Guides, playbooks, and learning resources to level up your cybersecurity knowledge and keep your organization secure.
A fake RPC server can be used to listen for RPC requests and impersonate the target service to elevate privileges to System.
Cybersecurity researchers have disclosed details of a critical security flaw impacting LeRobot, Hugging Face's open-source robotics platform with nearly 24,000 GitHub stars, that could be exploited to achieve remote code execution. The vulnerability in question is CVE-2026-25874 (CVSS score: 9.3)...
Federal prosecutors have been conducting a preliminary investigation since mid-February 2026 into alleged cyberattacks on Signal accounts.
AI models like Claude Mythos find vulnerabilities in minutes, collapsing patch windows and forcing assume-breach defenses to contain threats.
Microsoft has confirmed a new issue causing newly introduced Windows security warnings to display incorrectly when opening Remote Desktop (.rdp) files.
A 21-year-old man suspected of conducting approximately 100 data breaches since late 2025 - including a hack of the French Ministry of National Education that exposed records on almost a quarter of a million employees — has been arrested at his home in western France.
After addressing a widespread outage that affected Outlook.com users worldwide on Monday, Microsoft has asked iPhone users to re-enter their credentials to regain access to their Outlook and Hotmail accounts via the default Mail app.
The threat detection startup will invest in accelerating its engineering and go-to-market efforts.
Chinese hacker extradited after 2020–2021 Exchange zero-day attacks on U.S. vaccine research, intensifying DOJ crackdown.
Agent ID Administrator enabled service principal takeover before April 9, 2026 patch, exposing privilege escalation risk in Entra ID tenants.
The ShinyHunters cybercrime group claimed to have stolen 9 million records containing personal information from Medtronic.
CVE-2026-32202 actively exploited after April 27 advisory fix, exposing NTLMv2 hashes via zero-click SMB authentication.
