Latrodectus malware evades detection with ClickFix technique; TikTok and fake Ledger apps expand threat reach.

Cybersecurity researchers have disclosed that a threat actor codenamed ViciousTrap has compromised nearly 5,300 unique ...

SafeLine WAF delivers 99.45% threat detection via semantic analysis + full self-hosted control + zero subscription fees.

CISA, which added CVE-2025-3928 to its Known Exploited Vulnerabilities Catalog in late April 2025, said it's continuing to ...

Operation Endgame dismantled 300 servers and seized €3.5M crypto, disrupting ransomware access networks globally.

Indirect prompt injection in GitLab Duo exposed private source code and inserted malicious HTML into AI responses, risking ...

DoJ disrupts DanaBot malware after 300K infections and $50M damage; 16 charged in Russia-linked cybercrime ring.

A Chinese-speaking threat actor tracked as UAT-6382 has been linked to the exploitation of a now-patched ...

Windows Server 2025 flaw allows any user with dMSA write permissions to escalate privileges and compromise AD.

52% of breaches stem from manual identity workflows in disconnected apps—causing customer loss and compliance risks.

UNC5221 exploited Ivanti EPMM flaws CVE-2025-4427/4428 in global attacks starting May 15, 2025, enabling remote access and ...

APT28 targets NATO-aligned logistics and tech firms via malware, phishing, and 7 CVEs to spy on Ukraine aid routes.