NomShub, a vulnerability chain in Cursor AI, allowed attackers to achieve persistent access to systems via indirect prompt ...

PowMix targets Czech workforce since Dec 2025 using jittered C2 and ZIP phishing, enabling stealthy remote access and ...

Hackers are exploiting a critical vulnerability in Marimo reactive Python notebook to deploy a new variant of NKAbuse malware ...

North Korea's Sapphire Sleet uses fake job offers and phony Zoom updates to deliver ClickFix attacks that steal credentials ...

CERT-UA links the AgingFly credential-stealing campaign to phishing, browser theft, and modular remote access.

April 16, 2026) - Daployi announced the official launch of its self-hosted edge device management platform, providing DevOps and operations teams with a centralized solution for managing distributed ...

OpenAI's Codex desktop app now controls your Mac, runs its own browser, and generates images in a new update released today.

Cyber attackers are abusing the low-code automation platform n8n to push malware and track targets through phishing emails, in a campaign that security researchers say gathered pace between October ...

Ukrainian municipal authorities and healthcare institutions have come under a coordinated wave of cyberattacks that security officials say was designed to steal sensitive information from web browsers ...

Unsafe defaults in MCP configurations open servers to possible remote code execution, according to security researchers who ...

The Microsoft Defender Security Research Team uncovered a sophisticated macOS intrusion campaign attributed to the North ...

This trojanized Slack installer looks normal, but quietly gives attackers an invisible desktop to access your accounts and ...