Gartner analysts issued a call to action to bolster defenses against several emerging critical threats, such as deepfakes and ...

Organizations are growing serious about what nation’s rules apply to their data. Experts point to geopolitical tensions as a ...

A newly discovered malware campaign targeting the open source software ecosystem underscores how rapidly supply chain threats are evolving. The campaign, which JFrog has dubbed "IronWorm," targets ...

A prompt injection flaw in Google Gemini's voice assistant let attackers hide malicious commands in notifications, enabling ...

Python scripts were used to test malware against endpoint detection and response agents from Sophos, CrowdStrike, and Windows ...

High-autonomy agents with broad permissions and unfettered access are a recipe for disaster, but securing them is a daunting ...

From solely targeting Microsoft 365, the phishing-as-a-service platform now targets AWS, Okta, and Russian platforms.

A threat actor got a near-continuous view into an influential finance executive's email inbox, thanks to clever use of ...

Dark Reading launched, we're looking ahead. Spoiler: It's hyper-segmented, AI-orchestrated & more sophisticated than your dad ...

A disabled security setting meant to protect authentication across Android versions of key apps paved the way for attackers ...

China-linked espionage groups have attacked a dozen nations in the region, gathering information on maritime shipping, oil production, and other interests.

China is stealing data from high-value targets via a sneaky, double-layer spear-phishing campaign that includes the Azureveil ...