Connect with us
The modern software supply chain is no longer confined to repositories, CI/CD pipelines, or cloud infrastructure. Security researchers are increasingly warning that developer workstations themselves have...
Phishing attacks have evolved beyond simple email scams. Today, they often bypass traditional filters, imitate legitimate services, and rely on human interaction to trigger compromise. The...
GitHub is investigating a significant security incident after attackers allegedly gained access to internal systems and exfiltrated thousands of private repositories following a compromise of an...
Webworm has been observed deploying newly discovered backdoors that exploit legitimate cloud and messaging platforms, including Discord and Microsoft Graph API, to conduct stealth command-and-control (C2)...
A Chinese national accused of ties to the hacking collective known as Silk Typhoon has been extradited from Italy to the United States, where he faces...
April 2026 — A critical SQL injection vulnerability in the widely used LiteLLM Python package has been actively exploited in the wild just 36 hours after...
Washington, D.C. | April 2026 — The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two security vulnerabilities affecting ConnectWise ScreenConnect and Microsoft Windows to...
April 2026 — Security researchers have disclosed a high-severity remote code execution (RCE) vulnerability affecting GitHub platforms that could allow an attacker with repository access to...
April 2026 — A Brazil-linked cybercrime group known as LofyGang has resurfaced after a three-year hiatus, launching a new malware campaign aimed at Minecraft players using...
April 2026 — While most cybersecurity programs focus heavily on identity, endpoints, and network access, a growing body of research suggests a critical blind spot is...
