SmarterTools fixed critical SmarterMail flaws, including CVSS 9.3 unauthenticated RCE and NTLM relay bugs, urging users to ...

Cisco Talos links China-based UAT-8099 to IIS server attacks using BadIIS malware for regional SEO fraud, targeting Thailand ...

A U.S. jury convicted a former Google engineer of stealing over 2,000 AI trade secret documents to benefit China-linked companies, DOJ says.

Experts uncovered malicious Chrome extensions that replace affiliate links, exfiltrate data, and steal ChatGPT authentication tokens from users.

Over 175,000 publicly exposed Ollama AI servers across 130 countries, with many enabling tool calling that allows code ...

Google dismantled IPIDEA, a residential proxy network used by 550+ threat groups to hijack millions of consumer devices for ...

A fake VS Code extension posing as a Moltbot AI assistant installed ScreenConnect malware, giving attackers persistent remote ...

SolarWinds fixed six Web Help Desk vulnerabilities, including four critical flaws that allow unauthenticated remote code ...

Researchers disclosed two n8n vulnerabilities that let authenticated users bypass JavaScript and Python sandboxes to run ...

Google confirms nation-state and cybercrime groups exploit a patched WinRAR flaw to gain persistence and deploy malware via ...

Near-identical password reuse bypasses security policies, enabling attackers to exploit predictable patterns using breached ...

Study of 100+ energy OT sites reveals unpatched devices, flat networks, and hidden assets, with critical issues detected ...