Artificial intelligence is “an unstoppable force” that is being weaponized in ways that fall just short of traditional ...

SymJack’ attack shows how AI coding agents can be manipulated through malicious repositories and MCP servers to steal data and enable software supply chain attacks.

CISA urges federal agencies to immediately patch CVE-2026-48172, a critical LiteSpeed cPanel plugin vulnerability exploited ...

Stolen credentials and AI-driven attacks are allowing cybercriminals to bypass traditional security defenses and operate as ...

The Silent Ransom Group poses as IT support in attacks against law firms, and sends an individual in person if remote access ...

The attack was claimed by a hacktivist group, but evidence showed it used infrastructure linked to Iranian government threat ...

The four C&C channels used by GlassWorm, the botnet targeting open source software developers, have been disrupted.

Anthropic announced last week that Claude now connects with 28 security and compliance platforms from major vendors.

Data allegedly stolen from 7-Eleven and leaked by ShinyHunters contains the personal information of just over 185,000 people.

CVE-2026-5426, a hardcoded ASP.NET machineKey in KnowledgeDeliver, was exploited as a zero-day in ViewState deserialization ...

SecurityWeek’s Threat Detection & Incident Response Summit took place on May 20th and is now available on demand for a ...

Iranian APT Nimbus Manticore has updated tactics and tools in recent campaigns targeting aviation and software companies.