A researcher has disclosed the details of the AI attack method he has named ‘Comment and Control’.
Hi, what are you looking for?
SecurityWeek
Hackers are exploiting CVE-2026-33032, a critical remote takeover vulnerability in the Nginx UI management tool.
Researchers found adware capable of killing cybersecurity products and pushing more dangerous payloads to infected systems.
Siemens, Schneider Electric, Aveva, Rockwell Automation, ABB, Phoenix Contact, Mitsubishi Electric, and Moxa patched vulnerabilities.
Experts say this is the second-largest Microsoft Patch Tuesday ever based on CVE count.
Critical ColdFusion vulnerabilities are the most at risk of being exploited in attacks, according to the software giant.
Basic-Fit has reported that hackers have stolen names, dates of birth, and even bank account details.
The company said in an SEC filing that an IDOR vulnerability affecting RCI Internet Services exposed contractor data.
The online travel platform has not said how many customers’ booking information was exposed, but said the issue has been contained.
The AI giant is taking action after determining that a macOS code signing certificate may have been compromised.
Law enforcement in the US, UK and Canada identified more than $45 million in cryptocurrency and froze $12 million.
Download links were replaced by a Russian-speaking threat actor to distribute a recently emerged malware named STX RAT.
The vulnerability is tracked as CVE-2026-34621 and Adobe has confirmed that it can be exploited for arbitrary code execution.
The critical vulnerabilities affect Chrome’s WebML component and they have been reported by anonymous researchers.
The security hole affected an EngageLab SDK and it was reported by Microsoft to the vendor one year ago.
RSAC researchers hacked Apple Intelligence using the Neural Exect method and Unicode manipulation.
Reputable researcher Haifei Li has come across what appears to be a PDF designed to exploit an unpatched vulnerability.
A hacker transferred more than 50 bitcoin from the Bitcoin ATM operator’s wallets after stealing credentials.
A total of seven vulnerabilities, most of which can be exploited for DoS attacks, have been patched in OpenSSL.
Signature Healthcare was forced to cancel some services, and pharmacies are unable to fill prescriptions due to the hacker attack.
Supply Chain Security
The hackers exfiltrated data from Salesforce instances of Klue customers, such as Huntress and Recorded Future.
Data Breaches
Vulnerabilities
Hacker Conversations
Artificial Intelligence
French President Emmanuel Macron urged the world’s wealthy democracies to work together on regulating advanced AI systems.
Malware & Threats
Malware & Threats
