Two critical n8n flaws (CVSS 9.4, 9.5) enable RCE via expression sandbox escape and public forms, risking credential exposure ...

The Contagious Interview campaign weaponizes job recruitment to target developers. Threat actors pose as recruiters from crypto and AI companies and deliver backdoors such as OtterCookie and ...

ThreatDown, the corporate business unit of Malwarebytes, today published research documenting what researchers believe to be the first documented case of attackers abusing the Deno JavaScript runtime ...

Law enforcement agencies in the US and Europe have disrupted SocksEscort, a malicious proxy service that facilitated criminal activities.

Fortinet, Ivanti, and Intel have released fixes for dozens of vulnerabilities, including high-severity bugs leading to code execution.

Attackers are using fake Claude Code install pages and malicious search ads to spread infostealer malware targeting Windows ...

Hackers are impersonating IT staff in Microsoft Teams to trick employees into installing malware, giving attackers stealthy ...

The era of autonomous warfare will not announce itself with robotic armies marching across battlefields. Instead, it is already emerging, quietly and inexorably, in the skies and fields of eastern ...

Hackers contacted employees at financial and healthcare organizations over Microsoft Teams to trick them into granting remote ...

Two attacks on Qatari entities signal a shift in focus for China-backed actors and demonstrate how quickly they can pivot in response to geopolitics.

Nine CrackArmor flaws in Linux AppArmor since 2017 enable root escalation and container bypass, putting 12.6M systems at risk.

Law enforcement agencies across the United States and Europe have dismantled a large cybercrime network powered by AVrecon ...