The UPFRONTED: Your Leading Source for Cybersecurity and Tech News

The threat actors behind the supply chain attack targeting the p…

March 21, 2026

Tech News

FBI links Signal phishing attacks to Russian intelligence services

The FBI has issued a public service announcement warning that Ru…

March 21, 2026

Tech News

Oracle pushes emergency fix for critical Identity Manager RCE flaw

Oracle has released an out-of-band security update to fix a crit…

March 21, 2026

Tech News

Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets

Trivy, a popular open-source vulnerability scanner maintained by…

March 21, 2026

Tech News

Speagle Malware Hijacks Cobra DocGuard to Steal Data via Compromised Servers

Cybersecurity researchers have flagged a new malware dubbed Spea…

March 20, 2026

Tech News

New ‘PolyShell’ flaw allows unauthenticated RCE on Magento e-stores

A newly disclosed vulnerability dubbed 'PolyShell' affec…

March 20, 2026

Tech News

54 EDR Killers Use BYOVD to Exploit 34 Signed Vulnerable Drivers and Disable Security

A new analysis of endpoint detection and response (EDR) killers …

March 20, 2026

Tech News

DarkSword iOS Exploit Kit Uses 6 Flaws, 3 Zero-Days for Full Device Takeover

A new exploit kit for Apple iOS devices designed to steal sensit…

March 19, 2026

Tech News

CISA Warns of Zimbra, SharePoint Flaw Exploits; Cisco Zero-Day Hit in Ransomware Attacks

The U.S. Cybersecurity and Infrastructure Security Agency (CISA)…

March 19, 2026

Tech News

Aura confirms data breach exposing 900,000 marketing contacts

Identity protection company Aura has confirmed that an authorize…

March 19, 2026

Tech News

CISA orders feds to patch Zimbra XSS flaw exploited in attacks

CISA has ordered U.S. government agencies to secure their server…

March 19, 2026

Tech News

Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE via Port 23

Cybersecurity researchers have disclosed a critical security fla…

March 18, 2026

Tech News

Apple pushes first Background Security Improvements update to fix WebKit flaw

Apple has released its first Background Security Improvements up…

March 18, 2026

Tech News

GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX

The GlassWorm supply-chain campaign has returned with a new, coo…

March 18, 2026

Tech News

Europe sanctions Chinese and Iranian firms for cyberattacks

The European Union Council has announced sanctions against three…

March 18, 2026

Tech News

Konni Deploys EndRAT Through Phishing, Uses KakaoTalk to Propagate Malware

North Korean threat actors have been observed sending phishing t…

March 17, 2026

Tech News

CISA Flags Actively Exploited Wing FTP Vulnerability Leaking Server Paths

The U.S. Cybersecurity and Infrastructure Security Agency (CISA)…

March 17, 2026

Tech News

GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos

The GlassWorm malware campaign is being used to fuel an ongoing …

March 17, 2026

Tech News

Stryker attack wiped tens of thousands of devices, no malware needed

Last week's cyberattack on medical technology giant Stryker …

March 17, 2026

Tech News

DRILLAPP Backdoor Targets Ukraine, Abuses Microsoft Edge Debugging for Stealth Espionage

Ukrainian entities have emerged as the target of a new campaign …

March 16, 2026

The UPFRONTED: Your Leading Source for Cybersecurity and Tech News

Fake VMware vConnector package on PyPI targets IT pros

OpenAI says ChatGPT ads are not rolling out globally for now

Betterleaks, a new open-source secrets scanner to replace Gitleaks

Read more

Trivy Supply Chain Attack Triggers Self-Spreading CanisterWorm Across 47 npm Packages

FBI links Signal phishing attacks to Russian intelligence services

Oracle pushes emergency fix for critical Identity Manager RCE flaw

Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets

Speagle Malware Hijacks Cobra DocGuard to Steal Data via Compromised Servers

New ‘PolyShell’ flaw allows unauthenticated RCE on Magento e-stores

54 EDR Killers Use BYOVD to Exploit 34 Signed Vulnerable Drivers and Disable Security

DarkSword iOS Exploit Kit Uses 6 Flaws, 3 Zero-Days for Full Device Takeover

CISA Warns of Zimbra, SharePoint Flaw Exploits; Cisco Zero-Day Hit in Ransomware Attacks

Aura confirms data breach exposing 900,000 marketing contacts

CISA orders feds to patch Zimbra XSS flaw exploited in attacks

Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE via Port 23

Apple pushes first Background Security Improvements update to fix WebKit flaw

GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX

Europe sanctions Chinese and Iranian firms for cyberattacks

Konni Deploys EndRAT Through Phishing, Uses KakaoTalk to Propagate Malware

CISA Flags Actively Exploited Wing FTP Vulnerability Leaking Server Paths

GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos

Stryker attack wiped tens of thousands of devices, no malware needed

DRILLAPP Backdoor Targets Ukraine, Abuses Microsoft Edge Debugging for Stealth Espionage

Fake VMware vConnector package on PyPI targets IT pros

OpenAI says ChatGPT ads are not rolling out globally for now

Betterleaks, a new open-source secrets scanner to replace Gitleaks

Microsoft releases Windows 11 OOB hotpatch to fix RRAS RCE flaw

Trivy Supply Chain Attack Triggers Self-Spreading CanisterWorm Across 47 npm Packages