Cybersecurity

A China-linked espionage group, UNC6508, secretly infiltrated North American research networks for over a year.The attackers used a backdoor called INFINITERED to compromise REDCap...

A one-click exploit called SearchLeak could exfiltrate emails, calendar details, and indexed files from Microsoft 365 Copilot Enterprise Search.The attack chained three bugs: a...

A cluster of 152 Google Chrome extensions has been discovered distributing a potentially unwanted program (PUP) and committing attribution fraud.The extensions, which act as...

Palo Alto Networks has confirmed active exploitation of a critical VPN vulnerability, CVE-2026-0257, allowing unauthorized access.The vulnerability, which affects PAN-OS software, enables attackers to...

Splunk has patched a critical vulnerability, CVE-2026-20253, rated 9.8 on the CVSS scale, allowing unauthenticated file operations and potential remote code execution.The flaw exists...

Anthropic disabled its most advanced AI models, Claude Fable 5 and Mythos 5, for all users after a U.S. government order.The directive cited national...

Google has filed a lawsuit to dismantle a Chinese cybercrime network using its Gemini AI for phishing scams.The "Outsider" service sent over 2.5 million...

Researchers at Tenet Security have uncovered a new attack class called "Agentjacking" that tricks AI coding agents into executing malicious code.The exploit uses a...