Threat actors are abusing the Uni-App development framework to build investment scam templates powering over 200,000 sites.

The decentralized prediction market said hackers targeted some of its users through a compromise of a third-party vendor.

Amazon Q vulnerability could allow attackers to steal developer cloud credentials by luring them into opening a booby-trapped ...

The Linux Foundation introduces Akrites, a joint effort to report, fix, and disclose vulnerabilities in open source software.

Roughly two dozen Klue customers have come forward and confirmed that their Salesforce instances were compromised in a supply ...

Philip Martin has joined Uber as Chief Information Security Officer (CISO).

The next generation of the Model Context Protocol (MCP) enables enterprise-scale AI deployments but shifts critical security ...

Hackers exploited a vulnerability in PTC Windchill in the wild, marking the first confirmed real-world abuse of the PLM ...

California Water Service (Cal Water) found no evidence of OT activity after Iranian hackers said they could have disrupted ...

Russia-linked APT Turla has been using the StockStay backdoor against government and military organizations in Ukraine.

Nebulock has raised $25 million in Series A funding for its AI threat hunting and proactive detection platform.

Russia used Cellebrite to hack activist’s phone, Five Eyes issue urgent AI threat warning, macOS Gaslight backdoor, Scattered Spider guilty.