3
CVEs
36
Threats
14
News
1
Critical
🛡 Security Vulnerabilities (CVE)
Crypt::NaCl::Sodium versions through 2.001 for Perl has an integer overflow flaw on 32-bit systems.
Sodium.xs casts a STRLEN (size_t) to unsigned long long when passing a length pointer to libsodium functions. On 32-bit systems size_t is typically 32-bits while an unsigned long…
CVE-2026-2958
A security vulnerability has been detected in D-Link DWR-M960 1.01.07. Affected is the function sub_457C5C of the file /
11:14 KSA
A security vulnerability has been detected in D-Link DWR-M960 1.01.07. Affected is the function sub_457C5C of the file /boafrm/formWsc. Such manipulation of the argument save_apply leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been dis…
CVE-2026-2959
A vulnerability was detected in D-Link DWR-M960 1.01.07. Affected by this vulnerability is the function sub_44E0F8 of th
11:14 KSA
A vulnerability was detected in D-Link DWR-M960 1.01.07. Affected by this vulnerability is the function sub_44E0F8 of the file /boafrm/formNewSchedule. Performing a manipulation of the argument url results in stack-based buffer overflow. Remote exploitation of the attack is possi…
⚠️ Threat Intelligence
36 threats
Bug Bounty
—
05:05 KSA
Multiple exposed S3 buckets and Azure storage accounts found across Saudi organizations, revealing PII, financial records, and internal documents to the public internet.
SIEM Detection
—
21:48 KSA
Large-scale credential stuffing attacks targeting Saudi e-commerce platforms and loyalty programs using leaked credentials from international breaches.
GitHub Advisory
—
21:48 KSA
Malicious npm packages detected targeting Saudi developers with credential-stealing capabilities embedded in popular dependency names through typosquatting.
SIEM Detection
—
21:47 KSA
Large-scale credential stuffing attacks targeting Saudi e-commerce platforms and loyalty programs using leaked credentials from international breaches.
GitHub Advisory
—
21:47 KSA
Malicious npm packages detected targeting Saudi developers with credential-stealing capabilities embedded in popular dependency names through typosquatting.
TI
—
14:38 KSA
Sophisticated spear-phishing targeting government officials
TI
—
14:38 KSA
Active ransomware campaign targeting Saudi banking infrastructure
TI
—
14:38 KSA
Critical zero-day in major cloud provider affecting KSA organizations
TI
—
14:38 KSA
Distributed denial of service targeting Saudi telecom operators
TI
—
14:38 KSA
Supply chain compromise affecting energy sector vendors
Saudi CERT
—
14:38 KSA
Advanced persistent threat group targeting Saudi financial institutions with custom banking malware through spear-phishing campaigns impersonating SAMA communications.
NCA Advisory
—
14:38 KSA
Active exploitation of zero-day vulnerability in government web application frameworks. Remote code execution with no authentication required. Patches pending from vendor.
Threat Intelligence
—
14:38 KSA
New ransomware variant targeting Saudi oil & gas sector with double extortion techniques, encrypting OT systems and threatening data exposure on dark web leak sites.
GitHub Advisory
—
14:38 KSA
Malicious npm packages detected targeting Saudi developers with credential-stealing capabilities embedded in popular dependency names through typosquatting.
SIEM Detection
—
14:38 KSA
Large-scale credential stuffing attacks targeting Saudi e-commerce platforms and loyalty programs using leaked credentials from international breaches.
Bug Bounty
—
14:38 KSA
Multiple exposed S3 buckets and Azure storage accounts found across Saudi organizations, revealing PII, financial records, and internal documents to the public internet.
Passive DNS
—
14:38 KSA
DNS hijacking attacks redirecting Saudi government and education domains to phishing infrastructure hosted in Eastern Europe.
Honeypot Network
—
14:38 KSA
New IoT botnet variant scanning Saudi smart city infrastructure for default credentials on surveillance cameras and building management systems.
TI
—
14:38 KSA
Supply chain compromise affecting energy sector vendors
TI
—
14:38 KSA
Distributed denial of service targeting Saudi telecom operators
TI
—
14:38 KSA
Critical zero-day in major cloud provider affecting KSA organizations
TI
—
14:38 KSA
Sophisticated spear-phishing targeting government officials
TI
—
14:38 KSA
Active ransomware campaign targeting Saudi banking infrastructure
SIEM Detection
—
14:35 KSA
Large-scale credential stuffing attacks targeting Saudi e-commerce platforms and loyalty programs using leaked credentials from international breaches.
