A critical remote code execution (RCE) vulnerability has been uncovered in Hugging Face’s LeRobot, a popular open-source robotics machine learning framework. Tracked as CVE-2026-25874, the…
Stablecoins run 24/7, forcing a shift to always-on controls as risks move beyond custody into execution layers, APIs, and multi-system authority management. They move in…
Joe Levy, CEO at Sophos, told the World Economic Forum that’s a 10,000:1 ratio and a massive challenge for global cybersecurity resilience. “Those are not…
Researchers have documented a long‑running campaign that uses fake CAPTCHA pages to trick mobile users into sending dozens of international SMS messages in the background.…
Threat hunters are warning that the cybercriminal operation known as VECT 2.0 acts more like a wiper than a ransomware due to a critical flaw…
The UK data regulator has been considering whether to formally investigate the Home Office’s electronic visa (eVisa) system for five months, leading to accusations from…
A vulnerability has been identified in the popular open-source text editor, Notepad++, with the release of CVE-2026-3008. The vulnerability, discovered and reported by CSA under…
Lion is deploying OpenAI’s ChatGPT Enterprise to its 2500 staff and agentic coding tool Codex as well, as part of a plan to embed AI…
Investing and trading platform Robinhood has confirmed that cybercriminals exploited a vulnerability in its account creation process to send out legitimate-looking phishing emails. Many Robinhood…
Signal Phishing Campaign Targets German Officials in Suspected Russian Operation Pierluigi Paganini April 28, 2026 Suspected Russian phishing via Signal targeted German officials, exploiting trust…
Fran Hutchings | Tuesday, 28 April 2026 at 10:42 UTC We’re proud to announce that PortSwigger recently won the Overall Judges’ Award at the Northern…
Most organizations treating AI security as a model problem are defending the wrong layer. Security teams filter prompts, patch jailbreaks, and tune model behavior, which…
