GigaWiper is a destructive backdoor that combines multiple wiping and ransomware-like capabilities into a single operational ...
In the brief history of AI security, the prompt injection has quickly become the top threat. Large language models are ...
A new report reveals that AI agents can autonomously execute ransomware attacks, evidenced by the case of JADEPUFFER, which ...
Sysdig says JADEPUFFER used CVE-2025-3248 in Langflow to automate intrusion, credential theft, encryption, and data wipe.
A researcher found that using Anthropic’s Claude Opus 4.7, he could break into the website of Front Gate—used by every ...
Google-owned Mandiant published a complete forensic reconstruction today of a sophisticated intrusion campaign that used a single maliciously crafted CSV file to achieve root-level control over Cisco ...
Google's Mandiant threat intelligence team reported this week that attackers began exploiting a critical flaw in Cisco Catalyst SD-WAN as early as March, roughly two months before Cisco disclosed the ...
EXCLUSIVE For the past 90 days, Microsoft has been quietly patching a firmware flaw in Surface devices that allowed the hardware to be bricked with a single packet, though only for those who have ...
Attackers have begun backdooring internet-exposed Ivanti Sentry appliances, the nonprofit security watchdog Shadowserver confirmed on June 11, 2026 — less than 48 hours after patches and a public ...
GitHub has announced what it said are "breaking changes" coming to npm version 12, one of which turns off install scripts by default to combat software supply chain threats. The changes aim to combat ...