China-linked hackers exploited Sitecore zero-day for initial access

An advanced threat actor tracked as UAT-8837 and believed to be linked to China has been focusing on critical infrastructure ...
Network World

Cisco finally patches seven-week-old zero-day flaw in Secure Email Gateway products

Chinese hackers are behind attacks on AsyncOS Software that allow complete takeover of the appliance, company says.

Mandiant releases rainbow table that cracks weak admin password in 12 hours

Security firm Mandiant has released a database that allows any administrative password protected by Microsoft’s NTLM.v1 hash ...

Hackers now exploiting critical Fortinet FortiSIEM flaw in attacks

Attackers are now exploiting a critical Fortinet FortiSIEM vulnerability with publicly available proof-of-concept exploit code.
PCMag

From AI Coding to QR Code Scams, 2026 Is Already a Security Nightmare

AI coding agents with exploitable vulnerabilities, cybercrime rings operating like professional enterprises, and new scam ...
The Hacker News

China-Linked APT Exploits Sitecore Zero-Day in Attacks on American Critical Infrastructure

Cisco Talos reports China-linked APT UAT-8837 targeting North American critical infrastructure via a Sitecore zero-day, ...
The Hacker News

Cisco Patches Zero-Day RCE Exploited by China-Linked APT in Secure Email Gateways

Cisco released fixes for CVE-2025-20393, a CVSS 10.0 zero-day RCE flaw in AsyncOS exploited by a China-linked APT via email ...
Computer Weekly

NSA urges continuous checks to achieve zero trust

The agency which leads US government cryptology and cybersecurity strategies, has published its latest zero trust guidance ...

Where Scams Come From

The workers came from all over the world: Namibia, Russia, Zimbabwe, Malaysia, France. Some Chinese scammers were paid, Hannah discovered, though often not what they’d been promised.