Google will shut down its Dark Web Report in February 2026, ending breach scans and deleting user data to refocus on ...

FreePBX patched 2025 flaws allowing SQL injection, file upload attacks, and an auth bypass only when webserver AUTHTYPE was ...

Researchers report phishing emails in Russia using ISO attachments to deploy Phantom Stealer against finance and related ...

A Google Chrome extension with a "Featured" badge and six million users has been observed silently gathering every prompt ...

Learn how the ShadyPanda campaign turned trusted browser extensions into spyware and the steps security teams can take to reduce extension risk.

VolkLocker uses AES-256 in Galois/Counter Mode ( GCM) for encryption through Golang's "crypto/rand" package. Every encrypted ...

CISA warns of active exploitation of Sierra Wireless router flaw allowing remote code execution via unrestricted file upload.

Apple fixes two exploited WebKit bugs targeting specific users, issuing security updates across iOS, macOS, and Safari.

Researchers detail new AI and phishing kits that steal credentials, bypass MFA, and scale attacks across major services.

Enterprises rely on browser-based GenAI, increasing data-exposure risks and demanding strict policies, isolation, and ...

CISA warns that attackers are actively exploiting the React2Shell CVE-2025-55182 flaw, urging fast patching across vulnerable ...

CISA reports active exploitation of GeoServer XXE flaw CVE-2025-58360 and directs immediate updates to secure affected ...