thecyberexpress

Perseus Android Malware Targets Mobile Banking Users via Fake IPTV Apps

A newly identified strain of Perseus Android malware is quietly infiltrating smartphones by disguising itself as television streaming apps, an approach that says a lot about where mobile threats are ...
thecyberexpress

Who Is Handala — The Iran-Linked Ghost Group That Just Wiped 200K Stryker Devices

On the morning of March 11, employees at Stryker offices worldwide switched on their computers and found them blank — login screens replaced by a logo most had never seen. A small, barefoot boy with a ...
thecyberexpress

Ivanti Patches Two Zero-Days in Mobile Manager After Attackers Exploit Vulnerable Systems

Two code injection vulnerabilities allowed unauthenticated attackers to execute arbitrary code and access sensitive device information across compromised networks. Ivanti released emergency patches ...
thecyberexpress

The Cyber Express Weekly Roundup: 2026 Cybersecurity News

The opening week of 2026 has already highlighted the complexity of global cyber threats, with incidents affecting governments, educational institutions, ...
thecyberexpress

Trump Orders US Exit from Global Cyber and Hybrid Threat Coalitions

President Donald Trump has ordered the immediate withdrawal of the United States from several premier international bodies dedicated to cybersecurity, digital human rights, and countering hybrid ...
thecyberexpress

La Poste and La Banque Postale Hit by Cyberattack, Online Services Disrupted

French postal and banking services faced fresh disruptions on Thursday, January 1, 2026, following a cyberattack that temporarily rendered the websites and mobile applications of La Poste and La ...
thecyberexpress

PDVSA Cyberattack Disrupts Administrative Systems, Oil Cargo Deliveries Suspended

Venezuela’s state-run oil company, Petróleos de Venezuela (PDVSA), has confirmed that a cyberattack on PDVSA’s administrative systems caused widespread disruptions, even as the company publicly ...
thecyberexpress

Apache Warns of Critical Tomcat Vulnerabilities Impacting Versions 9, 10, and 11Apache Warns of Critical Tomcat Vulnerabilities Impacting Versions 9, 10, and 11

Apache warns of CVE-2025-55752 and CVE-2025-55754 in Tomcat 9–11, risking remote code execution and console attacks. Urgent updates are strongly advised.
thecyberexpress

Roblox Turns to AI-Based Age Estimation for All Communication-Ready Users

Roblox is rolling out a bold move to bolster child protection on its platform. In a Safety + Civility update, Chief Safety Officer Matt Kaufman announced ...
thecyberexpress

ENISA and European Commission Launch €36 Million EU Cybersecurity Reserve to Strengthen Digital Resilience

The European Union Agency for Cybersecurity (ENISA) and the European Commission have signed a landmark contribution agreement to establish and operate the EU Cybersecurity Reserve. This initiative, ...
thecyberexpress

Operation Serengeti 2.0: 1,200 Arrested, Millions Seized

Operation Serengeti 2.0 reveals why cybercrime in Africa has evolved from low-volume fraud to a continent-spanning economy of digital extortion. The success of the operation is built on the continuous ...
thecyberexpress

Decoding the Chrome CVE‑2025‑9132 V8 Vulnerability

CVE‑2025‑9132, an out-of-bounds write in Chrome’s V8 engine, risks remote code execution. Users must update to Chrome 139.0.7258.138/.139 promptly.