Fake CVE exploit repos pull frint and skytext packages to steal researcher credentials, with servers still live as of July 1.
The critical libssh2 CVE-2026-55200 flaw inverts SSH security: the remote server attacks the connecting client, no ...
Parrot OS 7.3 has been released with a clear emphasis on faster execution, cleaner images and smoother daily use, marking a refinement-led update for the security-focused Linux distribution rather ...
Exploit for "Bad Epoll" Linux kernel vulnerability (CVE-2026-46242) can lead to root access on desktops, servers, and Android ...
A trader lost $2 million after attempting to swap $2 million in Ether for the Lighter token in what was described as a ...
ConsentFix and ClickFix attacks steal Microsoft 365 tokens in seconds using fake prompts and OAuth flows. Learn how these MFA ...
Multiple weaponized proof-of-concept (PoC) exploits on GitHub delivered a Python-based remote access trojan (RAT) called ChocoPoC that can execute commands and steal sensitive data. However, ChocoPoC ...
A new exploit called BioShocking convinces AI browsers they're playing a game, then gets them to hand over your private ...
BlueHammer became public on April 2 in an unusual fashion. A researcher using the names Chaotic Eclipse and Nightmare Eclipse ...
Researchers say attackers are extending AI-themed social engineering from phishing campaigns to browser extensions.