Microsoft 365 users fall victim to one-in-a-million password spray attack
Microsoft users have been hit by a massive, automated password spray attack. Among those targeted by […]
Adobe premieres a second Patch Tuesday each month to deliver fixes faster
Adobe will now issue security patches for its products twice as often to deal with the […]
New CitrixBleed-like NetScaler flaw sees exploit attempts in the wild
Citrix NetScaler appliances have been a constant target for attackers in recent years, most recently through […]
Argo CD flaw shows why GitOps infrastructure should be treated as tier zero
A newly disclosed vulnerability in Argo CD is drawing attention to the security risks of GitOps […]
Sandbox bypass flaws in Cursor IDE highlight prompt injection as an RCE vector
Researchers have discovered two vulnerabilities in the widely used Cursor AI-enabled integrated development environment (IDE) that […]
Detection engineering: A programmatic approach to identifying cyber threats
Detection engineering, which was once a niche practice among mostly large companies, appears to have evolved […]
Malicious Chromium extension spoofs Perplexity AI to hijack browser searches
Google has removed a malicious browser extension masquerading as Perplexity AI after Microsoft researchers found it […]
Hackers exploit critical PTC Windchill PLM software flaw
Hackers are exploiting a critical vulnerability recently patched in PTC Windchill and FlexPLM, two product lifecycle […]
Malware authors subvert AI detection systems
Enterprises that have turned to AI in order to boost their security defenses may have to […]
Cyberattacks pose a ‘threat to life’ in Australia
Australia’s Security Intelligence Organization (ASIO) has uncovered an attack on a critical infrastructure operator’s network. State-sponsored […]