A new and more dangerous type of malware is quietly targeting Windows users by hiding inside a trusted software installe...
A fake npm package has been caught silently stealing sensitive developer credentials by impersonating the widely trusted...
A critical SQL injection vulnerability in ProFTPD, one of the Internet’s most widely deployed FTP servers. Tracked as CV...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning regarding a severe vulnera...
A newly identified remote access trojan called KarstoRAT has been found in sandbox analyses and malware repositories sin...
In early 2026, two critical authentication bypass vulnerabilities in the popular open-source Qinglong task scheduler wer...
A new threat has quietly taken root in the software development world, using an AI coding assistant as an unknowing part...
A new open-source project called CVE MCP Server is redefining how security teams triage vulnerabilities, transforming An...
OpenAI has published a comprehensive cybersecurity action plan titled “Cybersecurity in the Intelligence Age: An Action...
A massive supply chain attack has been uncovered in the Quick Page/Post Redirect Plugin, a popular WordPress plugin with...
Jenkins project published a security advisory detailing patches for seven plugin vulnerabilities, including high-severit...
A critical remote code execution vulnerability in the Google Gemini CLI and its associated GitHub Action. Assigned a max...