The dark secret of enterprise security operations is that defenders have quietly institutionalized the practice...
Cybersecurity researchers have disclosed details of a new Linux backdoor named PamDOORa that’s being advertised...
Details have emerged about a new, unpatched local privilege escalation (LPE) vulnerability impacting the Linux...
Ivanti is warning that a new security flaw impacting Endpoint Manager Mobile (EPMM) has been...
Cybersecurity researchers have disclosed details of a new credential theft framework dubbed PCPJack that targets...
Palo Alto Networks has disclosed that threat actors may have attempted to unsuccessfully exploit a...
Bad week. Turns out the easiest way to get hacked in 2026 is still the...
Having an incident response retainer, or even a pre-approved external incident response firm, is not...
Cybersecurity researchers have discovered three packages on the Python Package Index (PyPI) repository that are...
A dozen critical security vulnerabilities have been disclosed in the vm2 Node.js library that could...
Cybersecurity researchers have exposed a new Mirai-derived botnet that self-identifies as xlabs_v1 and targets internet-exposed...
The Iranian state-sponsored hacking group known as MuddyWater (aka Mango Sandstorm, Seedworm, and Static Kitten)...
For nearly 20 years, we at The Hacker News have mostly told scary stories about...
Analysts recently confirmed what identity security teams have quietly feared: AI agents are being deployed...
Google has announced expanded Binary Transparency for Android as a way to safeguard the ecosystem...
Cybersecurity researchers have disclosed details of an intrusion that involved the use of a CloudZ...
Palo Alto Networks has released an advisory warning that a critical buffer overflow vulnerability in...
The Apache Software Foundation (ASF) has released security updates to address several security vulnerabilities in...
A newly identified supply chain attack targeting DAEMON Tools software has compromised its installers to...
A sophisticated China-nexus advanced persistent threat (APT) group has been attributed to attacks targeting government...
Every AI tool, workflow automation, and productivity app your employees connected to Google or Microsoft...
Threat actors are actively exploiting a critical security flaw impacting an open-source content management system...
While the software industry has made genuine strides over the past few decades to deliver...
The North Korea-aligned state-sponsored hacking group known as ScarCruft has compromised a video game platform...
A critical security vulnerability in Weaver (Fanwei) E-cology, an enterprise office automation (OA) and collaboration...
Microsoft has disclosed details of a large-scale credential theft campaign that has leveraged a combination...
An active phishing campaign has been observed targeting multiple vectors since at least April 2025,...
Progress Software has released updates to address two security flaws in MOVEit Automation, including a...
This week, the shadows moved faster than the patches. While most teams were still triaging...
Interested in getting in contact with us about our services? Perhaps you would like to know more about how we can help you specifically? Tell us more, and we will happily listen to and provide you with further information and a consultation.