Software supply chain attacks are becoming increasingly sophisticated, with malicious actors disguising harmful code as legitimate libraries...
Security
In September 2024, NVIDIA released a security update addressing the critical vulnerability CVE-2024-0132 in its Container Toolkit....
The days when obtaining credentials using Mimikatz was trivially easy are rapidly becoming a thing of the...
Fortinet has addressed a critical vulnerability in its FortiSwitch devices that allowed remote attackers to change administrator...
March 2025 witnessed a renewed surge in cybercriminal activity, concentrated along two principal vectors: mass scanning of...
Small businesses in the United Kingdom lose approximately £3.4 billion ($4.35 billion) annually due to insufficient cybersecurity...
The Lovable platform—designed to generate web applications from textual prompts—has unexpectedly become a boon for aspiring cybercriminals....
Google’s security team has uncovered a critical vulnerability in the microcode of AMD processors, designated as EntrySign...
A new release of OpenSSL 3.5—one of the foundational libraries enabling secure communications over the internet—has officially...
A critical vulnerability in the CrushFTP product, actively exploited by malicious actors, has now been added to...
As part of its April Patch Tuesday update, Microsoft has addressed 134 vulnerabilities, including a critical zero-day...
Kaspersky Lab researchers have uncovered a malicious campaign in which attackers are distributing a cryptocurrency miner and...
The APT group known as ToddyCat has once again resurfaced, this time employing an unconventional approach to...
While experts were investigating the compromise of the widely used GitHub Action tj-actions/changed-files, it became apparent that...
A new strain of malicious software known as Neptune RAT is being distributed through popular platforms such...