Malicious Sicoob.Sdk stole PFX certificates and client IDs via NuGet downloads, enabling API impersonation and payment abuse risks.
AI-built corporate apps lacked access controls across 380,000 public assets, exposing sensitive data and increasing enterprise risk.
A critical security vulnerability has been disclosed in Gogs, a popular open-source self-hosted Git service, that allows an ...
FortiClient EMS flaw CVE-2026-35616 enabled malware delivery via fake updates, risking credential theft across endpoints.
Microsoft urged coordinated disclosure after three Windows zero-days were actively exploited, increasing customer security ...
ThreatsDay Bulletin: Claude Security Plugin, Azure Priv-Esc, Kali365 MFA Bypass, FIFA Scams +15 More
Massive regional C2 footprint More than 1.3K C2 Servers Discovered in the Middle East Hunt.io said it identified more than ...
More than 6% of enterprise AI conversations contain sensitive data, with DeepSeek reaching 12.63%, increasing governance ...
A new campaign orchestrated by a previously undocumented threat actor has targeted cryptocurrency organizations with an aim ...
Latin America and Europe become the target of two banking trojan campaigns that are designed to infect Windows and Android ...
Malicious npm package downloaded 676 times stole Claude AI files via GitHub uploads, increasing AI-driven malware risks.
ANY.RUN helps SOCs detect threats earlier with real-time IOC feeds and AI reporting, reducing ransomware and downtime risks.
GlassWorm poisoned 300 GitHub repositories since 2025, enabling supply chain attacks against developers and organizations.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results