A critical security vulnerability has been disclosed in the Erlang/Open Telecom Platform (OTP) SSH implementation that could...
Node.js Malware Campaign Targets Crypto Users with Fake Binance and TradingView Installers
3 min read
Microsoft is calling attention to an ongoing malvertising campaign that makes use of Node.js to deliver malicious...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a security flaw impacting SonicWall Secure...
Apple on Wednesday released security updates for iOS, iPadOS, macOS Sequoia, tvOS, and visionOS to address two...
Threat actors are leveraging an artificial intelligence (AI) powered presentation platform named Gamma in phishing attacks to...
Introduction
Cyber threats targeting supply chains have become a growing concern for businesses across industries. As companies continue...
Cybersecurity researchers have detailed four different vulnerabilities in a core component of the Windows task scheduling service...
Google on Wednesday revealed that it suspended over 39.2 million advertiser accounts in 2024, with a majority...
The U.S. government funding for non-profit research giant MITRE to operate and maintain its Common Vulnerabilities and...
Cybersecurity researchers have unearthed a new controller component associated with a known backdoor called BPFDoor as part...
Intro: Why hack in when you can log in?
SaaS applications are the backbone of modern organizations, powering...
Cheap Android smartphones manufactured by Chinese companies have been observed pre-installed with trojanized apps masquerading as WhatsApp...
The China-linked threat actor known as UNC5174 has been attributed to a new campaign that leverages a...
Critical Apache Roller Vulnerability (CVSS 10.0) Enables Unauthorized Session Persistence
2 min read
A critical security vulnerability has been disclosed in the Apache Roller open-source, Java-based blogging server software that...
Everybody knows browser extensions are embedded into nearly every user’s daily workflow, from spell checkers to GenAI...
Cybersecurity researchers have disclosed a malicious package uploaded to the Python Package Index (PyPI) repository that's designed...
The North Korea-linked threat actor assessed to be behind the massive Bybit hack in February 2025 has...
Gladinet’s Triofox and CentreStack Under Active Exploitation via Critical RCE Vulnerability
2 min read
A recently disclosed security flaw in Gladinet CentreStack also impacts its Triofox remote access and collaboration solution,...
Meta has announced that it will begin to train its artificial intelligence (AI) models using public data...
Attackers aren’t waiting for patches anymore — they are breaking in before defenses are ready. Trusted security...
