A Vietnamese threat actor is using AI-authored code to power a phishing campaign that delivers the PureRAT malware and related…
In a huge blow to the global cybercrime underground, US federal authorities have seized the clearnet and dark web domains…
The UK government is working with industry and teachers to develop an artificial intelligence (AI) tutoring tool to give more…
Fortinet patches actively exploited FortiOS SSO auth bypass (CVE-2026-24858) Pierluigi Paganini January 28, 2026 Fortinet released fixes for a critical…
Listen to the article 3 min This audio is auto-generated. Please let us know if you have feedback. Dive Brief:…
A critical security advisory has been released for a command injection vulnerability affecting the Archer MR600 v5 router. The flaw,…
A critical zero-day vulnerability has been disclosed in the Gemini MCP Tool, enabling unauthenticated remote attackers to execute arbitrary code…
The Google Threat Intelligence Group (GTIG) warns that nation-state actors and financially motivated threat actors are exploiting a flaw in…
SolarWinds has released security updates to patch critical authentication bypass and remote command execution vulnerabilities in its Web Help Desk…
The ZAP (Zed Attack Proxy) project, a widely used open-source web application security scanner, has disclosed a critical memory leak…
A new longitudinal study of Magecart-style eSkimming attacks overturns the assumption that discovery equals recovery. Instead of being a one-time…
State-sponsored hackers and financially motivated attackers continue leveraging a critical WinRAR vulnerability (CVE-2025-8088) that’s been fixed over half a year…