OpenAI has fixed this zero-click attack method called ShadowLeak by researchers.
Hi, what are you looking for?
SecurityWeek
The high-end jewelry retailer is informing customers in the United States and Canada that hackers accessed information related to gift cards.
The BianLian ransomware group took credit for the cyberattack on the healthcare organization in January 2025.
Venture capital firm Insight Partners says the data breach disclosed in February 2025 impacts over 12,000 people.
Irregular is testing the cybersecurity capabilities of AI models, including Anthropic’s Claude and OpenAI’s ChatGPT.
RegScale has raised a total of more than $50 million, with the latest investment being used to enhance its platform and expand.
NetRise has identified 20 device models from six vendors that are still vulnerable to Pixie Dust attacks.
Microsoft and Cloudflare have teamed up to take down the infrastructure used by RaccoonO365.
Vega provides security analytics and operations solutions designed to help organizations detect and respond to threats.
The notorious cybercrime groups claim they are going dark, but experts believe they will continue their activities.
Researchers show how a crafted calendar invite can trigger ChatGPT to exfiltrate sensitive emails.
A former FinWise employee gained access to American First Finance customer information.
Silent Push, which provides Indicators of Future Attack, has raised a total of $32 million in funding.
F5 is buying CalypsoAI for its adaptive AI inference security solutions, which will be integrated into its Application Delivery and Security Platform.
KioSoft was notified about a serious NFC card vulnerability in 2023 and only recently claimed to have released a patch.
LNER said the security incident involved a third-party supplier and resulted in contact information and other data being compromised.
The tools manufacturer was targeted in a ransomware attack claimed by the Cactus group.
Oligo Security has shared details on an Apple CarPlay attack that hackers may be able to launch without any interaction.
After announcing that the cyberattack-caused disruption to factories would continue, Jaguar Land Rover is now confirming a data breach.
Geordie has developed a platform that gives enterprises deep visibility into AI agents and what they are doing.
Vulnerabilities
The vulnerability is tracked as CVE-2026-20245 and it can allow arbitrary command execution as root, but no patch yet.
Vulnerabilities
Malware & Threats
Vulnerabilities
Artificial Intelligence
Supply Chain Security
CVE Lite CLI is a free, open-source command line tool that scans your projects in seconds and tells you exactly which included packages contain...
Artificial Intelligence
Vulnerabilities
