Guides, playbooks, and learning resources to level up your cybersecurity knowledge and keep your organization secure.
Cisco patches four CVEs up to CVSS 9.9 in ISE and Webex, preventing code execution and user impersonation risks.
Researchers found more than 80 high-impact cloud and AI vulnerabilities during the event, which had a $5 million prize pool.
PHANTOMPULSE spreads via Obsidian plugin abuse in REF6598 campaign, targeting finance and crypto users, bypassing AV controls.
To optimize management of CVE volume, entries that do not meet specific criteria will not be automatically enriched.
The ShinyHunters extortion group has leaked data from 13.5 million McGraw Hill user accounts, stolen after breaching the company's Salesforce environment earlier this month.
Taboola pixel redirected logged-in banking users to Temu in February 2026 audit, exposing GDPR and PCI DSS risks.
The flaws can be exploited remotely to impersonate users or execute arbitrary commands on the underlying OS.
The automotive analysis and data company is working with external experts to investigate the attack.
A researcher has disclosed the details of the AI attack method he has named ‘Comment and Control’.
Two U.S. nationals have been sent to prison for helping North Korean remote information technology (IT) workers to pose as U.S. residents and get hired by over 100 companies across the country, including many Fortune 500 firms.
Microsoft is investigating an issue causing this month's KB5082063 security update to fail to install on some Windows Server 2025 systems.
CERT-UA reports UAC-0247 targeted clinics in March–April 2026, stealing browser and WhatsApp data, enabling lateral movement.
