Cybersecurity

Threat actors are actively exploiting misconfigured Salesforce Experience Cloud sites to steal sensitive data.The attackers are using a customized version of an open-source auditing...

A malicious npm package posing as an OpenClaw AI installer has been deployed to steal passwords, cryptocurrency wallets, and sensitive data from macOS users.The...

OpenAI has launched Codex Security, an AI agent that scans code for vulnerabilities and proposes fixes.The tool is available in a research preview through...

The Transparent Tribe (APT36) hacking group is now using AI to generate malware in lesser-known programming languages like Nim, Zig, and Crystal.Their new "vibeware"...

A widespread social engineering scheme, dubbed ClickFix, is now using the legitimate Windows Terminal app to trick users and deploy malware.The campaign bypasses security...

A suspected Iran-nexus threat actor, tracked as Dust Specter, impersonated Iraq’s Ministry of Foreign Affairs to target government officials with new malware.The campaign deployed...

Law enforcement dismantled Tycoon 2FA, a major Phishing-as-a-Service platform used in tens of thousands of credential theft attacks.The kit enabled threat actors to steal...

Security leaders have new budgets for AI security but often lack clear requirements for governance solutions.Many existing security tools fail to properly monitor AI...