CVE-2026-0257 is being actively exploited on PAN-OS devices since May 17, 2026, enabling unauthorized VPN access and network exposure.

More than 6% of enterprise AI conversations contain sensitive data, with DeepSeek reaching 12.63%, increasing governance ...

Microsoft urged coordinated disclosure after three Windows zero-days were actively exploited, increasing customer security ...

FortiClient EMS flaw CVE-2026-35616 enabled malware delivery via fake updates, risking credential theft across endpoints.

Massive regional C2 footprint More than 1.3K C2 Servers Discovered in the Middle East Hunt.io said it identified more than ...

A critical security vulnerability has been disclosed in Gogs, a popular open-source self-hosted Git service, that allows an ...

Malicious Sicoob.Sdk stole PFX certificates and client IDs via NuGet downloads, enabling API impersonation and payment abuse risks.

GREYVIBE targeted Ukraine since August 2025 using AI-assisted malware campaigns, increasing espionage capabilities and attribution challenges.

GlassWorm poisoned 300 GitHub repositories since 2025, enabling supply chain attacks against developers and organizations.

AI-built corporate apps lacked access controls across 380,000 public assets, exposing sensitive data and increasing enterprise risk.

Latin America and Europe become the target of two banking trojan campaigns that are designed to infect Windows and Android ...

Gitea flaw CVE-2026-27771 exposed private container images across 30,000 deployments, risking unauthorized access worldwide.