Vulnerabilities

Threat actors are reusing Tycoon 2FA tools across other phishing kits following the platform’s disruption. The post Tycoon 2FA Los…

In 2024, compromised service accounts and forgotten API keys were behind 68% of cloud breaches. Not phishing. Not weak passwords. …

Grinex, a Kyrgyzstan-incorporated cryptocurrency exchange sanctioned by the U.K. and the U.S. last year, said it's suspending oper…

Threat actors are exploiting security flaws in TBK DVR and end‑of‑life (EoL) TP-Link Wi-Fi routers to deploy Mirai-botnet variants…

Industry and ad hoc coalitions appear poised to help fill the gap created by NIST's decision to cut back on CVE data enrichment.…

In embracing device code phishing, attackers trick victims into handing over account access by using a service's legitimate new-de…

A White House official said the administration is engaging with advanced AI labs about their models and the security of software. …

CoChat is fundamentally an AI collaboration platform designed for teamwork and to bring visibility and governance into enterprise …

AI's danger isn't that it's creating new bugs, it's that it's amplifying old ones.…

Huntress is warning that threat actors are exploiting three recently disclosed security flaws in Microsoft Defender to gain elevat…

The Maritime Transportation Security Act (MTSA) requires plans to protect OT systems, audits by independent third parties, and a h…

Other noteworthy stories that might have slipped under the radar: ShinyHunters targets Rockstar Games, ShowDoc vulnerability explo…