Risk & Resilience

Threat actors compromised popular GitHub Actions workflows to exfiltrate CI/CD credentials through malicious code, raising concerns around software supply chain security and GitHub repository integrity.

An in-depth analysis of OT cyber risk, operational resilience, leadership accountability, critical infrastructure protection, and governance-driven cyber security strategies in Pakistan’s evolving digital and industrial landscape.

An in-depth analysis of Data Security Posture Management (DSPM), risk-led cyber security, access governance, AI-driven data exposure, and evolving cyber resilience strategies in Pakistan’s growing digital economy.

Cybersecurity researchers disclose a critical 18 year old NGINX vulnerability, CVE-2026-42945, enabling unauthenticated remote code execution through crafted HTTP requests.

Microsoft has disclosed active exploitation of CVE 2026 42897 affecting on premises Exchange Server deployments, allowing spoofing and JavaScript execution through crafted emails in Outlook Web Access.

Security researchers have disclosed new Windows zero day vulnerabilities affecting BitLocker and CTFMON, exposing privilege escalation and encryption bypass risks across Windows 11 and Windows Server systems.

Cybersecurity researchers have identified a new TrickMo Android banking trojan variant that uses TON based command and control infrastructure, SOCKS5 proxying, and SSH tunnelling to target banking and cryptocurrency users in Europe.

A critical cPanel vulnerability CVE-2026-41940 is being actively exploited by threat actor Mr_Rot13 to deploy Filemanager backdoor, enabling credential theft, ransomware, botnet activity, and persistent system compromise across global infrastructure.

Instructure confirms an agreement with ShinyHunters following a Canvas breach involving 3.65TB of stolen data impacting nearly 9000 institutions, with threat actors leveraging a vulnerability to exfiltrate sensitive education records.

A Mini Shai Hulud worm linked to TeamPCP has compromised npm and PyPI packages across TanStack, Mistral AI, Guardrails AI and others, deploying credential stealers, CI/CD exploits, and cross ecosystem propagation techniques.

Newly identified TCLBANKER banking trojan targets 59 financial platforms using WhatsApp and Outlook worms, highlighting evolving cybercrime tactics.

Palo Alto Networks reports active exploitation of PAN OS CVE-2026-0300 allowing root level RCE, with espionage activity linked to suspected state sponsored threat cluster CL STA 1132.