CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.

Researchers uncover SSHStalker, an IRC botnet exploiting legacy Linux flaws and SSH servers to build persistent covert access.

Today is Microsoft' 2026 Patch Tuesday with security updates for 58 flaws, including 6 actively exploited and three publicly ...

A decade-old critical security vulnerability affects over 800,000 internet-exposed telnet servers, with reports of active ...

The threat actor has been compromising cloud environments at scale with automated worm-like attacks on exposed services and ...

Discover the top 10 AI red teaming tools of 2026 and learn how they help safeguard your AI systems from vulnerabilities.

Worm-driven TeamPCP campaign exploits Docker, Kubernetes, Redis, Ray, and React2Shell to build proxy infrastructure for data theft and ransomware.

SmarterTools confirmed last week that the Warlock ransomware gang breached its network after compromising an email system, but did not impact business applications or account data.

Open source packages published on the npm and PyPI repositories were laced with code that stole wallet credentials from dYdX ...

A new report out today from security rating firm SecurityScorecard Inc. warns that widespread vulnerabilities in OpenClaw deployments have left tens of thousands of internet-facing instances exposed ...

Iran VPN search interest spiked following the 2026 blackout. Find out how people are fighting for the right to communicate under oppression.