Cybersecurity researchers have disclosed a malware campaign that uses fake software installers masquerading as popular tools ...

Cybersecurity researchers have disclosed that a threat actor codenamed ViciousTrap has compromised nearly 5,300 unique ...

Latrodectus malware evades detection with ClickFix technique; TikTok and fake Ledger apps expand threat reach.

A Chinese-speaking threat actor tracked as UAT-6382 has been linked to the exploitation of a now-patched ...

52% of breaches stem from manual identity workflows in disconnected apps—causing customer loss and compliance risks.

CISA, which added CVE-2025-3928 to its Known Exploited Vulnerabilities Catalog in late April 2025, said it's continuing to ...

Indirect prompt injection in GitLab Duo exposed private source code and inserted malicious HTML into AI responses, risking ...

Three critical Versa Concerto flaws disclosed after 90 days allow remote code execution via reverse proxy misconfigurations.

SafeLine WAF delivers 99.45% threat detection via semantic analysis + full self-hosted control + zero subscription fees.

Operation Endgame dismantled 300 servers and seized €3.5M crypto, disrupting ransomware access networks globally.

DoJ disrupts DanaBot malware after 300K infections and $50M damage; 16 charged in Russia-linked cybercrime ring.

Microsoft and Europol dismantled Lumma’s 2,300-domain C2 network after 10M infections tied to credential and crypto theft.