Researchers found that the Windows Search URI handler can be tricked into leaking NTLMv2 hashes to attackers via malicious links, and Microsoft has declined to patch the issue.
Nearly half of enterprise identity activity operates outside centralized IAM visibility, driving the emergence of a new platform category to…
Attackers route phishing victims through Google's DoubleClick domain to evade detection before deploying the DesckVB RAT trojan.
Attackers manipulate AI chatbot responses to steer users toward malicious download sites that deliver cryptojacking malware, targeting systems with high-performance…
The JavaScript based threat uses obfuscation that bypasses signature detection tools, leaving organizations reliant on behavioral monitoring.
A single malicious link in VSCode's webview can trigger theft of GitHub OAuth tokens, bypassing cross-origin isolation protections in the…
Attackers spent five months copying a stock exchange executive's Outlook mailbox in small batches using cloud storage services to evade…
Microsoft publicly opposes a researcher who published zero-day exploit code for Windows Defender and BitLocker, saying the disclosures put users…
Attackers are using counterfeit DMCA takedown notices with personalized extension details to steal Google developer credentials and potentially push malicious…
Marcus Hutchins discovered a zero-day in Comodo's firewall driver where a single crafted IPv6 packet can crash a Windows system…
Researchers found that attackers are hosting Cobalt Strike command and control servers on AWS, Google Cloud, Azure, Cloudflare, and GitHub to avoid detection and blend into normal enterprise traffic.
Two critical vulnerabilities in Acer Wave 7 routers allow attackers to extract plaintext passwords and deploy backdoors using a hardcoded…
Over 700 education and technology websites were hijacked in a large ClickFix malware campaign, while new phishing attacks targeted LinkedIn…
HD Moore demonstrates how attackers map the hidden connections and unregistered devices that defeat traditional network segmentation strategies.
An autonomous AI tool has discovered a critical remote code execution vulnerability in Redis that remained hidden for over two years across multiple stable versions.
Threat actors are exploiting a critical FortiClient EMS vulnerability to disguise credential-stealing malware as a legitimate software update, using the server's own management tools to infect endpoints.
A newly disclosed privilege escalation vulnerability in Ivanti Neurons for ITSM allows authenticated attackers to gain full administrative control over the platform.
Five zero-day vulnerabilities in OpenClaw let attackers hijack AI agent access across multiple chat platforms by exploiting mutable display names during identity resolution.
AI tools are compressing vulnerability exploitation timelines to hours, forcing organizations to rethink patching strategies and adopt more proactive defense…
Microsoft patched a privilege escalation flaw in Azure Backup for AKS that let users with the 'Backup Contributor' role gain…
An overlooked debug flag in six Microsoft 365 Android apps allowed any untrusted app on the device to silently steal…
A single attacker on a home connection can exhaust tens of gigabytes of server memory in seconds by combining HPACK…
A functional npm package for OpenAI Codex secretly exfiltrates authentication tokens to an attacker-controlled server, granting persistent account access without…
Attackers planted 384 versions of malicious code across three package registries, automatically stealing cloud keys, SSH credentials, and blockchain wallet…
