Attackers could abuse Dify's multi-tenant cloud service to read private chats, preview other tenants' documents, and reach ...

Healthcare technology company Xsolis, Inc. has disclosed a data breach affecting nearly 1.4 million individuals.

26-year-old Abdellah Belmili faces up to 30 years in prison for allegedly operating the marketplaces Market0Day and Spoxy. Abdellah Belmili, a 26-year-old Algerian national, was recently arrested in ...

Federal agencies are required to transition high-value assets and high-impact systems to use PQC by the end of 2030 and 2031. President Donald Trump on Monday signed an executive order to strengthen ...

Canadian electricity provider London Hydro is investigating a data breach that potentially impacted the personal and account information of its customers. London Hydro is a local distribution company ...

Attackers can send crafted media files to execute code in any application that uses FFmpeg’s libavcodec library. A vulnerability in the FFmpeg media processing framework allows attackers to crash ...

Hackers are exploiting a vulnerability in the Gravity SMTP WordPress plugin to extract configuration data, including API keys ...

ShinyHunters use tactics including stolen credentials, compromised OAuth tokens, social engineering, vishing, and abuse of ...

HackerOne, Huntress, Jamf, OneTrust, Recorded Future, Snyk, and Tanium are among the affected Klue customers. At least nine organizations have publicly acknowledged the impact of the supply chain ...

A database of over 86,000 confirmed working credentials was created during the credential-harvesting campaign. Fortinet says the large-scale credential-harvesting campaign currently targeting its ...

Squidbleed, discovered with the aid of Claude Mythos Preview, has been described as a Heartbleed-style vulnerability. Security researchers at Calif.io have disclosed a memory leak vulnerability in ...

The Windows-based CryptoBandits cryptocurrency clipper blends data exfiltration and remote code execution in a backdoor.