The BacAlarm study introduces a novel approach to detecting Broken Access Control violations in APIs, enhancing security by addressing data scarcity a...
CISA issues an urgent advisory on the Shai-Hulud npm supply chain attack, compromising over 500 packages and urging immediate dependency reviews....
Starbucks confirms a data breach affecting 889 employees, exposing sensitive personal information through phishing attacks on internal HR accounts....
Hook Security's psychology-based training programs are revolutionizing security awareness by engaging employees and fostering lasting behavioral chang...
State-sponsored hackers compromised Notepad++'s update mechanism, delivering malicious payloads to targeted users in East Asia's telecom and financial...
Proofpoint introduces Adaptive Email DLP, utilizing behavioral AI to prevent accidental and intentional data loss via email, enhancing organizational ...
ShinyHunters claims a massive data breach affecting over 100 companies, including Salesforce, Snowflake, and Okta, exposing sensitive information....
Valimail's 2026 report reveals a 36-point DMARC Enforcement Gap amid rising AI-driven phishing attacks, urging organizations to implement full enforce...
A critical vulnerability in EC-CUBE allows attackers to bypass MFA, posing significant risks to e-commerce platforms. Prompt patching and adherence to...
CISA warns of active exploitation of Ivanti EPM vulnerability CVE-2026-1603, urging organizations to patch systems promptly to prevent credential thef...
A critical RCE vulnerability (CVE-2026-3136) in Google Cloud Build's GitHub Trigger Comment Control feature allows unauthorized code execution, posing...
Cl0p ransomware exploits Oracle EBS zero-day vulnerabilities, compromising sensitive data across numerous enterprises and highlighting the need for ro...