Apple Patches Over Two Dozen Vulnerabilities in iOS, macOS, and Safari

Apple's latest security patches address over two dozen vulnerabilities, primarily in WebKit, that could be chained to steal data or execute malicious code.

The Latest

Breaking News and Alerts

Microsoft Confirms Defender Zero Day CVE-2026-50656 Bypasses Protections

A fully functional exploit for a Microsoft Defender privilege escalation flaw works on patched systems and bypasses signature based detection.

Spotlight

Cybersecurity Profiles and Stories

India Blocks WhatsApp Username Feature Over Online Fraud Fears

India's government has ordered WhatsApp to suspend its new usernames feature, citing risks of untraceable fraud and impersonation by bad actors hiding behind foreign phone numbers.

Trojanized Pyrogram Forks Unleash Backdoor on Telegram Bot Servers

A campaign dubbed 'Operation Navy Ghost' has been distributing trojanized Pyrogram packages on PyPI since November 2025, giving attackers remote code execution on compromised Telegram bot servers.

Inside the BEC Ecosystem: How Organized Crime Drives Email Fraud

BEC is a multistage operation involving reconnaissance, AI powered scams, underground call centers, and mule networks that defenders must understand to preempt attacks.

AI Hallucinated Domains Become a New Vector for Phishing Attacks

Attackers are registering fake web addresses hallucinated by AI models before anyone else can, then using them to host phishing pages that steal login credentials and personal data.

Features

Research and Thought Leadership