A large-scale campaign is exploiting a critical SQL injection vulnerability (CVE-2026-26980) in Ghost CMS to inject malicious ...

Ghost CMS SQL injection campaign has compromised 700+ websites — including Harvard University, Oxford University, and DuckDuckGo — using a CVSS 9.4 flaw to inject ClickFix malware lures that trick ...

New research highlights how AI-driven exploitation, zero-click vulnerabilities, and fragmented ransomware operations are ...

AI systems are no longer passive tools. They make decisions, execute multi-step workflows and access sensitive data ...

Lazarus Group has deployed RemotePE, a fully memory-resident trojan that is extremely hard for traditional antivirus and forensic tools to detect.

Rapid7 has released its Q1 2026 Threat Landscape Report, warning that AI-driven cyber-attacks are dramatically accelerating vulnerability exploitation and shrinking the window organisations have to ...

Drupal is warning that hackers are attempting to exploit a "highly critical" SQL injection vulnerability announced earlier ...

CVE-2026-48172 lets cPanel users run scripts as root, affecting LiteSpeed plugin 2.3–2.4.4 and exposing servers.

Ghost CMS flaw CVE-2026-26980 enabled attacks on 700+ sites, injecting ClickFix malware through fake CAPTCHA pages.

Microsoft exposes a cryptojacking campaign using SEO poisoning and ScreenConnect to target high-performance PCs, with ...

TIP (Technical Internship Programme) details including status check, eligibility, benefits, premium rates and how to apply online in India only on Oneindia ...