A highly active social engineering campaign is rewriting the phishing playbook by shifting its focus from simple...
infosec
The Cybersecurity and Infrastructure Security Agency (CISA) has officially expanded its Known Exploited Vulnerabilities (KEV) Catalog, adding...
Amazon threat intelligence has uncovered an active Interlock ransomware campaign that exploited a critical vulnerability in Cisco...
In a sophisticated supply chain attack discovered by the StepSecurity threat intelligence team, a legitimate Japanese DeFi...
A newly discovered vulnerability, dubbed RegPwn, has pulled back the curtain on a significant security gap in...
Schneider Electric has exposed the curtain on two significant vulnerabilities affecting critical infrastructure tools. From remote terminal...
ConnectWise recently issued a critical security update for its ScreenConnect platform, addressing a significant vulnerability that could...
Aryaka Threat Labs has unmasked a sophisticated malware operation dubbed BlackSanta. This Russian-speaking threat actor has spent...
In the world of web development, the “Live Preview” button is a staple for content editors—a harmless...
The Qualys Threat Research Unit has detailed a new Local Privilege Escalation (LPE) vulnerability, tracked as CVE-2026-3888,...
In a decisive move to protect the digital sovereignty of its member states, the Council of the...
Cybersecurity investigators at IBM X-Force have identified a disturbing new milestone in the evolution of digital threats:...
Security researchers have issued a dual-threat alert for developers utilizing the Spring AI framework, a popular tool...
Cybersecurity researchers at Bishop Fox have released a technical deep-dive into a critical vulnerability affecting FortiClient EMS,...
Security researchers have issued a high-priority alert for users of File Browser, a popular open-source self-hosted cloud...
Cybersecurity researchers at LAB52, the threat intelligence arm of S2 Group, have uncovered a novel campaign targeting...
A significant security vulnerability has been unearthed in the Angular runtime and compiler, potentially exposing thousands of...
Cybersecurity researchers at Seqrite Labs have identified a widespread and highly targeted espionage operation dubbed “Operation CamelClone”....
Cybersecurity investigators at Microsoft Defender Experts have sounded the alarm on a deceptive credential theft campaign targeting...
Cybersecurity investigators at Socket’s Threat Research Team have sounded the alarm after discovering a cluster of malicious...
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent directive after adding a new vulnerability...
The JavaScript development community is on high alert following a coordinated supply chain attack targeting two popular...