Our first story of 2026 revealed how a destructive new botnet called Kimwolf has infected more than two million devices…
Security researchers have identified a sophisticated technique that allows attackers to hide malicious processes from Windows Task Manager and system…
Talha Tariq and his colleagues at Vercel, the company that maintains Next.js, endured many sleep-deprived nights and weekends when React2Shell…
The North Korean state-sponsored hacker group Kimsuki is using malicious QR codes in spearphishing campaigns that target U.S. organizations, the Federal…
Beijing dismissed accusations of Chinese involvement in a significant cyberattack against United States congressional staff email systems on Thursday, characterizing…
Update Jan. 6, 2026, 1:49 PM ET: After publishing this story, Samsung told BleepingComputer that the Texas court vacated the…
The React Server Components (RSC) “Flight” protocol remote code execution vulnerability, tracked as CVE-2025-55182 and publicly referred to as “React2Shell,”…
Chinese-speaking threat actors used a compromised SonicWall VPN appliance to deliver a VMware ESXi exploit toolkit that seems to have…
The UK government has unveiled an ambitious £210 million cyber security initiative designed to fortify digital defenses across public sector…
A well-known, dangerous banking malware called Astaroth has found a new way to break into people’s lives by sneaking into…
Multiple Cisco switch models are suddenly experiencing reboot loops after logging fatal DNS client errors, according to reports seen by…
Cisco has disclosed two critical vulnerabilities in the Snort 3 detection engine affecting multiple enterprise security products, including firewalls, threat…