Ivanti misdiagnoses a remote code execution vulnerability and Mandiant reports that Chinese hackers are launching in-the-wild ...

The notorious cybercrime group Hunters International is dropping ransomware to focus on data theft and extortion.

Two CVEs now exist for an actively exploited CrushFTP vulnerability and much of the security industry is using the ‘wrong one ...

Cisco fixes two high-severity denial-of-service vulnerabilities in Meraki devices and Enterprise Chat and Email.

GitHub has announced new capabilities to help organizations and developers keep secrets in their code protected.

Less than two dozen cybersecurity merger and acquisition (M&A) deals were announced by security firms in March 2025.

An unauthenticated SQL injection vulnerability in Halo ITSM could have been exploited to read, modify, or insert data.

Google’s patches for Quick Share for Windows vulnerabilities leading to remote code execution were incomplete and could be easily bypassed.

DeepMind developed a framework that highlights areas where adversarial AI is weakest, allowing defenders to prioritize ...

Chrome 135 and Firefox 137 were released on Tuesday with fixes for several high-severity memory safety vulnerabilities.

DrayTek has shared some clarifications regarding the recent attacks causing router reboots, but some questions remain ...

North Korean IT workers expand operations in Europe, using fake identities, freelance platforms, and extortion to infiltrate ...