Saudi CERT
—
14:35 KSA
Advanced persistent threat group targeting Saudi financial institutions with custom banking malware through spear-phishing campaigns impersonating SAMA communications.
NCA Advisory
—
14:35 KSA
Active exploitation of zero-day vulnerability in government web application frameworks. Remote code execution with no authentication required. Patches pending from vendor.
Threat Intelligence
—
14:35 KSA
New ransomware variant targeting Saudi oil & gas sector with double extortion techniques, encrypting OT systems and threatening data exposure on dark web leak sites.
GitHub Advisory
—
14:35 KSA
Malicious npm packages detected targeting Saudi developers with credential-stealing capabilities embedded in popular dependency names through typosquatting.
Bug Bounty
—
14:35 KSA
Multiple exposed S3 buckets and Azure storage accounts found across Saudi organizations, revealing PII, financial records, and internal documents to the public internet.
Passive DNS
—
14:35 KSA
DNS hijacking attacks redirecting Saudi government and education domains to phishing infrastructure hosted in Eastern Europe.
Honeypot Network
—
14:35 KSA
New IoT botnet variant scanning Saudi smart city infrastructure for default credentials on surveillance cameras and building management systems.
TI
—
14:35 KSA
Active ransomware campaign targeting Saudi banking infrastructure
TI
—
14:35 KSA
Supply chain compromise affecting energy sector vendors
TI
—
14:35 KSA
Distributed denial of service targeting Saudi telecom operators
TI
—
14:35 KSA
Critical zero-day in major cloud provider affecting KSA organizations
TI
—
14:35 KSA
Sophisticated spear-phishing targeting government officials
📰 Cybersecurity News
14 articles
NCA Issues Emergency Advisory on Critical Infrastructure
13:35 KSA
The National Cybersecurity Authority has issued an emergency advisory regarding vulnerabilities in critical infrastructure systems.
Major Ransomware Attack Disrupts Saudi Healthcare Provider
12:35 KSA
A sophisticated ransomware campaign has targeted one of Saudi Arabia's largest healthcare networks, affecting multiple hospitals across the Eastern Province.
Saudi Arabia Ranks #1 in GCI Cybersecurity Index
11:35 KSA
Saudi Arabia has achieved the top ranking in the Global Cybersecurity Index, reflecting Vision 2030 commitments.
NCA Releases Updated ECC 2026 Controls Framework
09:35 KSA
The National Cybersecurity Authority has published version 3.0 of the Essential Cybersecurity Controls with significant updates to cloud and AI governance.
New SAMA Circular on Third-Party Risk Management
09:35 KSA
SAMA releases new requirements for financial institutions regarding third-party risk management and vendor assessments.
PDPL Authority Announces First Major Penalty
06:35 KSA
The PDPL enforcement authority has announced its first significant penalty against a major organization for data protection violations.
Saudi Banks Urged to Enhance API Security After Wave of Attacks
14:35 KSA
SAMA issues advisory to financial institutions regarding increased API exploitation attempts targeting mobile banking applications.
Saudi Arabia Ranks #1 in Global Cybersecurity Index 2025
14:35 KSA
For the second consecutive year, the Kingdom tops the ITU Global Cybersecurity Index, reflecting Vision 2030 digital transformation success.
PDPL Compliance Deadline Approaches for SMEs
14:35 KSA
Small and medium enterprises face a March 2026 deadline to demonstrate full compliance with the Saudi Personal Data Protection Law.
New Phishing Campaign Targets Saudi Government Employees
14:35 KSA
A coordinated spear-phishing campaign impersonating official government portals has been detected targeting Saudi public sector employees.
NEOM Cybersecurity Hub Attracts Global Talent
14:35 KSA
NEOM's dedicated cybersecurity innovation center has attracted over 200 international cybersecurity experts in its first year of operation.
Critical Vulnerability Found in Popular Saudi Banking App
14:35 KSA
Researchers disclosed a critical authentication bypass vulnerability in a widely-used Saudi mobile banking application.
Saudi Cybersecurity Workforce Grows 40% in 2025
14:35 KSA
The Kingdom's cybersecurity workforce reached 30,000 professionals, a 40% increase driven by NCA training programs and university partnerships.
SAMA Mandates Real-Time Fraud Detection for All Banks
14:35 KSA
New SAMA circular requires all licensed banks to implement AI-powered real-time fraud detection systems by Q3 2026.
This digest is updated automatically every day — Last updated: Monday, February 23, 2026
CVE Archive ·
Threats ·
News