The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added four security flaws to its Known Exploited Vulnerabilities (KEV) […]

Notepad++ has released a security fix to plug gaps that were exploited by an advanced threat actor from China to

Security, IT, and engineering teams today are under relentless pressure to accelerate outcomes, cut operational drag, and unlock the full

Cybersecurity researchers have disclosed details of a new campaign dubbed CRESCENTHARVEST, likely targeting supporters of Iran’s ongoing protests to conduct

Cybersecurity researchers have disclosed details of a new Android trojan called Massiv that’s designed to facilitate device takeover (DTO) attacks

We’ve all seen this before: a developer deploys a new cloud workload and grants overly broad permissions just to keep

The cyber threat space doesn’t pause, and this week makes that clear. New risks, new tactics, and new security gaps

Two former Google engineers and one of their husbands have been indicted in the U.S. for allegedly committing trade secret

The U.S. Federal Bureau of Investigation (FBI) has warned of an increase in ATM jackpotting incidents across the country, leading

A 29-year-old Ukrainian national has been sentenced to five years in prison in the U.S. for his role in facilitating

With one in three cyber-attacks now involving compromised employee accounts, insurers and regulators are placing far greater emphasis on identity

Cybersecurity researchers have disclosed details of a new ClickFix campaign that abuses compromised legitimate sites to deliver a previously undocumented

In yet another software supply chain attack, the open-source, artificial intelligence (AI)-powered coding assistant Cline CLI was updated to stealthily

CISA has updated its KEV entry for CVE-2026-1731 to alert organizations of exploitation in ransomware attacks. The post BeyondTrust Vulnerability

Other noteworthy stories that might have slipped under the radar: Axonius lays off employees, Abu Dhabi conference data leak, HackerOne

NIST’s single photon chip will likely make QKD an option for a wider range of companies.  The post NIST’s Quantum

The flaw tracked as CVE-2026-2329 can be exploited without authentication for remote code execution with root privileges.  The post Critical

Threat actors have been observed exploiting a recently disclosed critical security flaw impacting BeyondTrust Remote Support (RS) and Privileged Remote

With $5.5 trillion in global AI risk exposure and 700,000 U.S. workers needing reskilling, four new AI certifications and Certified

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added two security flaws impacting Roundcube webmail software to its

Artificial intelligence (AI) company Anthropic has begun to roll out a new security feature for Claude Code that can scan

A Russian-speaking, financially motivated threat actor has been observed taking advantage of commercial generative artificial intelligence (AI) services to compromise

The Ministry of Economy reported discovering unauthorized access to the national bank account registry FICOBA. The post French Government Says

The malware leverages Gemini to analyze on-screen elements and ensure that it remains on the device even after a reboot.

The company is investigating whether any customer or employee data was stolen by hackers. The post Chip Testing Giant Advantest

The FBI has confirmed that the Ploutus malware, which has been around for over a decade, is still being used

The cyber threat space doesn’t pause, and this week makes that clear. New risks, new tactics, and new security gaps

Microsoft has disclosed a now-patched security flaw in Windows Admin Center that could allow an attacker to escalate their privileges.