Proofpoint says UNK_MassTraction exploited patched Roundcube flaws to target U.S. and Canadian university mail servers.
Arctic Wolf says Anubis affiliates abused RMM tools, VPN logins, RDP, PsExec, and cloud-transfer tools before ransomware ...
Malicious npm packages mimicking Rollup polyfill tooling steal browser data, crypto wallets, and AI tool credentials in a Lazarus-linked campaign.
A threat group researchers call "Armored Likho" has gained access to government agencies and electrical power entities in ...
JadePuffer could be the first reported case of a ransomware attack driven by AI from start to finish. How can businesses ...
The award-winning Mitel platform embeds voice into business processes, linking scattered tools into one automated flow.
The infostealer was delivered via CVE-2026-48558, a critical authentication bypass vulnerability in SimpleHelp.
Gogs has patched a critical security zero-day flaw that can allow attackers to compromise Internet-facing instances and access any repositories (including private ones). This argument injection ...
A SimpleHelp authentication flaw is being exploited to deploy Djinn Stealer, a cross-platform malware targeting cloud, ...
Microsoft shut down dozens of GitHub code repositories for Azure and AI coding tools after a reported hack.
Alibaba will bar staff from using Anthropic's Claude Code from July 10 over an alleged backdoor, a source says, amid a wider Claude-Qwen dispute.
Anthropic’s AI coding agent silently encoded proxy hostnames and Chinese timezone data into invisible Unicode characters ...