The Tycoon2FA phishing kit now supports device-code phishing attacks and abuses Trustifi click-tracking URLs to hijack ...

Ghostwriter’s March 2026 Ukraine attacks use PDF lures and geofencing to deploy Cobalt Strike on government targets.

Microsoft Exchange users are urged to mitigate a zero-day vulnerability that CISA has confirmed is under active exploitation.

Education technology giant Instructure has confirmed that a security vulnerability allowed hackers to modify Canvas login ...

FrostyNeighbor, a long-running cyberespionage actor apparently aligned with the interests of Belarus, has been active recently in campaigns targeting governmental organizations in Ukraine.This latest ...

Microsoft Exchange users are urged to mitigate a zero-day vulnerability that CISA has confirmed is under active exploitation.

Google has released a Chrome 148 update that resolves 79 vulnerabilities, including 14 critical-severity security defects.

Weekly cybersecurity recap covering zero-days, malware, phishing, supply chain attacks, cloud threats, AI security risks, and ...

A newly discovered zero-day vulnerability in Microsoft Exchange Server has experts declaring an emergency and urging CSOs to ...

This vibe coding cheat sheet explains how plain-language prompts can build apps fast, plus the planning, testing, and ...

Linux server admins may get the ability to turn off a vulnerable function in the OS kernel until a patch for a zero-day ...