Agent ID Administrator enabled service principal takeover before April 9, 2026 patch, exposing privilege escalation risk in ...
A Chinese national accused of being a member of the Silk Typhoon hacking group has been extradited to the U.S. from Italy. Xu ...
CVE-2026-32202 actively exploited after April 27 advisory fix, exposing NTLMv2 hashes via zero-click SMB authentication.
Mythos Changed the Math on Vulnerability Discovery. Most Teams Aren't Ready for the Remediation Side
Claude Mythos’ April 7 launch accelerates vulnerability discovery, but limited access and rising false positives strain ...
Checkmarx data surfaced after March 23, 2026 supply chain attack, prompting repository lockdown and investigation, raising ...
This week’s ThreatsDay covers supply chain attacks, fake help desks, wiper malware, AI prompt traps, RMM abuse, phishing kits ...
PhantomCore exploited three TrueConf flaws since September 2025, enabling remote access and lateral movement across Russian ...
VS Code extensions since Dec 21, 2025 fuel GlassWorm v2, installing cross-IDE malware and stealing credentials.
Fake CAPTCHA IRSF scam sends up to 60 SMS messages since June 2020, exploiting 17 countries and costing victims $30 per ...
User-initiated shell ran via HTTPS CAPTCHA at 2:14 p.m. Tuesday, exposing browser blind spot and breaking session attribution ...
CISA adds 4 exploited CVEs including CVSS 9.9 SimpleHelp flaw, mandating FCEB mitigation by May 8, 2026 to reduce ransomware ...
AI agents inherit hidden authority from fragmented identities, creating a delegation gap that demands real-time governance.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results