Threat actors are abusing the Uni-App development framework to build investment scam templates powering over 200,000 sites.

The decentralized prediction market said hackers targeted some of its users through a compromise of a third-party vendor.

Roughly two dozen Klue customers have come forward and confirmed that their Salesforce instances were compromised in a supply ...

The Linux Foundation introduces Akrites, a joint effort to report, fix, and disclose vulnerabilities in open source software.

Hackers exploited a vulnerability in PTC Windchill in the wild, marking the first confirmed real-world abuse of the PLM ...

Amazon Q vulnerability could allow attackers to steal developer cloud credentials by luring them into opening a booby-trapped ...

The next generation of the Model Context Protocol (MCP) enables enterprise-scale AI deployments but shifts critical security ...

Russia-linked APT Turla has been using the StockStay backdoor against government and military organizations in Ukraine.

Nebulock has raised $25 million in Series A funding for its AI threat hunting and proactive detection platform.

Philip Martin has joined Uber as Chief Information Security Officer (CISO).

California Water Service (Cal Water) found no evidence of OT activity after Iranian hackers said they could have disrupted ...

PixelSmash is a vulnerability in the FFmpeg framework that can be exploited via crafted media files for remote code execution ...