Guides, playbooks, and learning resources to level up your cybersecurity knowledge and keep your organization secure.
CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.
The company will hire new talent and expand operations across the US and other allied countries.
Mythos found decades-old vulnerabilities, yet fewer than 1% were patched, exposing a remediation gap.
New analysis from Abnormal AI reveals how attackers have abandoned technical exploits to weaponize routine workflows and internal trust.
CISA has ordered U.S. federal agencies to patch a Microsoft Defender privilege escalation flaw (dubbed BlueHammer) that has been exploited in zero-day attacks.
The company is notifying My Rituals members that hackers downloaded part of their data, including names and addresses.
Apple yesterday released iOS/iPadOS 26.4.2 and iOS/iPadOS 18.7.8. This update fixes a single Notification Services vulnerability, CVE-2026-28950:
Palo Alto Networks has developed Zealot, a multi-agent penetration testing PoC capable of reconnaissance, exploitation, and exfiltration.
The proof of concept revealed AI-based attacks unfold too fast for human defenders to respond, and that AI evinced more autonomous behavior than expected.
GopherWhisper infected 12 Mongolian government systems in January 2025, abusing Slack and Discord for C2, exposing wider espionage risks.
Apple rolled out the security patches for dozens of iPhone and iPad models and generations.
Vercel uncovered additional compromised accounts after expanding its probe into a Context.ai-linked breach, exposing OAuth and malware risks.
