General cybersecurity industry news, market trends, and analysis
Stopping EDR killers, which employ bring-your-own-vulnerable-driver (BYOVD) attack techniques, is difficult, but not impossible.
Experts say this is the second-largest Microsoft Patch Tuesday ever based on CVE count.
Critical ColdFusion vulnerabilities are the most at risk of being exploited in attacks, according to the software giant.
In an educational game called "Capture the Narrative," students created bots to sway a fictional election, simulating influence in real-world political scenarios.
Two Composer flaws (CVE-2026-40176, CVE-2026-40261) allow command execution via Perforce configurations, prompting urgent updates.
Pushpaganda exploits Google Discover using AI-generated content, driving scams and ad fraud globally, prompting Google to deploy a security fix.
Google adds a Rust-based DNS parser to Pixel 10 modem firmware, reducing memory vulnerabilities and strengthening defenses against baseband exploits.
CISOs face a shrinking window to prepare as AI models like Mythos collapse the gap between vulnerability discovery and exploitation, driving a new era of high-velocity cyberattacks.
Basic-Fit has reported that hackers have stolen names, dates of birth, and even bank account details.
The company has released 19 new security notes addressing flaws in over a dozen enterprise products.
The sprawling cybercrime operation abuses major providers to prevent takedowns and distance itself from sanctions.
The parser is meant to mitigate the entire class of memory safety bugs in the low-level environment.
