Surge in cyberattacks between India and Pakistan, Radware cloud WAF vulnerabilities, xAI key leak exposes LLMs.

Supply chain attack compromises the popular rand-user-agent scraping NPM package to deploy and activate a backdoor.

VMS firm Valsoft Corporation says the personal information of over 160,000 people was compromised in a February 2025 data ...

Three NPM packages posing as developer tools for Cursor AI code editor’s macOS version contain a backdoor. Three malicious NPM packages posing as developer tools for the popular Cursor AI code editor ...

How Dr. Kelley Misata and Sightline Security are reshaping nonprofit cybersecurity, breaking industry myths, and building ...

A recently disclosed SAP NetWeaver zero-day that has been targeted for remote code execution since January 2025.

VC firm Insight Partners is informing partners and employees that their information was exposed in the January 2025 ...

Russia-linked APT Star Blizzard is using the ClickFix technique in recent attacks distributing the LostKeys malware.

British startup exits stealth with $20 million in seed-stage financing led by US investors Scout Ventures and Artis Ventures.

Four people have been arrested in Poland and several websites associated with DDoS-for-hire services have been shut down.

SysAid patches IT service management software vulnerabilities that can be chained for unauthenticated remote command ...

SonicWall patches three SMA 100 vulnerabilities, including a potential zero-day, that could be chained to execute arbitrary ...