In early January 2026, cybersecurity researchers disclosed a maximum-severity security flaw in the popular open-source workflow automation platform n8n. Tracked as CVE-2026-21858 and nicknamed “Ni8mare,” this vulnerability carries a CVSS score of 10.0 — the highest possible rating, meaning exploitation…
A recently disclosed CVE affecting MongoDB has sent shockwaves through the infrastructure and security community. Nicknamed “MongoL” (or “MongoBleed”), the vulnerability allows unauthenticated attackers to leak arbitrary server memory directly from a MongoDB process. The implications are severe: sensitive data…
Residents are strongly advised to promptly update their systems, following the tech giant’s release of an urgent update. In its latest advisory on Tuesday, the Cybersecurity Council (CSC) of the UAE has urged Apple users in the country to update…
Genetic testing company 23andMe has officially confirmed that personal data from approximately 6.9 million users, equivalent to roughly half of its total customer base, was stolen by hackers. The California-based company initially reported last week that hackers had compromised the…
In October 2023, the authentication and identity management giant, Okta, suffered a significant blow, losing $2 billion in market capitalization due to a cyberattack. While this might be the most prominent cybersecurity news of the month, it’s far from the…
A zero-day vulnerability in the Zimbra Collaboration email software has been exploited by four distinct hacker groups in real-world attacks, aiming to steal email data, user credentials, and authentication tokens. According to a report from the Google Threat Analysis Group…