Guides, playbooks, and learning resources to level up your cybersecurity knowledge and keep your organization secure.
This update succeeds&#;x26;#;xc2;&#;x26;#;xa0;TeamPCP Supply Chain Campaign Update 007, published April 8, 2026, which left the campaign in credential-monetization mode following the Cisco source code theft via Trivy-linked credentials, Google GTIG&#;x26;#;39;s formal designation of the operators...
Medical device giant Medtronic disclosed last week that hackers breached its network and accessed data in "certain corporate IT systems."
This week’s ThreatsDay covers supply chain attacks, fake help desks, wiper malware, AI prompt traps, RMM abuse, phishing kits, and more.
Researchers have uncovered a malware framework dubbed "fast16" that predates Stuxnet by 5 years.
The initial vulnerability was exploited by Russia-linked APT28 in attacks against Ukraine and EU countries.
22-year-old Evan Tangeman of Newport Beach, California, was sentenced to 70 months in prison for laundering funds stolen in a massive $230 million cryptocurrency heist.
Three seconds of audio is all it takes to clone a voice for fraud. Adaptive Security shows how deepfake calls trick employees into sending real money—and why most defenses don't catch them.
Some fear frontier LLMs like Claude Mythos and Anthropic's GPT-5.5 will lead to cybersecurity annihilation. Ari Herbert-Voss notes this could be an opportunity.
A code reuse issue enabled comma characters in certificate principals to be interpreted as list separators.
The tech giant found that many indirect prompt injection attempts are harmless, but some malicious exploits have also been identified.
Microsoft is investigating an ongoing Outlook.com outage that is causing intermittent signing issues and preventing customers from accessing their mailboxes.
Claude Mythos’ April 7 launch accelerates vulnerability discovery, but limited access and rising false positives strain remediation workflows.
