Skip to main content
← All Tags

Cybersecurity

638 articles in this category (Page 13 of 27)

AI NewsCybersecurityVulnerability Management

Vulnerabilities Surge, But Messy Reporting Blurs Picture

A record 48,177 vulnerabilities were assigned CVE identifiers in 2025, driven by expanded reporting and a shift in CVE issuance leadership.

Read more
AI NewsCybersecurityEvent Security

Winter Olympics Could Share Podium With Cyberattackers

The 2026 Milano Cortina Winter Games face threats from hacktivists, ransomware gangs, and nation-state actors seeking to disrupt or exploit the event.

Read more
AI NewsCybersecurityIAM

AI Agents Are Becoming Authorization Bypass Paths

Enterprise AI agents, designed to boost automation, are increasingly creating security risks by bypassing traditional IAM controls and granting access beyond authorized user permissions.

Read more
AI NewsNode.jsCybersecurity

Critical Node.js Vulnerability Can Cause Server Crashes via async_hooks Stack Overflow

Node.js released updates fixing a critical DoS flaw (CVE-2025-59466) caused by async_hooks stack crashes, impacting most production apps.

Read more
AI NewsCybersecurityMalware

DLL Side-Loading Exploited in Malware Campaign Delivering Trojans and RATs

A recent campaign leverages a c-ares DLL side-loading vulnerability in a signed GitKraken binary, resulting in the delivery of diverse malware like Agent Tesla and XWorm.

Read more
AI NewsCybersecurityThreat Intelligence

Microsoft Disrupts RedVDS Cybercrime Service, Seizing Key Infrastructure

Microsoft collaborated with law enforcement to disrupt RedVDS, a cybercrime-as-a-service operation responsible for stealing millions, seizing two key domains.

Read more
AI NewsCybersecurityWindows Security

Microsoft Fixes 114 Windows Flaws in January 2026 Patch, One Actively Exploited

Microsoft’s January 2026 Patch Tuesday addresses 114 Windows vulnerabilities, including an actively exploited Desktop Window Manager flaw added to CISA’s KEV list.

Read more
AI NewsCybersecurityData Privacy

64% of Third-Party Web Applications Access Sensitive Data Unjustifiably

New research reveals 64% of third-party applications on websites access sensitive data without business need, increasing risk for government and education sectors.

Read more
AI NewsCybersecurityMalware

PLUGGYAPE Malware Leverages Signal and WhatsApp to Target Ukrainian Defense

CERT-UA reports PLUGGYAPE malware attacks targeting Ukrainian defense forces via Signal and WhatsApp, demonstrating a shift towards encrypted messaging app exploitation.

Read more
AI NewsCybersecurityThreat Intelligence

Oceania Sees Rise in Cyberattacks Targeting Retail and Services

A new report reveals that retail and construction sectors in Australia and New Zealand experienced more cyberattacks in 2025 than critical infrastructure.

Read more
AI NewsCybersecurityVulnerability Management

CISA Warns of Active Exploitation of Gogs Vulnerability Enabling Code Execution

CISA added a high-severity Gogs flaw (CVE-2025-8110) to its KEV catalog due to active exploitation leading to remote code execution, with 700 instances already compromised.

Read more
AI NewsCybersecurityRisk Management

CISO Succession Crisis Highlights How Turnover Amplifies Risks

Rapid CISO turnover is a growing problem, with average tenures hovering between 18-26 months and 66% reporting excessive expectations.

Read more
AI NewsCybersecurityM&A

CrowdStrike to Acquire Seraphic Security for $420M to Enhance Browser Security

CrowdStrike will integrate Seraphic Security’s browser protection into its Falcon platform, aiming to secure endpoints, sessions, and cloud applications.

Read more
AI NewsCybersecurityITSM

‘Most Severe AI Vulnerability to Date’ Hits ServiceNow

ServiceNow’s authentication issues allowed potential full platform takeover and access to connected systems, identified as the most severe AI-driven vulnerability uncovered to date.

Read more
AI NewsCybersecurityCloud Security

VoidLink: Advanced China-Linked Linux Malware Targeting Cloud Environments

Check Point Research details VoidLink, a sophisticated Linux malware framework designed for cloud environments, with over 30 modular plugins and adaptive evasion techniques.

Read more
AI NewsCybersecurityMalware

SHADOW#REACTOR Malware Campaign Deploys Remcos RAT via Multi-Stage Attack

SHADOW#REACTOR is a new malware campaign leveraging VBS, PowerShell, and MSBuild to deliver Remcos RAT, achieving stealthy and persistent remote access.

Read more
AI NewsMalwareCybersecurity

Shadow#Reactor Uses Text Files to Deliver Remcos RAT

The Shadow#Reactor campaign delivers the Remcos RAT via text-based payloads, bypassing traditional security measures and leveraging legitimate system utilities.

Read more
AI NewsCybersecurityAI Security

Securing Agentic AI: From MCPs and Tool Access to Shadow API Key Sprawl

AI agents now automate software tasks, and a recent flaw (CVE-2025-6514) in an OAuth proxy impacted 500,000 developers, highlighting the risks of compromised Machine Control Protocols.

Read more
AI NewsCybersecurityThreat Intelligence

What Should We Learn From How Attackers Leveraged AI in 2025?

Attackers in 2025 scaled proven tactics like supply chain attacks, phishing, and store malware using automation and AI.

Read more
AI NewsCybersecurityAI Security

2 Separate Campaigns Probe Corporate LLMs for Secrets

Nearly 100,000 sessions targeted public LLM endpoints to map an expanding attack surface and potentially steal sensitive data.

Read more
AI NewsCybersecurityData Breach

BreachForums Breached, Exposing 324K Cybercriminals

A data breach of the BreachForums forum exposed the identities of 323,986 cybercriminals, potentially aiding law enforcement investigations.

Read more
AI NewsCybersecurityEndpoint Security

Hexnode XDR Launches, Unifying Endpoint Management and Security

Hexnode released Hexnode XDR, its extended detection and response platform, aiming to consolidate endpoint security and reduce tool sprawl.

Read more
AI NewsCybersecuritySoftware Supply Chain

n8n Supply Chain Attack Abuses Community Nodes to Steal OAuth Tokens

A supply chain attack on n8n exploited trusted workflow integrations, resulting in the theft of OAuth tokens from over 20,000 downloads.

Read more
AI NewsCybersecurityPrivacy

Navigating Privacy and Cybersecurity Laws in 2026 Will Prove Difficult

Compliance with evolving privacy and cybersecurity laws will remain a significant challenge for enterprises, as federal legislation is expected to be limited.

Read more