CYBERSECURITY

There has been a supply chain attack on Axios, a popular HTTP client This article explores node js malware. . Two new versions of the npm package added a.

Researchers have found a new type of malware that can steal credentials as soon as it gets onto a victim's network This article explores reliquest looked.

For four years in a row, ransomware groups went after manufacturing the most This article explores passwords safe uses. . Both have environments full of.

A flaw in OpenAI ChatGPT that had never been found before let sensitive conversation data be stolen without the user's knowledge or permission This.

Discover how A new campaign has used the ClickFix social engineering trick to spread a malware loader that had not been seen before. The loader, on the.

People are actively taking advantage of a serious security hole in Citrix NetScaler This article explores risks national cyber. . The FBI said that.

In a lot of SOCs, the threat isn't the only thing that causes the most delays This article explores soc threat visibility. . They happen because of broken.

Secrets sprawl isn't slowing down: in 2025, it sped up faster than most security teams thought it would This article explores secrets gitguardian sprawl.

Discover how Researchers at Censys have found a remote access toolkit that came from Russia. Malicious Windows shortcut (LNK) files that look like private.

Three groups of threat actors linked to China have gone after a government agency in Southeast Asia This article explores clusters threat group. . HIUPAN.

Discover how Iran's Ministry of Intelligence and Security is thought to have created the hacktivist persona Handala Hack, which is pro-Iranian and.

Citrix NetScaler ADC and Gateway versions 14.1 and 13.1 are both vulnerable. The vulnerability, CVE-2026-3055, is a case of not checking input properly.

A Russian government-backed threat group is using the DarkSword exploit kit to attack iOS devices. The group is known for spear-phishing campaigns that.

The U.S This article explores vulnerabilities kev cve. . Cybersecurity and Infrastructure Security Agency (CISA) added a serious security hole to its list.

Coruna is a high-quality mobile exploit kit that has zero-day vulnerabilities for high-level spying This article explores darksword tier ios. . It turns.

Apple is now sending Lock Screen notifications to iPhones and iPads that are running older versions of iOS and iPadOS. The alerts let people know about.

Reports say that Israel and the US took over Iran's network of traffic cameras to keep an eye on the movements of Iranian leader Ayatollah Ali Khamenei.

TeamPCP has made the telnyx Python package less secure by releasing two bad versions of it This article explores teampcp telnyx python. . The malware is.

People in China have been messing with a cutting-edge backdoor called "BPFdoor." Before it was updated, BPFdoor was already one of the most advanced.

Discover how Researchers have shared information about a bug that has now been fixed that affected Open VSX's pre-publish scanning pipeline. The bug let a.

For the first time in seven years, the number of major operational technology (OT) cyber incidents went down in 2025 This article explores think.

Ports that are open to the Internet, weak or reused passwords, and bad patching habits are some of the most common security holes that let hackers steal.

Discover how Cyber operations are a sign of rising geopolitical tensions, or in some cases, they happen before they do. In geopolitical conflict, all.

Threat actors are using adversary-in-the-middle (AitM) phishing pages to take over TikTok for Business accounts This article explores malicious svgs used.

More than 70 cyber attacks on Russian businesses have been linked to a pro-Ukrainian group called Bearlyfy. Recent attacks used a custom Windows.

LangChain and LangGraph are free and open-source frameworks that help developers make apps that use Large Language Models (LLMs) This article explores.

The FCC has stopped people from bringing in new consumer-grade routers made by companies outside the US This article explores routers americans use. . The.

Two researchers showed that they could take control of a Jeep Cherokee from a distance This article explores hack jeep cherokee. . Chrysler, Jeep's parent.

Red Menshen is the name of the threat cluster that is responsible for the campaign This article explores menshen threat cluster. . It is also known as.

Weak or reused passwords, ports that are open to the Internet, and bad patching are some of the most common problems that lead to data breaches This.