The flaw, tagged as CVE-2025-30406, was added to CISA’s Known Exploited Vulnerabilities (KEV) catalog in early April.

Trend Micro researchers flagging problems with Nvidia’s patch for a critical, code execution vulnerability in the Nvidia ...

A threat actor claims to offer a zero-day exploit for an unauthenticated remote code execution vulnerability in Fortinet ...

Organizations in the healthcare and pharmaceutical sectors have been targeted with ResolverRAT, a new malware family with advanced capabilities.

AI-generated code tools are creating fake package names—opening the door to ‘slopsquatting’ attacks and pose a growing supply ...

Threat actors have been publishing malicious NPM packages to steal the information and funds of PayPal and cryptocurrency wallet users.

The CVE-2025-22457 has already been exploited by a China-nexus hacking gang notorious for breaking into edge network devices.

Morocco‘s social security agency said troves of data were stolen from its systems in a cyberattack that resulted in data being leaked.

Interview with Bryson Bort, CEO/Founder of SCYTHE and co-founder of ICS Village, a non-profit building awareness for critical ...

A vulnerability in the OttoKit WordPress plugin with over 100,000 active installations has been exploited in the wild.

Scattered Spider still active despite arrests, hacker known as EncryptHub unmasked, Rydox admins extradited to US.

In a secret meeting between Chinese and US officials, the former confirmed conducting cyberattacks on US infrastructure.