CrowdCyber

Critical Spring AI Flaws Expose Databases to SQL and JSONPath Injection https://securityonline.info/critical-spring-ai-vulnerabil…

China-Nexus Hackers Skulk in Southeast Asian Military Orgs for Years https://www.darkreading.com/threat-intelligence/china-nex…

LeakNet ransomware uses ClickFix, Deno runtime in stealthy attacks https://www.bleepingcomputer.com/news/security/leaknet-ra…

CISA flags Wing FTP Server flaw as actively exploited in attacks https://www.bleepingcomputer.com/news/security/cisa-flags…

Critical 10.0 CVSS SandboxJS Flaw Grants Complete Remote Code Execution https://securityonline.info/golden-ticket-critical-10-cvs…

Backdoored React Native Packages Target Developers with Crypto-Stealing Malware https://securityonline.info/silent-sabotage-backdoored-re…

2025 Identity Threat Landscape Report: Inside the Infostealer Economy: Credential Threats in 2025 https://www.recordedfuture.com/blog/identity-trend-report…

The Poisoned Pickle: Critical Unpatched RCE Flaws Expose SGLang AI Infrastructure https://securityonline.info/poisoned-pickle-critical-unpa…

The End of the Static Era: Trellix Uncovers Fully Fileless Remcos RAT Campaign https://securityonline.info/end-static-era-trellix-uncove…

‘PixRevolution’ Android Trojan Hijacks Brazil’s PIX in Real-Time https://securityonline.info/pixrevolution-android-trojan-…

The Shotgun Approach: BitSight Exposes RondoDox Botnet’s Rapid-Fire 174-Exploit Arsenal Targeting IoT https://securityonline.info/shotgun-approach-bitsight-exp…

Chinese Nexus Actors Shift Focus to Qatar Amid Iranian Conflict https://www.darkreading.com/threat-intelligence/chinese-n…

Why Stryker's Outage Is a Disaster Recovery Wake-Up Call https://www.darkreading.com/cybersecurity-operations/stry…

Tenable Uncovers ‘LeakyLooker’ Flaws Turning Google Looker Studio into a Cloud Backdoor https://securityonline.info/shattered-mirrors-tenable-unc…

Winter CMS Urgently Patches Critical 10.0 CVSS Privilege Escalation Flaw https://securityonline.info/winter-cms-urgently-patches-c…

Please Don’t Feed the Scattered Lapsus ShinyHunters https://krebsonsecurity.com/2026/02/please-dont-feed-the-…

'Overly Permissive' Salesforce Cloud Configs in the Crosshairs https://www.darkreading.com/application-security/overly-p…

We audited authorization in 30 AI agent frameworks — 93% rely on unscoped API keys https://www.reddit.com/r/netsec/comments/1ruefpo/we_audit…

Fake PoCs, Misunderstood Risks Cause Cisco SD-WAN Chaos https://www.darkreading.com/vulnerabilities-threats/fake-…

AppsFlyer Web SDK hijacked to spread crypto-stealing JavaScript code https://www.bleepingcomputer.com/news/security/appsflyer-…