SonicWall says attackers are exploiting two SMA 1000 zero-days, including a code injection flaw that could enable ...
Cursor AI code editor faces unpatched vulnerability enabling code execution, adding to a string of critical RCE flaws ...
The modular Golang backdoor combines remote administration, multiple disk-wiping logics, and a Crucio-derived ransomware ...
Fortinet, Ivanti, and ServiceNow have released patches for 15 vulnerabilities, including a critical remote code execution bug ...
Researchers at the AI Now Institute developed a proof-of-concept exploit showing common AI tools used for security could ...
A newly-disclosed exploit in Claude Code’s ‘auto-mode’ leaves developers facing remote code execution (RCE) vulnerabilities ...
One of the Russian government’s most elite hacking groups has adopted an attack, known as Clickfix, to compromise devices ...
A newly identified destructive Windows backdoor combines ransomware-like encryption with multiple data-wiping features, ...
Stolen and leaked credentials lead to Node.js packages from AsyncAPI and Jscrambler Code Integrity being poisoned with ...
The GigaWiper backdoor combines several malware families and can sabotage systems using a wiper, encryption, and wiping ...
Five malicious versions of AsyncAPI packages were published to the Node Package Manager (npm) in a supply-chain attack that ...
Ford offers Start Inhibit, a connected anti-theft feature that lets authorized users of eligible vehicles use the Ford app to ...