A threat actor is targeting organizations across multiple sectors in voice-enabled attacks involving Microsoft 365 phishing ...
A new attack technique dubbed HalluSquatting turns AI assistants’ tendency to hallucinate into a scalable infection vector.
Several AI coding assistants were tricked into facilitating developer machine hacking via an attack technique that has been ...
Cyberespionage groups linked to both China and India spent more than two years quietly breaking into Pakistani law ...
The GigaWiper backdoor combines several malware families and can sabotage systems using a wiper, encryption, and wiping ...
UK unveils Cyber Shield and Cyber Resilience Pledge, pairing agentic AI defense plans with new cybersecurity commitments for ...
Google has rolled out a Chrome 150 security update that resolves 27 vulnerabilities, including two critical-severity bugs.
Layers has raised $2.9 million in pre-seed funding for its digital identity protection platform that integrates ISPM, ITDR, ...
In Operation Muck and Load, over 200 GitHub repositories serve a Go module that leads to Windows malware infections.
Multiple Tenda firmware versions contain a backdoor (CVE-2026-11405) that provides access to the device’s web management ...
GhostLock (CVE-2026-43499) is a 15-year-old Linux kernel vulnerability that allows attackers to gain root privileges.
In other news, a DHS database was hacked, Adobe is releasing patches twice a month, and Canada has disrupted ransomware operations.