The Helix group uses vishing and device code phishing to break into SharePoint, then exfiltrates data for extortion or sale.
GigaWiper is a modular Golang backdoor that merges remote access tools with disk wiping and fake ransomware capabilities.
A new automated testing framework reveals widespread traffic leaks, plaintext data transmission, and tracking behavior across 281 popular free Android…
Google patched a flaw in Dialogflow CX that allowed an attacker with edit permissions on one chatbot to hijack others…
A former cybersecurity incident response employee received a 70-month prison sentence for feeding confidential victim data to the BlackCat ransomware…
Investigators traced the Odido breach to local hackers after a Dutch-speaking caller impersonated an IT employee to gain access.
Microsoft is removing the legacy OWA Light email client from Exchange Server in August 2026, citing modern browser capabilities and…
Researchers discovered GitHub Copilot produces harmful content in 816 out of 816 workflow runs when dangerous requests are broken into…
Researchers demonstrated that autonomous AI coding agents from Anthropic and OpenAI will execute hidden malicious binaries when asked to review…
Dell BIOS passwords stored with a flawed XOR cipher allow full recovery from flash dumps in milliseconds, posing risks to…
Researchers found an attacker's unsecured server containing 800 MB of data, revealing how a webshell brokerage compromised thousands of WordPress sites at scale.
Forensic analysis revealed a European Parliament member's iPhone was compromised with Pegasus spyware during sensitive committee hearings on surveillance abuse,…
A stored XSS vulnerability in Zimbra's Classic Web Client lets attackers execute malicious code when a user opens a specially…
A contractor's accidental exposure of AWS GovCloud credentials in a public GitHub repository prompted CISA to release a detailed after…
A threat actor claims to have stolen 35 GB of data including source code and credentials from Accenture, but the company says the incident is isolated and remediated.
A single arithmetic error in XQUIC's memory handling during QPACK table resizing lets any remote client crash HTTP/3 servers with normal network traffic.
The memory resident Rust based trojan reuses the transport layer from an open source anti-censorship proxy framework to create encrypted C2 channels.
A local attacker can exploit a page cache overflow in the Linux kernel's FUSE subsystem to gain root privileges by corrupting a SUID binary.
The IonStack exploit chain uses a Firefox zero day and a 15 year old Linux kernel flaw to achieve full…
Progress Software has ordered ShareFile customers running on-premises Storage Zone Controllers to shut down the servers immediately due to what…
Four crash bugs and two code execution flaws in the U-Boot bootloader allow attackers to compromise a device before its…
Coinspect discovered that poor random number generation in older or lesser-known crypto wallets made their seed phrases predictable, leading to…
A proof of concept places malicious code in Windows process startup data rather than writing it directly into memory, bypassing…
Attackers are exploiting a Citrix NetScaler memory disclosure flaw to steal active session tokens and deploy ransomware in under an…
Sign in to your account