Cybersecurity researchers have disclosed a malware campaign that uses fake software installers masquerading as popular tools ...

Cybersecurity researchers have disclosed that a threat actor codenamed ViciousTrap has compromised nearly 5,300 unique ...

Latrodectus malware evades detection with ClickFix technique; TikTok and fake Ledger apps expand threat reach.

CISA, which added CVE-2025-3928 to its Known Exploited Vulnerabilities Catalog in late April 2025, said it's continuing to ...

A Chinese-speaking threat actor tracked as UAT-6382 has been linked to the exploitation of a now-patched ...

Indirect prompt injection in GitLab Duo exposed private source code and inserted malicious HTML into AI responses, risking ...

52% of breaches stem from manual identity workflows in disconnected apps—causing customer loss and compliance risks.

SafeLine WAF delivers 99.45% threat detection via semantic analysis + full self-hosted control + zero subscription fees.

Three critical Versa Concerto flaws disclosed after 90 days allow remote code execution via reverse proxy misconfigurations.

Operation Endgame dismantled 300 servers and seized €3.5M crypto, disrupting ransomware access networks globally.

DoJ disrupts DanaBot malware after 300K infections and $50M damage; 16 charged in Russia-linked cybercrime ring.

UNC5221 exploited Ivanti EPMM flaws CVE-2025-4427/4428 in global attacks starting May 15, 2025, enabling remote access and ...