Deeba Ahmed

1819 posts

Deeba is a veteran cybersecurity reporter at Hackread.com with over a decade of experience covering cybercrime, vulnerabilities, and security events. Her expertise and in-depth analysis make her a key contributor to the platform’s trusted coverage.

2 minute read

Hackers Poison Axios npm Package with 100 Million Weekly Downloads

Axios npm Package compromised in a supply chain attack, exposing developers to malware, data theft, and full system takeover risks worldwide.

byDeeba Ahmed

March 31, 2026

Critical F5 BIG-IP Flaw Upgraded to 9.8 RCE, Exploited in the Wild

3 minute read

Security

Critical F5 BIG-IP Flaw Upgraded to 9.8 RCE, Exploited in the Wild

F5 BIG-IP APM flaw CVE-2025-53521 escalates to critical 9.8 RCE, actively exploited. Patch now, check IoCs, and secure vulnerable systems immediately.

byDeeba Ahmed

March 31, 2026

OpenAI Codex Vulnerability Allowed Attackers to Steal GitHub Tokens

2 minute read

Security

OpenAI Codex Vulnerability Allowed Attackers to Steal GitHub Tokens

OpenAI Codex vulnerability allowed attackers to steal GitHub tokens via malicious branch names using hidden Unicode command injection flaw.

byDeeba Ahmed

March 30, 2026

15-Year-Old strongSwan Flaw Lets Attackers Crash VPNs via Integer Underflow

2 minute read

Security
VPN

15-Year-Old strongSwan Flaw Lets Attackers Crash VPNs via Integer Underflow

15-year-old strongSwan flaw allows attackers to crash VPNs via integer underflow bug, affecting EAP-TTLS plugin and multiple versions worldwide.

byDeeba Ahmed

March 30, 2026

2 minute read

TeamPCP Uses Fake Ringtone File in Tainted Telnyx SDK to Steal Credentials

Telnyx issues an urgent alert after hackers TeamPCP uploaded malicious versions (4.87.1 & 4.87.2) of its Python SDK to steal cloud and crypto credentials.

byDeeba Ahmed

March 30, 2026

3 minute read

Lloyds Group to Compensate 450,000 Customers After App Glitch

Lloyds Banking Group to compensate 450,000 customers after app glitch exposed data. Find out how the glitch affected…

byDeeba Ahmed

March 28, 2026

Google Sets 2029 Deadline as Quantum Computers Threaten Encryption

3 minute read

Security

Google Sets 2029 Deadline as Quantum Computers Threaten Encryption

Google fast-tracks post-quantum cryptography with a 2029 deadline as researchers warn quantum computers could break current encryption sooner than expected.

byDeeba Ahmed

March 27, 2026

2 minute read

BianLian Ransomware Spreads via Fake Invoice SVG Images in New Attacks

Researchers at WatchGuard have identified a new phishing campaign targeting companies in Venezuela. Using malicious SVG image files…

byDeeba Ahmed

March 27, 2026

New Ghost Vampaign Uses Fake npm Progress Bars to Phish Sudo Passwords

2 minute read

New Ghost Campaign Uses Fake npm Progress Bars to Phish Sudo Passwords

ReversingLabs researchers identify a new Ghost campaign using fake npm install logs and progress bars to phish for sudo passwords and steal crypto wallets from developers.

byDeeba Ahmed

March 27, 2026

2 minute read

Quish Splash QR Code Phishing Campaign Hits 1.6 Million Users

7AI research reveals a massive QR code phishing attack that evaded SPF, DKIM, and DMARC. Find out how 1.6 million emails went undetected.

byDeeba Ahmed

March 26, 2026

The Latest

Microsoft Vulnerabilities Drop, But Critical Flaws Double, Report Warns

BreachLock Named Representative Vendor in the 2026 Gartner Market Guide for Adversarial Exposure Validation

The Ungoverned Workforce: Cybersecurity Insiders Finds 92% Lack Visibility Into AI Identities

Threat Intel Scraping Without Burning Your Cover or Your Stack

Deeba Ahmed

Hackers Poison Axios npm Package with 100 Million Weekly Downloads

Critical F5 BIG-IP Flaw Upgraded to 9.8 RCE, Exploited in the Wild

OpenAI Codex Vulnerability Allowed Attackers to Steal GitHub Tokens

15-Year-Old strongSwan Flaw Lets Attackers Crash VPNs via Integer Underflow

TeamPCP Uses Fake Ringtone File in Tainted Telnyx SDK to Steal Credentials

Lloyds Group to Compensate 450,000 Customers After App Glitch

Google Sets 2029 Deadline as Quantum Computers Threaten Encryption

BianLian Ransomware Spreads via Fake Invoice SVG Images in New Attacks

New Ghost Campaign Uses Fake npm Progress Bars to Phish Sudo Passwords

Quish Splash QR Code Phishing Campaign Hits 1.6 Million Users

BreachLock Named Representative Vendor in the 2026 Gartner Market Guide for Adversarial Exposure Validation

The Ungoverned Workforce: Cybersecurity Insiders Finds 92% Lack Visibility Into AI Identities

Security Risk Advisors Purple Team Participants Can Now Earn CPE Credits

Mallory Launches AI-Native Threat Intelligence Platform, Turning Global Threat Data Into Prioritized Action

AI Future: The Leading International AI and Web3 Forum to Take Place in April