A Türkiye-affiliated threat actor exploited a zero-day security flaw in an Indian enterprise communication platform called ...

"If you run AsusSetup.exe with the -s flag (DriverHub calls it using this to do a silent install), it will execute whatever ...

"Instead of relying on traditional phishing or cracked software sites, they build convincing AI-themed platforms – often ...

The attacks targeted IoT devices susceptible to known security flaws to deploy a malware called TheMoon. The development ...

The separation of high value, highly sensitive forests in Active Directory from other systems and assets is critically ...

Germany's Federal Criminal Police Office (aka Bundeskriminalamt or BKA) has seized the online infrastructure and shutdown linked to the eXch cryptocurrency exchange over allegations of money ...

Malicious npm packages targeting Cursor macOS users stole credentials and disabled updates, impacting 3,200+ downloads.

Google has agreed to pay the U.S. state of Texas nearly $1.4 billion to settle two lawsuits that accused the company of ...

Cisco fixes CVE-2025-20188, a 10.0 CVSS flaw tied to hardcoded JWT in wireless controllers, preventing root-level remote ...

"The spam message uses the Brazilian electronic invoice system, NF-e, as a lure to entice users into clicking hyperlinks and ...

The exploitation of CVE-2025-29824 also points to the trend of ransomware actors using zero-days to infiltrate targets. Last ...

Nation-state intrusions. Deepfake-ready malware. AI-powered influence ops. New CVEs, old threats reborn, and spyware with ...