Hackers are increasingly exploiting newly disclosed vulnerabilities in third-party software to gain initial access to cloud environments, with the window for attacks shrinking from weeks to just days.

Google report: AI is accelerating cloud cyberattacks, and one weak link stands out ...

Infosecurity spoke to several experts to explore what CISOs should do to contain the viral AI agent tool’s security vulnerabilities ...

AI-native platform adds enterprise SSO capabilities across 25+ identity providers to existing authentication infrastructure without migration. SAN FRANCISCO, CA, UNITED STATES, Ma ...

Explore the highlights of the Deriv AI Talent Sprint, where 2,557 participants built 167 AI-powered solutions for trading, ...

Storm-2561 spreads fake VPN installers via SEO poisoning and GitHub downloads, stealing enterprise VPN credentials with Hyrax malware.

Storm-2561 uses SEO poisoning to push fake VPN downloads that install signed trojans and steal VPN credentials. Active since 2025, Storm-2561 mimics trusted brands and abuses legitimate services. This ...

New attack waves from the 'PhantomRaven' supply-chain campaign are hitting the npm registry, with dozens of malicious packages that exfiltrate sensitive data from JavaScript developers.

Anna Behrend is a self-taught data journalist who has found in data-driven reporting and visualization a way to combine her academic background in science with her creative interests.

Your weekly cybersecurity roundup covering the latest threats, exploits, vulnerabilities, and security news you need to know.

Manufact, a Y Combinator startup, raised $6.3 million to build open-source tools and cloud infrastructure for the Model Context Protocol (MCP), the fast-growing standard backed by Anthropic and OpenAI ...