Ghost CMS SQL injection flaw exploited in large-scale ClickFix campaign

A large-scale campaign is exploiting a critical SQL injection vulnerability (CVE-2026-26980) in Ghost CMS to inject malicious ...
CSO Online

Unpatched ChromaDB flaw leaves servers open to remote code execution

The ChromaToast vulnerability can be exploited by forcing the ChromaDB API server to fetch and load maliciously crafted AI ...
Microsoft

Exposing Fox Tempest: A malware-signing service operation

Fox Tempest is a financially motivated threat actor operating a malware‑signing‑as‑a‑service (MSaaS) used by other ...
Global Investigative Journalism Network

Guide to Mapping Analysis Using QGIS

The open source desktop geographic information system software QGIS can be a powerful tool for investigative journalists.
Android Police

How to access your Google Drive files from any device

Nathan is a tech journalist from Canada who spends too much money on gadgets. You can find his work on Android Police, Digital Trends, iMore, Mobile Syrup and ZDNET. Nathan studied journalism at ...