Sysdig says JADEPUFFER used CVE-2025-3248 in Langflow to automate intrusion, credential theft, encryption, and data wipe.
Oracle expands its AI database security strategy with new data protection, patching, and cyber resilience tools to help ...
Security researchers at Cybernews discovered on June 12 what they describe as one of the largest credential databases ever left exposed online — a publicly accessible Elasticsearch cluster holding 24 ...
A coordinated campaign against government and financial targets across Latin America has been laid bare by the attackers' own mistake, after they left a staging server exposed online. New analysis ...
India's red-hot initial public offering market may look irresistible as foreign firms line up for listings, but the rush is not about raising funds to expand in a fast-growing market; it's about ...
An unknown threat actor has leveraged a large language model agent to conduct a swift, automated cyberattack, Sysdig reported after observing the incident on May 10, 2026. The attack began with the ...
AI tools are revolutionizing cyberattacks, lowering barriers for attackers and enabling sophisticated exploits, while cybersecurity leaders stress the need for enhanced defenses and collaboration to ...
Russian forces used a declared three-day ceasefire to redeploy units and expand drone activity, according to the Institute for the Study of War, underscoring continued hostilities despite political ...
All Linux kernels released after 2017 are vulnerable to critical privilege escalation bugs. A tiny 732-byte exploit grants root privileges across all major Linux distributions, with containerized ...
Hackers abuse Obsidian Plugins to deploy stealth malware on devices Fake VC scams on LinkedIn push victims to malicious Obsidian Plugins PHANTOMPULSE malware spreads via Obsidian Plugins and cloud ...
A researcher released a working ‘BlueHammer’ Windows zero-day exploit that could impact over 1 billion devices, granting SYSTEM-level access and leaving no patch yet. A disgruntled security researcher ...
A large-scale credential harvesting operation has been observed exploiting the React2Shell vulnerability as an initial infection vector to steal database credentials, SSH private keys, Amazon Web ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results