Latest Cybersecurity News

Stay informed with real-time threat intelligence, vulnerability disclosures, and expert analysis from the cybersecurity community.

All Malware & Threats463 Vulnerabilities239 Data Breaches20 Ransomware0 APT & Threat Actors0 Cloud Security0 MENA Cybersecurity0 Compliance & Frameworks0 Tools & Tutorials0 Industry News1113

Industry News

After Replacing TeamPCP Malware, 'PCPJack' Steals Cloud Secrets

Dark Reading

Industry News

After Replacing TeamPCP Malware, 'PCPJack' Steals Cloud Secrets

PCPJack makes innovative use of parquet files for stealthy, pre-validated target discovery as it canvasses multiple cloud environments.

Dark Reading12h ago1m2

Worries About AI’s Risks to Humanity Loom Over the Trial Pitting Musk Against OpenAI’s Leaders

SecurityWeek

Industry News

Worries About AI’s Risks to Humanity Loom Over the Trial Pitting Musk Against OpenAI’s Leaders

Musk said that he could have founded OpenAI as a for-profit company, just like the other companies he started or took over. “I deliberately chose this,” he said, “for the public good.”

SecurityWeek13h ago5m2

New PCPJack worm steals credentials, cleans TeamPCP infections

BleepingComputer

Malware & Threats

New PCPJack worm steals credentials, cleans TeamPCP infections

A new malware framework called PCPJack is stealing credentials from exposed cloud infrastructure while actively removing TeamPCP's access to the systems.

BleepingComputer14h ago3m2

Australia warns of ClickFix attacks pushing Vidar Stealer malware

BleepingComputer

Malware & Threats

Australia warns of ClickFix attacks pushing Vidar Stealer malware

The Australian Cyber Security Center (ACSC) is warning organizations of an ongoing malware campaign using the ClickFix social engineering technique to distribute  the Vidar Stealer info-stealing malware.

BleepingComputer14h ago3m2

Ivanti EPMM CVE-2026-6973 RCE Under Active Exploitation Grants Admin-Level Access

The Hacker News

Industry News

Ivanti EPMM CVE-2026-6973 RCE Under Active Exploitation Grants Admin-Level Access

Ivanti EPMM flaw CVE-2026-6973 exploited in limited attacks; CISA mandates fixes by May 10, 2026, increasing urgency.

The Hacker News15h ago2m1

PCPJack Credential Stealer Exploits 5 CVEs to Spread Worm-Like Across Cloud Systems

The Hacker News

Industry News

PCPJack Credential Stealer Exploits 5 CVEs to Spread Worm-Like Across Cloud Systems

PCPJack steals credentials via 6 Python modules exploiting 5 CVEs, enabling cloud spread and fraud-driven attacks.

The Hacker News15h ago4m1

Industry News

Has CISA Finally Found Its New Leader in Tom Parker?

Dark Reading

Industry News

Has CISA Finally Found Its New Leader in Tom Parker?

Dark Reading investigates rumors that Tom Parker, a board room 'operator' and longtime cyber exec, could be next in line to take over CISA.

Dark Reading16h ago1m1

Palo Alto Zero-Day Exploited in Campaign Bearing Hallmarks of Chinese State Hacking

SecurityWeek

Industry News

Palo Alto Zero-Day Exploited in Campaign Bearing Hallmarks of Chinese State Hacking

The cybersecurity firm has not explicitly accused China of being behind the attack, but the evidence suggests it was.

SecurityWeek17h ago3m1

Ivanti warns of new EPMM flaw exploited in zero-day attacks

BleepingComputer

Malware & Threats

Ivanti warns of new EPMM flaw exploited in zero-day attacks

Ivanti warned customers today to patch a high-severity remote code execution vulnerability in Endpoint Manager Mobile (EPMM) exploited in zero-day attacks.

BleepingComputer17h ago3m2

Boost Security Raises $4 Million for SDLC Defense Platform

SecurityWeek

Industry News

Boost Security Raises $4 Million for SDLC Defense Platform

The company is expanding its platform’s capabilities with the acquisition of SecureIQx and Korbit.ai.

SecurityWeek18h ago2m1

Claude Code OAuth Tokens Can Be Stolen Through Stealthy MCP Hijacking

SecurityWeek

Industry News

Claude Code OAuth Tokens Can Be Stolen Through Stealthy MCP Hijacking

Mitiga researchers say attackers can silently redirect Claude Code MCP traffic, intercept OAuth tokens, and maintain persistent access to connected SaaS platforms.

SecurityWeek18h ago4m1

Chrome 148 Rolls Out With 127 Security Fixes

SecurityWeek

Industry News

Chrome 148 Rolls Out With 127 Security Fixes

The fresh browser update resolves critical-severity integer overflow and use-after-free vulnerabilities.

SecurityWeek18h ago2m1