XSS

Zero-Click pretalx XSS Flaw Lets Hackers Hijack Conference Organizer Accounts

3 minute read

Security

Zero-Click pretalx XSS Flaw Lets Hackers Hijack Conference Organizer Accounts

pretalx XSS flaw lets attackers hijack conference organizer accounts, steal sessions, auto-accept talks, and demote admins. Patched in v2026.1.0.

byDeeba Ahmed

June 1, 2026

16 Critical Risks Found in Foxit and Apryse PDF Platforms

2 minute read

Security

Multiple Zero-Day Flaws in PDF Platforms Enable XSS and One-Click Attacks

16 zero-day security flaws found in Foxit and Apryse PDF platforms could lead to account takeover and RCE. Learn how AI identified these risks.

byDeeba Ahmed

February 23, 2026

Hidden 'AI Key' in Perplexity's Comet Browser Allows Full Device Control, Warns SquareX

4 minute read

Security

Comet Browser Flaw Lets Hidden API Run Commands on Users’ Devices

SquareX warns Perplexity's Comet AI browser contains a hidden MCP API that bypasses security, allowing attackers to install malware and seize full device control.

byDeeba Ahmed

November 20, 2025

2 minute read

Cybercrime Forum XSS Returns on Mirror and Dark Web 1 Day After Seizure

Cybercrime forum XSS is back online on its mirror and dark web domains just one day after seizure and admin arrest, but questions about its full return remain unanswered.

byWaqas

July 24, 2025

Suspected Admin of XSS.IS Cybercrime Forum Arrested in Ukraine

2 minute read

Cyber Crime

Suspected Admin of XSS.IS Cybercrime Forum Arrested in Ukraine

Suspected admin of XSS.IS, a major Russian-language cybercrime forum, arrested in Ukraine after years of running malware and data trade operations.

byWaqas

July 23, 2025

Former US Soldier Cameron John Wagenius Pleads Guilty to Major Hacking and Extortion Plot

2 minute read

Cyber Crime

Ex US Soldier Cameron Wagenius Guilty in Telecom Hacking and Extortion

Former US Army soldier Cameron Wagenius pleads guilty to hacking telecom companies and extorting $1 million+ using cybercrime forums like BreachForums and XSS.

byDeeba Ahmed

July 16, 2025

2 minute read

Zimbra CVE-2024-27443 XSS Flaw Hits 129K Servers, Sednit Suspected

A critical XSS vulnerability, CVE-2024-27443, in Zimbra Collaboration Suite’s CalendarInvite feature is actively being exploited, potentially by the…

byDeeba Ahmed

May 24, 2025

BidenCash Market Leaks 99,000 Stolen Credit Cards on Russian Forum

3 minute read

BidenCash Market Dumps 1 Million Stolen Credit Cards on Russian Forum

BidenCash dumps almost a million stolen credit card records on Russian forum, exposing card numbers, CVVs, and expiry dates in plain text with no cardholder names.

byWaqas

April 16, 2025

3 minute read

Over 350 High-Profile Websites Hit by 360XSS Attack

360XSS campaign exploits Krpano XSS to hijack search results & distribute spam ads on 350+ sites, including government,…

byDeeba Ahmed

February 28, 2025

Cisco Urges Immediate Patch for Decade-Old WebVPN Vulnerability

3 minute read

Security

Cisco Urges Immediate Patch for Decade-Old WebVPN Vulnerability

The vulnerability was first identified in 2014.

byDeeba Ahmed

December 4, 2024

The Latest

How to Recover Data from iCloud Backup Without Resetting Your iPhone

China-Linked TA4922 Hackers Target UK, Europe With New SilentRunLoader Malware

Alcasec, “Robin Hood of Spanish Hackers,” Jailed for 31 Months Over Data Theft

Fake ChatGPT Desktop App Ads Used to Push Password-Stealing Malware

XSS

Zero-Click pretalx XSS Flaw Lets Hackers Hijack Conference Organizer Accounts

Multiple Zero-Day Flaws in PDF Platforms Enable XSS and One-Click Attacks

Comet Browser Flaw Lets Hidden API Run Commands on Users’ Devices

Cybercrime Forum XSS Returns on Mirror and Dark Web 1 Day After Seizure

Suspected Admin of XSS.IS Cybercrime Forum Arrested in Ukraine

Ex US Soldier Cameron Wagenius Guilty in Telecom Hacking and Extortion

Zimbra CVE-2024-27443 XSS Flaw Hits 129K Servers, Sednit Suspected

BidenCash Market Dumps 1 Million Stolen Credit Cards on Russian Forum

Over 350 High-Profile Websites Hit by 360XSS Attack

Cisco Urges Immediate Patch for Decade-Old WebVPN Vulnerability

Halo Security Honored with 2026 MSP Today Product of the Year Award

RaccoonLine Publishes 2026 dVPN Buyer’s Guide for Privacy-Focused Users

The CISO Whisperer’s Watch List For The Gartner Security & Risk Management Summit 2026

Link11 is fully committed to Europe and is opening a Customer Excellence Hub in Lisbon

Criminal IP Returns to Infosecurity Europe 2026 with Advanced AI-Driven TI & ASM