How attackers hit 700 organizations through CX platforms your SOC already approved

CX platforms process billions of interactions yearly — but no security tool monitors what their AI engines ingest. Six blind ...
Opinion

Opinion: Moltbook’s ‘vibe-coded’ breach is the future of security failures

Earlier this month, the now viral social network Moltbook exposed 1.5 million API authentication tokens and 35,000 email addresses within days of launch. The cause: a single misconfigured database ...

Flaw in Grandstream VoIP phones allows stealthy eavesdropping

A critical vulnerability in Grandstream GXP1600 series VoIP phones allows a remote, unauthenticated attacker to gain root privileges and silently eavesdrop on communications.

Half of all cyberattacks start in your browser: 10 essential tips for staying safe

New research finds that 48% of cyberattacks involve your web browser - and AI is only making matters worse. Follow these best practices to protect yourself.
Microsoft

Running OpenClaw safely: identity, isolation, and runtime risk

Self-hosted agents execute code with durable credentials and process untrusted input. This creates dual supply chain risk, ...
Infosecurity Magazine

Flaws in Popular Software Development App Extensions Allow Data Exfiltration

Four serious new vulnerabilities affect Microsoft Visual Studio Code, Cursor and Windsurf extensions, three of which remain ...
Cloud Security Alliance

Why Zero Trust Needs to Start at the Session Layer

Explains why Zero Trust must start at the session layer, via NHP, to hide endpoints and reduce AI-driven attack surfaces.