CBSE faces fresh scrutiny after teen researcher alleges critical flaws in OSM portal, claims Class 12 marks could be altered

Even as the Central Board of Secondary Education (CBSE) continues facing criticism over answer sheet mix-ups, portal crashes ...

'Anyone Could Edit Marks': 19-Year-Old Ethical Hacker Alleges Major Security Flaws In CBSE Evaluation System

Amid mounting student complaints over CBSE’s new On-Screen Marking system, a Class 12 student and cybersecurity researcher ...
India Today

Nisarga Adhikary, 19, claims he hacked CBSE marking portal, warned board earlier

A teen cybersecurity researcher’s blog post alleging serious flaws in CBSE’s On-Screen Marking portal has triggered concern ...

Over 200 Fake Android Apps Are Quietly Stealing Money From Phone Bills

Google needs to beef up its cybersecurity after last year's 150 Google Chrome extensions that were turned into viruses, ...

CBSE OSM portal had critical vulnerabilities, ethical hacker tells NDTV

CBSE Class 12 Evaluation System Issues: Adhikari claimed that by combining these flaws, an attacker could potentially take ...
CSO Online

TrapDoor malware campaign puts developer workstations in CISO spotlight

Malicious packages across npm, PyPI, and Crates.io show how poisoned developer workflows can become a route into enterprise systems.
Tech Times

Ghost CMS SQL Injection Hits 700 Sites: Harvard, DuckDuckGo Serve Fake Cloudflare Malware

Ghost CMS SQL injection campaign has compromised 700+ websites — including Harvard University, Oxford University, and DuckDuckGo — using a CVSS 9.4 flaw to inject ClickFix malware lures that trick ...
Dark Reading

Fake Android Apps Commit Carrier Billing Fraud for Premium Services

The disguised apps use WebView automation, JavaScript injection, and OTP interception to avoid detection and complete fraudulent subscriptions.

Orchestration is becoming the advisor’s job

The moments when great advice creates the most value are also the ones when lack of co-ordination creates the most damage ...
InfoWorld

AntV data visualization tool the latest to be hit by ongoing npm supply chain attacks

The world’s largest open-source registry, node package manager (npm), has been hit by another fast-moving malware attack, ...
Tech Times

WordPress 7.0 Ships AI Agent Infrastructure: API Key Theft Risk Surfaces on Launch Day

WordPress 7.0 “Armstrong,” released May 20, 2026, arrived without the real-time collaborative editing feature that had been ...