Cybersecurity

A Canadian man was arrested for allegedly operating the Kimwolf DDoS botnet, a service sold to other cybercriminals.The botnet targeted firewalled internet-of-things devices and...

Two actively exploited vulnerabilities in Microsoft Defender, CVE-2026-41091 and CVE-2026-45498, have been patched according to an advisory dated May 21, 2026.The flaws, a privilege...

GitHub confirms a breach of its internal repositories via a poisoned Visual Studio Code extension.The attack was part of the larger TanStack supply chain...

Microsoft has launched two new open-source security tools, RAMPART and Clarity, designed for AI agent development.RAMPART is a testing framework for running safety and...

Microsoft disrupted Fox Tempest, a malware-signing-as-a-service that weaponized its Artifact Signing system to legitimize ransomware and other malware.The service sold for between $5,000 and...

Microsoft has released a mitigation for a critical BitLocker bypass flaw called "YellowKey" (CVE-2026-45585).The vulnerability allows attackers with physical access to circumvent device encryption...

GitHub is investigating unauthorized access to its internal repositories after a threat actor listed its source code for sale.The attack involved a compromised employee...

Trapdoor campaign funneled malvertising into ad fraud using 455 malicious Android apps and 183 C2 domains.The operation generated 659 million daily bid requests at...