Hackers are exploiting a vulnerability in the Gravity SMTP WordPress plugin to extract configuration data, including API keys ...

ShinyHunters use tactics including stolen credentials, compromised OAuth tokens, social engineering, vishing, and abuse of ...

Chrome 149 and Firefox 152 updates include patches for 73 vulnerabilities, including multiple memory safety bugs.

Hackers have compiled a database of over 86,000 working credentials for internet-accessible Fortinet firewalls and VPNs.

Microsoft has acknowledged the RoguePlanet zero-day exploit and is working on a high-quality patch to resolve the ...

The Windows-based CryptoBandits cryptocurrency clipper blends data exfiltration and remote code execution in a backdoor.

Pharmaceutical giant Novo Nordisk last week disclosed a cybersecurity incident involving unauthorized access to personal data ...

Password has acquired Apono, an Israel-based company that specializes in just-in-time access governance for humans, machines, ...

At least 1,500 malicious packages were published to the Arch User Repository (AUR) as part of the Atomic Arch supply chain ...

Three recently patched Fortinet FortiSandbox vulnerabilities are being targeted in the wild, according to exploit ...

F5 has patched multiple NGINX vulnerabilities, including critical flaws leading to unauthenticated, remote code execution.

Oracle released an out-of-band update for PeopleSoft to address CVE-2026-35273, a zero-day vulnerability likely exploited by ...