Attackers performed an email takeover attack on a dormant maintainer account and published new node-ipc versions containing ...

A newly discovered zero-day vulnerability in Microsoft Exchange Server has experts declaring an emergency and urging CSOs to ...

The authentication bypass bug (CVE-2026-20182) in Catalyst SD-WAN gives remote attackers admin access, with no workaround ...

Security is having its "Waymo moment," moving past endless alerts to autonomous systems that investigate and fix threats ...

Triple extortion tactics and why cyber insurance is no longer a substitute for a mature incident response architecture.

Cyber Sessions with Joan Goodchild Cybersecurity is constantly evolving, and so are the leaders who shape it. Hosted by veteran journalist Joan Goodchild, Cyber Sessions brings candid conversations ...

Linux admins reeling from handling last month’s CopyFail and last week’s Dirty Frag kernel vulnerabilities have a new ...

Researchers say the campaign uses a browser-based JavaScript VM to hide credential theft and intercept MFA at scale.

A newly disclosed authentication bypass flaw (CVE-2026-44338) in PraisonAI drew near-instant probing, exposing risks from ...

Whether to spread cybersecurity knowledge, shape the tools of the future, or expand your professional repertoire, board ...

An LLM-powered system found 4 security bugs, including a critical one in the web server’s URL rewrite module. Researchers have found a critical vulnerability in the widely used Nginx web server that ...