SecurityWeek

RevEng.ai has raised $4.15 million in seed funding for an AI platform that automatically detects malicious code and vulnerabilities in software.

China-linked Silver Fox hacking group is targeting Chinese users with fake installers carrying a RAT and a rootkit.

The Citrix NetScaler vulnerability tracked as CitrixBleed 2 and CVE-2025–5777 may be exploited in the wild for initial access.

A vulnerability in the extension publishing mechanism of Open VSX could have allowed attackers to tamper with any repository.

Hackers are abusing the Microsoft 365 Direct Send feature to deliver phishing emails that bypass email security controls.

The proposal seeks to ban all use of the technology in the U.S. government, with exceptions for use in research and counterterrorism efforts.

Nicholas Michael Kloster has pleaded guilty to computer hacking after targeting at least two organizations.

Bonfy.AI has emerged from stealth mode to help organizations prevent cybersecurity, privacy and compliance risks.

CISA is urging federal agencies to patch a recent AMI BMC vulnerability and a half-a-decade-old bug in FortiOS by July 17.

The personal information of 167,000 individuals was compromised in an October 2024 data breach at Central Kentucky Radiology.

Two critical vulnerabilities in Cisco ISE could allow remote attackers to execute arbitrary code with root privileges.

25-year-old Kai West, believed to be the hacker IntelBroker, was arrested in France and charged by the United States.

Citrix has released patches for a critical vulnerability in NetScaler ADC and NetScaler Gateway exploited as a zero-day.

New research suggests more than 10,000 SaaS apps could remain vulnerable to a nOAuth variant despite the basic issue being disclosed in June 2023.

With end of support scheduled for October 2025, Windows 10 users will be able to continue receiving important security updates. 

G Data has observed a surge in malware infections originating from ConnectWise applications with modified certificate tables.

SonicWall says a modified version of the legitimate NetExtender application contains information-stealing code.

Rapid7 has found several serious vulnerabilities affecting over 700 printer models from Brother and other vendors. 

Strong security doesn’t just rely on tools—it starts with trust, clarity, and sincerity from the top down.

A high-severity vulnerability in GitHub Enterprise Server could have allowed remote attackers to execute arbitrary code.