Tycoon2FA hijacks Microsoft 365 accounts via device-code phishing

The Tycoon2FA phishing kit now supports device-code phishing attacks and abuses Trustifi click-tracking URLs to hijack ...

Funnel Builder WordPress plugin bug exploited to steal credit cards

A critical vulnerability in the Funnel Builder plugin for WordPress is being actively exploited to inject malicious JavaScript snippets into WooCommerce checkout pages.
Tech Times

LinkedIn Scans Every Chrome User’s Browser Extensions and Ties the Inventory to Their Professional Identity

Every time a professional opens LinkedIn in a Chrome-based browser today, hidden JavaScript silently probes their device for ...

Zambia's media freedom under scrutiny ahead of 2026 election

As Zambia prepares for elections on August 13, there is growing debate over media freedom and fair political coverage. Media ...
CSO Online

FlowerStorm phishing gang adopts virtual-machine obfuscation to evade email defenses

Researchers say the campaign uses a browser-based JavaScript VM to hide credential theft and intercept MFA at scale.

Ontario’s new ticket resale rules were meant to protect fans. Some say they’re now losing money

While Ontario’s new ticket cap rules were meant to crack down on scalping and put fans on an equal footing, some say they’re ...

Microsoft Exchange 0-Day Exploit Sparks Emergency Warning — Hackers Are Attacking Unpatched Servers

Microsoft Exchange Servers are under threat from a zero-day vulnerability, exploited via crafted emails. With no official ...

We need to bring back civility between neighbours. Here’s how

The City of Ottawa shows a simple way to restore kindness and connection at that most vital of levels: the local ...
Windows Report

Exchange Server 2016 And 2019 Hit By Critical OWA Vulnerability

Microsoft warned Exchange Server customers about critical OWA vulnerability CVE-2026-42897 affecting on-premises deployments.

Protect your enterprise now from the Shai-Hulud worm and npm vulnerability in 6 actionable steps

TanStack had 2FA, OIDC publishing, and Sigstore provenance on every release. The Mini Shai-Hulud worm published 84 malicious ...
The Caledonian-Record

West Marine Takes Proactive Step to Strengthen Financial Foundation and Position Business for Long-Term Success

(together with its subsidiaries and affiliates, “West Marine” or the “Company”), the nation's leading omni-channel provider in the marine aftermarket, today announced that it has entered into a ...
CSO Online

Meet Fragnesia, the third Linux kernel vulnerability in a month

Linux admins reeling from handling last month’s CopyFail and last week’s Dirty Frag kernel vulnerabilities have a new ...