visible malicious scripts. They offer services like “free …

Read More »

Portugal updates cybercrime law to protect “Ethical Hackers/Researchers”

Portugal

Portugal has changed its cybercrime law to protect good-faith security research and to make hacking legal under specific, strict conditions. Daniel Cuthbert identified a new rule in Article 8.o-A, called “Acts not punishable due to public interest in cybersecurity,” which exempts some actions from being illegal that were once seen …

Read More »

30 orgs breach vi React2Shell flaw, 77k IP addresses vulnerable

React2Shell

More than 77,000 IP addresses online are at risk from the serious React2Shell remote code execution flaw (CVE-2025-55182). Researchers report that attackers have already breached over 30 organizations in various sectors. React2Shell is a vulnerability that allows unauthorized remote code execution with just one HTTP request. It affects all frameworks …

Read More »

Over 74 US banks, credit unions impacted via Marquis data breach

Marquis

Marquis Software Solutions has announced a data breach affecting multiple banks and credit unions in the US. Marquis Software Solutions offers data analytics, CRM tools, compliance reporting, and digital marketing to more than 700 banks, credit unions, and mortgage lenders. Marquis reported a ransomware attack on August 14, 2025, in …

Read More »