Iranian APT Nimbus Manticore has updated tactics and tools in recent campaigns targeting aviation and software companies.

Data allegedly stolen from 7-Eleven and leaked by ShinyHunters contains the personal information of just over 185,000 people.

DockSec correlates findings from container security scanners and uses AI to generate remediation guidance and exact Dockerfile fixes.

Hardcoded machineKey values in a configuration file enabled ViewState deserialization attacks leading to remote code ...

SecurityWeek’s Threat Detection & Incident Response Summit took place on May 20th and is now available on demand for a ...

Notable integrations include CrowdStrike, Palo Alto Networks, Microsoft, Okta, Zscaler, Netskope, Cloudflare, Fortinet, and ...

Sites belonging to major universities such as Harvard and Oxford, as well as DuckDuckGo, have been compromised in the attack.

Threat actors stole files containing names and protected health information from the healthcare organization’s systems.

Anthropic says its Claude Mythos model discovered thousands of severe vulnerabilities across more than 1,000 OSS projects.

DocketWise says the personal, financial, and medical information of 143,000 people was accessed in an October 2025 data breach.

Hackers rewrote all Git tags across four Laravel-Lang packages, poisoning over 700 historical versions with backdoors.

The Megalodon supply chain attack poisoned over 5,500 GitHub repositories via automated commits injecting GitHub Actions workflows.