Symantec discovered Spirals, a Rust-based ransomware that encrypted an IT services company's network in less than a day.
Zoom fixed CVE-2026-53412, a critical account takeover vulnerability with a CVSS score of 9.8 affecting Windows users.
Cisco Talos uncovered a Russian-speaking threat actor using trojanized installers to deliver Starland RAT and memory-only implants.
Researchers discovered the NadMesh botnet, which targets exposed AI infrastructure to steal cloud keys and Kubernetes tokens.
A security researcher found that xAI's Grok Build CLI packaged and uploaded entire code repositories, including deleted secrets, to Google…
Researchers discovered that malicious Chrome extensions can abuse a permission flaw in the Claude for Chrome extension to read Gmail…
Microsoft observed two ACR Stealer campaigns using fake error messages to trick users into running code that steals credentials and…
The medical device giant confirmed unauthorized access to internal systems in its cancer diagnostics unit, which includes the recently acquired…
Artificial intelligence helped Microsoft discover and patch 570 security vulnerabilities in July, nearly tripling last month's record-breaking patch count.
CISA warns of active exploitation of CVE-2026-58644 and three other SharePoint flaws, urging federal agencies to patch within a week.
The TuxBot v3 Evolution botnet framework was built with help from an LLM, but the AI left a safety disclaimer in the code.
The Treasury-led Gold Eagle program uses frontier AI models to accelerate vulnerability discovery and coordinated patching.
Checkmarx uncovered seven malicious npm packages targeting Vite developers with blockchain-based C2 infrastructure spanning Tron, Aptos, and Binance Smart Chain.
A third-party IT service management platform used by EY was breached for two weeks in spring 2026, leading to the…
Expel researchers attributed the April DigiCert breach to CylindricalCanine, a GoldenEyeDog subgroup that stole code-signing certificates to sign malware.
A ransomware incident at Coca-Cola’s Fairlife dairy subsidiary has forced the suspension of US production operations while the company investigates.
A pre-authentication remote code execution bug in WordPress core affects versions 6.9 and 7.0, with emergency patches released July 17 and forced updates enabled.
A denial-of-service vulnerability in OpenSSL lets attackers lock server memory permanently using tiny TLS handshake messages, with fixes shipped June 9 but no CVE assigned.
A ransomware attack on Nichirei Group cold-chain logistics systems disrupted KFC Japan ingredient supply, stopping app and website orders.
Security researchers uncovered state-sponsored operators using Claude Code and DeepSeek models to automate intelligence gathering and maintain persistent access to…
Two members of the Scattered Spider cybercrime gang received 5.
A certificate flaw in Shark robot vacuums allows attackers to command any device in the same AWS region, accessing cameras…
A new infostealer called ClickLock holds macOS desktops hostage by repeatedly killing applications until the user types their login password.
Two chained vulnerabilities give attackers full remote code execution on unpatched SMA 1000 appliances.
Sign in to your account