Latrodectus malware evades detection with ClickFix technique; TikTok and fake Ledger apps expand threat reach.

Cybersecurity researchers have disclosed that a threat actor codenamed ViciousTrap has compromised nearly 5,300 unique ...

SafeLine WAF delivers 99.45% threat detection via semantic analysis + full self-hosted control + zero subscription fees.

Operation Endgame dismantled 300 servers and seized €3.5M crypto, disrupting ransomware access networks globally.

Indirect prompt injection in GitLab Duo exposed private source code and inserted malicious HTML into AI responses, risking ...

CISA, which added CVE-2025-3928 to its Known Exploited Vulnerabilities Catalog in late April 2025, said it's continuing to ...

A Chinese-speaking threat actor tracked as UAT-6382 has been linked to the exploitation of a now-patched ...

Windows Server 2025 flaw allows any user with dMSA write permissions to escalate privileges and compromise AD.

DoJ disrupts DanaBot malware after 300K infections and $50M damage; 16 charged in Russia-linked cybercrime ring.

52% of breaches stem from manual identity workflows in disconnected apps—causing customer loss and compliance risks.

UNC5221 exploited Ivanti EPMM flaws CVE-2025-4427/4428 in global attacks starting May 15, 2025, enabling remote access and ...

Fake Facebook ads impersonating Kling AI deploy PureHVNC RAT via spoofed sites, stealing credentials and crypto data.