CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.

Two malware campaigns weaponize open-source software to target executives and cloud systems, combining social engineering ...

How modern infostealers target macOS systems, leverage Python‑based stealers, and abuse trusted platforms and utilities to ...

A decade-old critical security vulnerability affects over 800,000 internet-exposed telnet servers, with reports of active ...

Darktrace researchers say hackers used AI and LLMs to create malware to exploit the React2Shell vulnerability to mine ...

Researchers uncover SSHStalker, an IRC botnet exploiting legacy Linux flaws and SSH servers to build persistent covert access.

Today is Microsoft' 2026 Patch Tuesday with security updates for 58 flaws, including 6 actively exploited and three publicly disclosed zero-day vulnerabilities.

Researchers have detected attacks that compromised Bomgar appliances, many of which have reached end of life, creating problems for enterprises seeking to patch.

Compromised dYdX npm and PyPI packages delivered wallet-stealing malware and a RAT via poisoned updates in a software supply chain attack.

KEV Collider combines data from multiple open source vulnerability frameworks to help cybersecurity teams assess which issues ...

Espionage groups from China, Russia, and Iran burned at least two dozen zero-days in edge devices in attempts to infiltrate defense contractors' networks.

AI deepfakes are complicating the search for Savannah Guthrie’s missing mother, raising urgent questions about proof of life ...