Native phishing turns trusted tools into attack delivery systems. Varonis shows how attackers weaponize Microsoft 365 apps, ...

Cybersecurity firm Profero cracked the encryption of the DarkBit ransomware gang's encryptors, allowing them to recover a ...

Over 29,000 Exchange servers exposed online remain unpatched against a high-severity vulnerability that can let attackers ...

Elon Musk-owned xAI is testing Grok 4.20, a small update to Grok 4, which already competes with GPT-5 in some benchmarks, such as ARC-AGI 2.

Connex, one of Connecticut's largest credit unions, warned tens of thousands of members that unknown attackers had stolen ...

The U.S. Department of Justice charged four Ghanaian nationals for their roles in a massive fraud ring linked to the theft of over $100 million in romance scams and business email compromise attacks.

Google fixed a bug that allowed maliciously crafted Google Calendar invites to remotely take over Gemini agents running on ...

A recently fixed WinRAR vulnerability tracked as CVE-2025-8088 was exploited as a zero-day in phishing attacks to install the ...

Sixty malicious Ruby gems containing credential-stealing code have been downloaded over 275,000 times since March 2023, ...

A new Endpoint Detection and Response (EDR) killer that is considered to be the evolution of 'EDRKillShifter,' developed by ...

CISA has issued an emergency directive ordering all Federal Civilian Executive Branch (FCEB) agencies to mitigate a critical ...

SonicWall says that recent Akira ransomware attacks exploiting Gen 7 firewalls with SSLVPN enabled are exploiting an older ...