Over 1,000 exposed ComfyUI instances exploited via unauthenticated code execution, enabling Monero mining and botnet expansion.

Cookie-gated PHP webshells use obfuscation, php-fpm execution, and cron-based persistence to evade detection in Linux hosting ...

Cookie-gated PHP web shells enable persistent Linux RCE via cron-based re-creation, reducing detection in routine traffic ...

The multi-stage campaign targeting South Korea uses weaponized Windows shortcuts and GitHub-based command and control to ...

A series of malicious LNK files targeting users in South Korea has been detected using a multi-stage attack chain that uses ...

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

Hackers breach Checkmarx developer tools to steal sensitive data, exposing risks in widely used software systems.

Stop guessing what’s taking space—PowerShell already knows.

During a recent penetration test, we came across an AI-powered desktop application that acted as a bridge between Claude ...

The campaign is stealing credentials from unpatched servers at scale, due to “neglect and efficiency,” says analyst, and the ...

We bring back our Miami Dolphins scouting mock draft today for the fifth edition.