Firefox is a technology platform tracked across 50 threat clusters and 141 intelligence report mentions on ThreatCluster. First observed November 12, 2025; most recent activity July 17, 2026.
CVE-2026-2441 is a zero-day CSS vulnerability affecting all Chromium-based browsers, allowing attackers to exploit a use-after-free condition in the Blink rendering engine. This vulnerability enables the theft of…
Google has issued an emergency update to address a high-severity zero-day vulnerability, CVE-2025-13223, in its Chrome browser. This flaw, linked to the V8 JavaScript engine, allows attackers to execute arbitrary code…
Multiple critical vulnerabilities have been identified in Firefox and Thunderbird, specifically CVE-2026-4720, CVE-2026-4710, and CVE-2026-4705, all published on March 24, 2026. These vulnerabilities involve memory…
Two Russia-aligned cyber campaigns are exploiting the WinRAR vulnerability CVE-2025-8088 against Ukrainian targets nearly a year after it was patched. The flaw, a path traversal vulnerability, allows attackers to write…
On July 13, 2026, France officially attributed a series of cyber intrusions targeting its government and defense sectors to the Turla intrusion set, linked to Russia's FSB 16th Center. The attacks, ongoing since the…
CrowdStrike disclosed a critical vulnerability (CVE-2026-40050) in its LogScale product, allowing unauthenticated attackers to exploit a path traversal flaw to access sensitive files. This vulnerability affects…
A severe Linux kernel vulnerability, CVE-2026-43499, known as GhostLock, has been publicly disclosed by Nebula Security's VEGA team. This flaw, present since 2011, allows any logged-in user to gain full root control of…
Microsoft's newly developed MDASH (Multi-Model Agentic Scanning Harness) identified 16 vulnerabilities in Windows, including four critical remote code execution (RCE) flaws. The vulnerabilities were found in key…
A new macOS malware named 'Gaslight' has been identified, attributed to North Korean threat actors. This malware employs prompt injection techniques to confuse AI-assisted malware analysis tools, embedding 38 fake…
Torg Grabber, a new infostealer malware, is actively targeting 728 cryptocurrency wallet extensions and other applications, including password managers and communication tools. The malware employs the ClickFix technique…