details

China-Linked Hackers Target Asian Governments, NATO State, Journalists, and Activists

AndyC 2 May 2026

Cybersecurity researchers have disclosed details of a new China-aligned espionage campaign targeting government and defense sectors across South, East, and...

New Python Backdoor Uses Tunneling Service to Steal Browser and Cloud Credentials

AndyC 1 May 2026

Ravie LakshmananApr 30, 2026Cloud Security / Threat Intelligence Cybersecurity researchers have disclosed details of a stealthy Python-based backdoor framework called...

New Linux ‘Copy Fail’ Vulnerability Enables Root Access on Major Distributions

AndyC 1 May 2026

Ravie LakshmananApr 30, 2026Linux / Vulnerability Cybersecurity researchers have disclosed details of a Linux local privilege escalation (LPE) flaw that...

Researchers Discover Critical GitHub CVE-2026-3854 RCE Flaw Exploitable via Single Git Push

AndyC 29 April 2026

Ravie LakshmananApr 28, 2026Vulnerability / Software Security Cybersecurity researchers have disclosed details of a critical security vulnerability impacting GitHub.com and...

Critical Unpatched Flaw Leaves Hugging Face LeRobot Open to Unauthenticated RCE

AndyC 29 April 2026

Ravie LakshmananApr 28, 2026Vulnerability / Network Security Cybersecurity researchers have disclosed details of a critical security flaw impacting LeRobot, Hugging...

Critical Unpatched Flaw Leaves Hugging Face LeRobot Open to Unauthenticated RCE

AndyC 29 April 2026

Ravie LakshmananApr 28, 2026Vulnerability / Network Security Cybersecurity researchers have disclosed details of a critical security flaw impacting LeRobot, Hugging...

Fake CAPTCHA IRSF Scam and 120 Keitaro Campaigns Drive Global SMS, Crypto Fraud

AndyC 28 April 2026

Cybersecurity researchers have disclosed details of a telecommunications fraud campaign that uses fake CAPTCHA verification tricks to dupe unsuspecting users...

Data Masking Gaps That Could Expose Your Organization

AndyC 7 April 2026

Organizations collect and store huge amounts of sensitive data, customer details, financial records, login credentials, and more. Protecting this...

Breach Readiness in the Age of Mythos: When Your AI Thinks, Learns, and Defends

AndyC 31 March 2026

Anthropic left details of an unreleased model, an invite-only CEO retreat, sitting in an unsecured data trove in a...

TA446 Deploys DarkSword iOS Exploit Kit in Targeted Spear-Phishing Campaign

AndyC 29 March 2026

Ravie LakshmananMar 28, 2026Mobile Security / Email Security Proofpoint has disclosed details of a targeted email campaign in which threat...

Open VSX Bug Let Malicious VS Code Extensions Bypass Pre-Publish Security Checks

AndyC 28 March 2026

Ravie LakshmananMar 27, 2026Software Security / DevSecOps Cybersecurity researchers have disclosed details of a now-patched bug impacting Open VSX's pre-publish...

How digital brains for humanoid robots are being built

Apple: Local business ads are coming to Apple Maps

AndyC 25 March 2026

Manage brand name, logo, and key details consistently across Maps, Wallet, and other Apple features and services. Customize their Map...

AI Flaws in Amazon Bedrock, LangSmith, and SGLang Enable Data Exfiltration and RCE

AndyC 18 March 2026

Cybersecurity researchers have disclosed details of a new method for exfiltrating sensitive data from artificial intelligence (AI) code execution environments...

Storm-2561 Spreads Trojan VPN Clients via SEO Poisoning to Steal Credentials

AndyC 14 March 2026

Ravie LakshmananMar 13, 2026VPN Security / Malware Microsoft has disclosed details of a credential theft campaign that employs fake virtual...

Rust-Based VENON Malware Targets 33 Brazilian Banks with Credential-Stealing Overlays

AndyC 13 March 2026

Ravie LakshmananMar 12, 2026Malware / Cybercrime Cybersecurity researchers have disclosed details of a new banking malware targeting Brazilian users that's...

details

China-Linked Hackers Target Asian Governments, NATO State, Journalists, and Activists

New Python Backdoor Uses Tunneling Service to Steal Browser and Cloud Credentials

New Linux ‘Copy Fail’ Vulnerability Enables Root Access on Major Distributions

Researchers Discover Critical GitHub CVE-2026-3854 RCE Flaw Exploitable via Single Git Push

Critical Unpatched Flaw Leaves Hugging Face LeRobot Open to Unauthenticated RCE

Critical Unpatched Flaw Leaves Hugging Face LeRobot Open to Unauthenticated RCE

Fake CAPTCHA IRSF Scam and 120 Keitaro Campaigns Drive Global SMS, Crypto Fraud

Data Masking Gaps That Could Expose Your Organization

Breach Readiness in the Age of Mythos: When Your AI Thinks, Learns, and Defends

TA446 Deploys DarkSword iOS Exploit Kit in Targeted Spear-Phishing Campaign

Open VSX Bug Let Malicious VS Code Extensions Bypass Pre-Publish Security Checks

Apple: Local business ads are coming to Apple Maps

AI Flaws in Amazon Bedrock, LangSmith, and SGLang Enable Data Exfiltration and RCE

Storm-2561 Spreads Trojan VPN Clients via SEO Poisoning to Steal Credentials

Rust-Based VENON Malware Targets 33 Brazilian Banks with Credential-Stealing Overlays

The calm before the ransom: What you see is not all there is

The calm before the ransom: What you see is not all there is

GopherWhisper: A burrow full of malware

GopherWhisper: A burrow full of malware

New NGate variant hides in a trojanized NFC payment app

New NGate variant hides in a trojanized NFC payment app

Donate Bitcoin to this address

Donate Ethereum to this address

North Korea’s Enormous Crypto Hacks Redefine Scale and Strategy

Building Entity Authority in Cybersecurity: The Trust Signals AI Models Actually Weight for Security Vendors

Randall Munroe’s XKCD ‘Inflation Timeline’

30,000 Facebook Accounts Hacked via Google AppSheet Phishing Campaign

Cybercrime Groups Using Vishing and SSO Abuse in Rapid SaaS Extortion Attacks

Donate Bitcoin to this address

Donate Ethereum to this address

You may have missed