Jones Day hacked, Internet Bug Bounty program paused due to AI, new Mac stealer malware, Windows zero-day, China supercomputer hack.

Google’s Device Bound Session Credentials in Chrome protect against session cookie theft by binding authentication to the ...

Google announced this week the first stable version of Chrome 147, which includes patches for 60 vulnerabilities, including ...

MITRE has published the Fight Fraud Framework (MITRE F3), a behavior-based model of tactics and techniques employed by fraudsters.

A threat actor started exploiting CVE-2026-39987, an unauthenticated RCE vulnerability in Marimo, nine hours after public disclosure.

Multiple vulnerabilities in the Orthanc DICOM server could be exploited to cause crashes, leak information, or execute arbitrary code.

Microsoft discovered that a third-party Android SDK widely used in cryptocurrency wallet applications is affected by a severe vulnerability.

Palo Alto Networks and SonicWall have released patches for multiple vulnerabilities, including high-severity flaws.

Eurail says hackers stole the names and passport numbers of 300,000 people from its network in a December 2025 cyberattack.

“RSAC estimates that there were at least 200 million Apple Intelligence-capable devices in consumers’ hands as of December ...

A threat actor tracked as UNC6783 and targeting BPOs for corporate data theft is likely linked to the ‘Mr. Raccoon’ hacker.

The Google API keys, all using the ‘AIza…’ format, can be abused for retroactive privilege escalation: a key that a developer ...