8+ hour, 13+ min ago  (364+ words) Discovered by the open-source AI hacking agent Strix, the flaw allowed ordinary, low-privileged accounts to access cross-tenant data across the entire platform. The vulnerability stemmed from a complete lack of authorization boundaries and tenant isolation on the application's API. When…...

6+ hour, 6+ min ago  (671+ words) A cleverly disguised malware campaign is targeting developers and AI-driven systems by hiding inside what looks like a legitimate plugin for an open-source AI framework. Security researchers have uncovered a threat that takes full advantage of how modern AI agents…...

7+ hour, 53+ min ago  (612+ words) A dangerous new piece of malware called Remus has surfaced, quietly picking up where one of the most feared information stealers left off. Designed to steal browser passwords, cookies, and cryptocurrency wallets, Remus carries the DNA of Lumma Stealer, one…...

13+ hour, 54+ min ago  (241+ words) Ransomware targets aviation ecosystem, where one breach can disrupt airlines, airports, and global operations across interconnected systems....

17+ hour, 23+ min ago  (786+ words) A decade ago, AI-generated art felt futuristic and niche. Today, it has become a serious creative asset'used not only in galleries but also in marketing campaigns, brand visuals, product design, and social media content. While tools make it easier than…...

1+ day, 5+ hour ago  (563+ words) A dangerous piece of Android stalkerware called Cerberus Anti-theft has been hiding in plain sight on the Google Play Store since October 4, 2023. The app is available through a subscription priced at just 5 euros per month and is operated by LSDroid…...

1+ day, 3+ hour ago  (349+ words) Cisco has announced its intent to acquire Astrix Security Ltd. , an industry leader in Non-Human Identity (NHI) security. This strategic acquisition aims to protect enterprise environments from the expanding attack surface created by the rapid deployment of AI agents. The…...

1+ day, 7+ hour ago  (595+ words) A large-scale phishing campaign has been caught using fake "code of conduct" emails to trick employees into giving up their account credentials. The campaign ran between April 14 and 16, 2026, hitting more than 35, 000 users across over 13, 000 organizations in 26 countries. The United States…...

1+ day, 5+ hour ago  (568+ words) Schools, universities, and research institutions across the globe are facing a growing wave of cyber threats in 2026, with state-backed espionage groups, spear-phishing campaigns, and supply chain attacks placing the entire education sector on high alert. The most alarming shift this…...

1+ day, 8+ hour ago  (665+ words) Threat actors are increasingly turning to Amazon's own cloud email infrastructure to deliver phishing messages that look completely genuine, passing every standard security check along the way. Phishing has always been about deception. Attackers craft emails designed to look real,…...