Found 2498 results
A critical security flaw in the widely used Kirki WordPress plugin has exposed over 500,000 websites to potential accoun...
A single forgotten development flag left active in production code silently handed Microsoft account tokens to any app o...
A newly disclosed remote denial-of-service exploit dubbed “HTTP/2 Bomb” targets the default HTTP/2 configurations of the...
Hackers are hiding dangerous malware inside what look like popular Minecraft mods and game clients, using YouTube videos...
A high-severity CRLF injection vulnerability in the Laravel framework, tracked as CVE-2026-48019, could allow attackers...
A threat actor used AI-assisted tools to automate Active Directory discovery and test endpoint detection and response (E...
Red Hat has officially confirmed a supply chain compromise affecting multiple packages published under the @redhat-cloud...
Cybercriminals are increasingly weaponizing trusted cloud infrastructure, including Amazon Web Services, Google Cloud, M...
A single threat actor has been running a fake political persona on Telegram for five years, quietly building an audience...
A newly discovered malware campaign targeting WordPress websites has raised serious concerns across the web security com...
A critical security vulnerability in Visual Studio Code’s webview implementation allows attackers to steal GitHub OAuth...
A dependency confusion vulnerability affecting Microsoft’s Azure Portal after the Microsoft Security Response Center (MS...