Ciphers Security – Cybersecurity, OSINT, DFIR & Ethical Hacking Library

Latest News

ShinyHunters Defaces 330 Canvas Portals in Instructure Extortion Escalation

ShinyHunters Defaces 330 Canvas Portals in Instructure Extortion Escalation

ShinyHunters defaced Canvas login portals at 330 colleges and universities on May 7, 2026, escalating.

Read More
CVE-2026-0300: Palo Alto PAN-OS Zero-Day RCE Exploited, No Patch Until May 13

CVE-2026-0300: Palo Alto PAN-OS Zero-Day RCE Exploited, No Patch Until May

CVE-2026-0300 is a critical buffer overflow in Palo Alto PAN-OS enabling unauthenticated root-level RCE on.

Read More
Google Chrome Downloads 4GB Gemini Nano AI to Your Device Without Asking

Google Chrome Downloads 4GB Gemini Nano AI to Your Device Without

Google Chrome silently writes a 4GB Gemini Nano AI model to user devices without consent,.

Read More
CVE-2026-6973: Ivanti EPMM Zero-Day Under Active Exploitation — Patch by May 10

CVE-2026-6973: Ivanti EPMM Zero-Day Under Active Exploitation — Patch by May

CISA added CVE-2026-6973, an Ivanti EPMM RCE zero-day, to its KEV catalog. Federal agencies must.

Read More
Dirty Frag: CVE-2026-43284 and CVE-2026-43500 Grant Root Access Across All Major Linux Distros

Dirty Frag: CVE-2026-43284 and CVE-2026-43500 Grant Root Access Across All Major

Dirty Frag chains two Linux kernel bugs (CVE-2026-43284, CVE-2026-43500) to achieve root LPE on Ubuntu,.

Read More
ClaudeBleed: Flaw in Anthropic's Claude Chrome Extension Lets Any Plugin Hijack Your AI

ClaudeBleed: Flaw in Anthropic’s Claude Chrome Extension Lets Any Plugin Hijack

ClaudeBleed, a CVSS 10.0 flaw in the Claude Chrome extension, lets any zero-permission extension hijack.

Read More
28 Fake Call History Apps Defrauded Users After 7.3 Million Google Play Downloads

28 Fake Call History Apps Defrauded Users After 7.3 Million Google

Researchers found 28 fraudulent Android apps on Google Play with 7.3 million downloads that claimed.

Read More
PCPJack Cloud Worm Evicts Competitor Malware, Steals Credentials from Docker and Kubernetes

PCPJack Cloud Worm Evicts Competitor Malware, Steals Credentials from Docker and

PCPJack is a new self-propagating cloud worm that removes TeamPCP infections, then harvests credentials from.

Read More
Inside Department 4: How Bauman University's Secret GRU Program Feeds Russia's Elite Hacking Units

Inside Department 4: How Bauman University’s Secret GRU Program Feeds Russia’s

An international investigation reveals Department 4 at Bauman Moscow State Technical University trains 10–15 students.

Read More
TCLBANKER Banking Trojan Spreads via WhatsApp and Outlook Worm Modules

TCLBANKER Banking Trojan Spreads via WhatsApp and Outlook Worm Modules

Elastic Security Labs exposes TCLBANKER, a Brazilian banking trojan targeting 59 financial platforms via DLL.

Read More
ShinyHunters Hits Instructure Canvas Again: 9,000 Schools Face May 12 Data Leak Deadline

ShinyHunters Hits Instructure Canvas Again: 9,000 Schools Face May 12 Data

ShinyHunters defaced Canvas login pages on May 7, 2026, claiming a second Instructure breach with.

Read More
Metasploit Adds ARMLE Support to CVE-2026-31431 Copy Fail Linux Root Exploit

Metasploit Adds ARMLE Support to CVE-2026-31431 Copy Fail Linux Root Exploit

Rapid7's May 8 Metasploit update extends CVE-2026-31431 Copy Fail coverage to ARMLE Linux targets and.

Read More

MOST VIEWS POST

PCPJack Cloud Worm Evicts TeamPCP and Steals 40+ Credential Types at Scale
News

PCPJack Cloud Worm Evicts TeamPCP and Steals

  • May 10, 2026
LLMs Used in OT Cyberattack Against Mexican Water Utility, Dragos Warns
News

LLMs Used in OT Cyberattack Against Mexican

  • May 10, 2026
Daemon Tools Lite 12.5.1 Trojanized With Quic RAT in Build Pipeline Attack
News

Daemon Tools Lite 12.5.1 Trojanized With Quic

  • May 10, 2026
cPanel and WHM Patch Three Vulnerabilities Including RCE and Privilege Escalation
News

cPanel and WHM Patch Three Vulnerabilities Including

  • May 10, 2026
ShinyHunters Defaces 330 Canvas Portals in Instructure Extortion Escalation
News

ShinyHunters Defaces 330 Canvas Portals in Instructure

  • May 10, 2026
CVE-2026-0300: Palo Alto PAN-OS Zero-Day RCE Exploited, No Patch Until May 13
News

CVE-2026-0300: Palo Alto PAN-OS Zero-Day RCE Exploited,

  • May 10, 2026
Port Scanning Techniques: Nmap, Zenmap, and Scanning Through Firewalls
Blog

Port Scanning Techniques: Nmap, Zenmap, and Scanning

  • May 9, 2026
Oracle Monthly Critical Security Patch Updates (CSPU) Guide: Runbook Changes and Verification Automation
Blog

Oracle Monthly Critical Security Patch Updates (CSPU)

  • May 9, 2026
Google Chrome Downloads 4GB Gemini Nano AI to Your Device Without Asking
News

Google Chrome Downloads 4GB Gemini Nano AI

  • May 9, 2026
CVE-2026-6973: Ivanti EPMM Zero-Day Under Active Exploitation — Patch by May 10
News

CVE-2026-6973: Ivanti EPMM Zero-Day Under Active Exploitation

  • May 9, 2026
Dirty Frag: CVE-2026-43284 and CVE-2026-43500 Grant Root Access Across All Major Linux Distros
News

Dirty Frag: CVE-2026-43284 and CVE-2026-43500 Grant Root

  • May 9, 2026
ClaudeBleed: Flaw in Anthropic's Claude Chrome Extension Lets Any Plugin Hijack Your AI
News

ClaudeBleed: Flaw in Anthropic’s Claude Chrome Extension

  • May 9, 2026

Blog

Port Scanning Techniques: Nmap, Zenmap, and Scanning Through Firewalls
Blog

Port Scanning Techniques: Nmap, Zenmap, and Scanning Through Firewalls

Master every port scanning technique in Nmap: SYN, NULL, FIN, Xmas, Idle scans, firewall.

Oracle Monthly Critical Security Patch Updates (CSPU) Guide: Runbook Changes and Verification Automation
Blog

Oracle Monthly Critical Security Patch Updates (CSPU) Guide: Runbook Changes and Verification Automation

Oracle's monthly critical security patch update (CSPU) starts May 28, 2026. Update your runbook.

SHA-1 Algorithm Explained: How It Works, Step by Step
Blog

SHA-1 Algorithm Explained: How It Works, Step by Step

A step-by-step technical breakdown of the SHA-1 algorithm — padding, message schedule, 80-round compression,.

VENOMOUS#HELPER RMM Detection: Stop SimpleHelp and ScreenConnect Backdoors
Blog

VENOMOUS#HELPER RMM Detection: Stop SimpleHelp and ScreenConnect Backdoors

VENOMOUS#HELPER hit 80+ orgs via SimpleHelp and ScreenConnect backdoors. Detection checklist, KQL queries, PowerShell.