A new ransomware strain, The Gentlemen, uses SYSTEM scheduled tasks to encrypt drives with elevated privileges and spreads without human action.

A malicious npm package steals files from Claude AI's user directory. Learn how this threat operates and how to protect your data.

A malicious npm package, forge-jsxy, released 22 versions in 22 days, targeting crypto wallets and credentials across platforms.

A severe vulnerability dubbed 'BadHost' in the widely used Starlette package puts millions of AI agents at risk. Discover how this flaw impacts security.

India's CERT-In now requires organizations to patch critical internet-facing flaws within 12 hours, citing AI-driven attacks as a key concern.

A researcher discovered an unprotected API on the Trump Mobile website that leaked personal data of over 27,000 customers, raising serious privacy concerns.

Microsoft is phasing out SMS-based authentication for personal accounts, moving to passkeys for enhanced security. Learn what this means for users.

Anthropic enables partners to share Mythos cybersecurity findings, expanding threat intelligence collaboration and industry-wide defense.

A hacker group is poisoning open source code at an unprecedented scale, targeting GitHub and other platforms in software supply chain attacks.

Microsoft faces critical flaws in Exchange, Defender, and BitLocker. No patch for Exchange spoofing yet; Defender and BitLocker updates released.