Security governance needs to be more than an annual compliance exercise. New companies are emerging to address ...

In the latest evolution of automated cyberattacks, 2 threat campaigns heavily leveraged AI agents to support attacks against ...

Hundreds of npm packages infected by the self-propagating, credential-stealing worm from TeamPCP are related to the open ...

The attacks compromise aerospace and drone firms' systems to exfiltrate GIS files, terrain models, and GPS data to gain a clear picture of analysts' intel.

Cyber adversaries have long used AI, but now attackers are using large language models to develop exploits and orchestrate ...

The Federal Communications Commission eased some restrictions and pushed back deadlines for foreign router manufacturers, but ...

Malicious repositories can trigger code execution in Claude Code, Cursor CLI, Gemini CLI, and CoPilot CLI with minimal or no ...

As the war with Iran continues, breach attempts targeting the United Arab Emirates tripled in a few weeks — many targeting ...

Well-run drills go beyond checking audit boxes to identifying and addressing trouble spots. Good leaders ensure proper scope, ...

The UC Berkeley Center for Long-Term Cybersecurity (CLTC) helps schools, local governments, and nonprofits defend themselves ...

Supply chain theft is no longer just criminal groups operating locally, but transnational cybercriminal syndicates exploiting ...

ShinyHunters' attack on Instructure carries big questions about the trust educational institutions put into their vendors.