CISA adds an actively exploited SolarWinds Web Help Desk RCE flaw to KEV, ordering federal agencies to patch by February 2026 ...

Leaked non-human identities like API keys and tokens are becoming a major breach driver in cloud environments. Flare shows ...

A high-severity OpenClaw flaw allows one-click remote code execution via token theft and WebSocket hijacking; patched in ...

As AI shifts from helpful copilot to independent operator, enterprises are discovering that identity—not networks or endpoints—is where control is won or lost.

Too slow react-ion time Baddies are exploiting a critical bug in React Native's Metro development server to deliver malware ...

Attackers exploited Hugging Face’s trusted infrastructure to spread an Android RAT, using fake security apps and thousands of ...

If deployed correctly, AI can be a helpful tool in protecting against cyber threats – freeing up cybersecurity staff to focus on the bigger picture ...

RedLine, Lumma, and Vidar adapted in 48 hours. Clawdbot's localhost trust model collapsed, plaintext memory files sit exposed ...

From Clawdbot to OpenClaw: This viral AI agent is evolving fast - and it's nightmare fuel for security pros ...

APT28's attacks use specially crafted Microsoft Rich Text Format (RTF) documents to kick off a multistage infection chain to deliver malicious payloads.

The digital town square has grown quiet for humans, replaced by the frenetic, invisible humming of a million machines. In the opening weeks of 2026, ...

AI-powered penetration testing is an advanced approach to security testing that uses artificial intelligence, machine learning, and autonomous agents to simulate real-world cyberattacks, identify ...