Latest News

The advantages AI tools deliver in speed and efficiency are impossible for developers to resist. But the complexity and risk created by AI-generated code can’t be ignored.

Commvault provides indicators of compromise and mitigation guidance after a zero-day exploit targeting its Azure environment lands in CISA’s KEV catalog.

ESET has analyzed Spellbinder, the IPv6 SLAAC spoofing tool Chinese APT TheWizards uses to deploy its WizardNet backdoor.

In a world full of noise and promises, it’s those who consistently deliver behind the scenes who build the most respected and rewarding careers.

SonicWall has updated the advisories for two vulnerabilities to warn that they are being exploited in the wild.

Ascension is notifying over 100,000 people that their personal information was stolen in a data breach potentially linked to the Cleo hack.

SentinelOne has shared some information on the types of threat actors that have targeted the security firm recently.

The OpenEoX model proposes a shared data format that can be integrated into SBOMs, security advisories, and other ecosystem tools. 

Hundreds of companies are showcasing their products and services this week at the 2025 edition of the RSA Conference in San Francisco.

Meta has released new Llama protection tools to help the open source AI community build more secure applications.

France says the Russian state-sponsored group APT28 is responsible for targeting or compromising a dozen French entities.

Vulnerabilities in Apple’s AirPlay protocol could have allowed attackers to execute code remotely without user interaction.

Chrome 136 and Firefox 138 were released in the stable channel with patches for multiple high-severity vulnerabilities.

Before engaging in a full-scope exercise, it’s important to assess whether your program, people and processes are truly ready. 

Athena marks a major leap in SOC automation, enabling real-time detection, triage, and remediation with minimal human oversight.