Researchers say the Iran-linked threat actor used an adaptable modular malware framework and compromised IT service providers ...
LevelBlue says QuimaRAT uses encrypted plugins, OS-specific persistence, and JNA libraries to control Windows, Linux, and ...
Researchers have discovered two vulnerabilities in the widely used Cursor AI-enabled integrated development environment (IDE) ...
Proofpoint says UNK_MassTraction exploited patched Roundcube flaws to target U.S. and Canadian university mail servers.
The DuneSlide vulnerabilities enable zero-click prompt injection attacks that escape Cursor's sandbox and execute arbitrary code on the underlying operating system.
Lazarus Group concealed a four-module remote access toolkit inside six fake npm Rollup polyfill packages that fired at import ...
Threat actors are abusing Microsoft Teams voice calls by impersonating corporate IT support staff to trick employees into ...
AI isn’t making managers obsolete. It’s making one specific type of manager obsolete: the one whose entire value was ...
EXCLUSIVE Pentera Labs’ red teamers compromised a developer’s AI agent via his Claude Desktop app and ultimately turned that access into full remote code execution on the devs ...
Autonomous AI agents are no longer theoretical cyber risks as new research shows a large language model executing an end-to-end ransomware campaign, highlighting the urgency of patching known ...
The group compromised at least 10 regional organizations, including two state-owned entities, and deployed a new backdoor.
Several products from Ubiquiti's UniFi ecosystem are affected by partly critical vulnerabilities. Admins should promptly ...