Latest News

Threat actors rely on malicious GitHub repositories to infect LastPass’s macOS users with the Atomic infostealer.

Threat actors likely spoofed the official government website for personal information theft and monetary fraudulent activity.

Tracked as CVE-2025-10035 (CVSS score of 10), the critical deserialization vulnerability could be exploited for command injection.

The cyberattack affected software of Collins Aerospace, whose systems help passengers check in, print boarding passes and bag tags, and dispatch their luggage.

The disruptions to airport electronic systems meant that only manual check-in and boarding was possible.

Noteworthy stories that might have slipped under the radar: Eve Security seed funding, Claroty report, patches from WatchGuard and Nokia.

Turla malware was deployed in February on select systems that Gamaredon had compromised in January.

Hackers chained two Ivanti EPMM vulnerabilities to collect system information, dump credentials, and execute malware.

The AI agent was able to solve different types of CAPTCHAs and adjusted its cursor movements to better mimic human behavior.

Netskope has debuted on Nasdaq and its shares soared more than 18%, bringing the company’s value to $8.6 billion. 

Thalha Jubair and Owen Flowers were charged in the UK and the US with hacking critical infrastructure organizations.

Novakon HMIs are affected by remote code execution and information exposure vulnerabilities. 

OpenAI has fixed this zero-click attack method called ShadowLeak by researchers.

Videos from SecurityWeek's Attack Surface Management Virtual Summit are now available to watch on demand.

The high-end jewelry retailer is informing customers in the United States and Canada that hackers accessed information related to gift cards.