The activity has been attributed to Storm-2603, which, according to Microsoft, is a suspected China-based threat actor that ...

Critical flaw in Cursor AI editor let attackers execute remote code via Slack and GitHub—fixed in v1.3 update.

The ongoing campaign, first detected in early 2025, is designed to use the OAuth applications as a gateway to obtain ...

In the npm ecosystem, postinstall scripts are often overlooked attack vectors—they run automatically after a package is ...

The solution lies in fundamentally reimagining security data architecture around what AI models actually need to perform effectively. This means transitioning from legacy data feeds to what could be ...

SentinelOne boosts enterprise cyber defense with AI-powered endpoint security, cutting response time and risk across ...

UNC2891 used a 4G Raspberry Pi and Linux rootkits to breach ATM networks, exposing flaws in banking infrastructure.

Russian APT Secret Blizzard uses ISP-level AitM attacks to deploy ApolloShadow malware on embassy devices in Moscow.

China-linked firms behind Silk Typhoon filed patents for cyber tools, revealing links to MSS and offensive hacking ops.

Pillar Security unveils full-lifecycle AI platform securing assets from design to runtime—critical for safe AI deployment.

Threat actors abuse Proofpoint and Intermedia link wrapping to deliver phishing emails and steal Microsoft 365 credentials.

SAP flaw CVE-2025-31324 exploited to deploy Auto-Color malware at U.S. chemicals firm; Linux systems targeted.