Cyber ​​Security Hub

In recent days, a trend on the social network Threads has startled many young people as they witnessed their entire personal information being "exposed" after just a few seconds of searching.

Microsoft has officially released critical patches to address a series of severe security vulnerabilities in Outlook and Word.

Mới đây, công ty tình báo mối đe dọa mạng Defused đã phát lời cảnh báo quan trọng về việc hệ thống FortiSandbox của Fortinet đang trở thành mục tiêu trong các cuộc tấn công khai thác lỗ hổng.

Google has officially rolled out a major security update for Chrome, addressing 28 vulnerabilities. Among these are several critical flaws that could allow attackers to execute malicious code on targeted systems.

A single click by a user on a trusted link pointing to a legitimate Microsoft domain could have allowed an attacker to covertly extract highly sensitive information, including emails, calendar schedules, and indexed files.

A serious security incident was recently confirmed by Meta, where an artificial intelligence (AI) support tool was exploited by cybercriminals, putting thousands of Instagram user accounts at risk of data exposure and unauthorized access.

Google has officially filed a lawsuit to dismantle the technical infrastructure of a large-scale cybercrime organization. The network stands accused of leveraging artificial intelligence (AI) technology to orchestrate phishing campaigns, defrauding hundreds of thousands of victims worldwide.

This meaningful activity took place continuously for three days, from June 11 to June 13, 2026, at Nguyen Hue walking street, Ho Chi Minh city. It was a special zone within the framework of the "Peaceful Fatherland" Gala art program organized by the Ministry of Public Security.

On the night of June 12, millions of users worldwide suddenly lost access to familiar applications within the Meta ecosystem. This widespread disruption not only caused inconvenience to individual users but also led to a drop of nearly $1 billion in billionaire Mark Zuckerberg's net worth.

A researcher at the cybersecurity firm Calif has just discovered a severe threat named HTTP/2 Bomb, which directly threatens the default configurations of the world's most popular web servers, such as NGINX, Apache HTTPD, Microsoft IIS, Envoy, and Cloudflare Pingora.

To address these vulnerabilities, GitHub has announced significant security-focused modifications arriving with the upcoming npm v12 next month

The cybersecurity world has just experienced a volatile week marked by two major events unfolding almost simultaneously. First, 21 critical vulnerabilities were uncovered in FFmpeg. Shortly after, Google released Chrome 149, packed with patches for up to 429 security vulnerabilities.

Budgets are rising, but 53% of enterprises fail due to time constraints. Discover lean cybersecurity training strategies and drill solutions from IPSIP experts.

ServiceNow has long been a familiar platform for many large enterprises and organizations in managing Information Technology Service Management (ITSM) as well as operating internal workflows. However, a recently published threat intelligence report reveals that this platform is facing a critical security vulnerability, raising major concerns about information security in Software as a Service (SaaS) cloud environments.

A newly discovered campaign named Operation TaxShadow has been observed leveraging phishing emails impersonating tax authorities to trick Windows users into downloading dangerous malware. Remarkably, this malware operates entirely within the system memory, leaving minimal digital footprints and making detection and prevention extremely difficult.

Following the previous two vulnerabilities, BlueHammer and RedSun, researcher Chaotic Eclipse has just publicized two new flaws named YellowKey and GreenPlasma, directly threatening the Windows security ecosystem and BitLocker encryption.

A dangerous phishing campaign is currently targeting Android operating system users in Europe. Threat actors are exploiting the GitHub platform to distribute fake updates of reputable banking applications, embedding a malware strain named NFCShare to steal victims' assets.

When the Law on Cyber Security 2025 officially takes effect on 1st July, 2026, many seemingly harmless online habits of users will be strictly regulated to build a safer and more civilized digital environment.

A severe security vulnerability is being actively exploited by cybercriminals to infiltrate corporate networks without requiring valid user passwords.

Detailed report on Microsoft's June 2026 periodic security updates addressing over 200 system flaws, including 3 critical zero-days threatening BitLocker, HTTP/2, and Windows.