Guides, playbooks, and learning resources to level up your cybersecurity knowledge and keep your organization secure.
The TeamPCP hackers behind the Trivy supply-chain attack continued to target Aqua Security, pushing malicious Docker images and hijacking the company's GitHub organization to tamper with dozens of repositories.
A summary of the announcements made by vendors in the days leading up to the RSAC 2026 Conference.
A financially motivated data theft and extortion group is attempting to inject itself into the Iran war, unleashing a worm that spreads through poorly secured cloud services and wipes data on infected systems that use Iran's time zone or have…
A phishing campaign targeting healthcare, government, hospitality, and education sectors in various countries uses several evasion techniques to avoid detection.
The latest M-Trends report is based on insights from over 500,000 hours of Mandiant incident response investigations in 2025.
The semiconductor company says hackers deployed file-encrypting ransomware on the network of a subsidiary in Singapore.
AI agents can access data directly, making data security the foundation of AI security. Learn more about how Varonis Atlas helps orgs see, secure, and control AI systems and the data they can reach.
Hackers published a malicious scanner release and replaced tags to point to information-stealer malware.
Trivy backdoored, FBI buys location data, iOS DarkSword kit, WhatsApp usernames, Langflow RCE, Cisco FMC zero-day & critical CVEs to patch.
Microsoft is working to address an ongoing service issue that has intermittently prevented some users from accessing their cloud-based Exchange Online mailboxes via Outlook mobile and Mac desktop clients since Thursday.
8 Bedrock attack vectors exploit permissions and integrations, enabling data theft, agent hijacking, and system compromise at scale.
The flaws could allow attackers to access sensitive information, execute code, or cause unexpected behavior.
