The infostealer was delivered via CVE-2026-48558, a critical authentication bypass vulnerability in SimpleHelp.
Sysdig says JADEPUFFER used CVE-2025-3248 in Langflow to automate intrusion, credential theft, encryption, and data wipe.
CISA added CVE-2026-45659 SharePoint Server RCE to KEV following confirmed exploitation, requiring U.S. agencies to patch by ...
Microsoft disrupted StegoAd, a malicious browser extension campaign affecting up to 2.6 million users. StegoAd used hidden payloads, delayed execution and steganography to evade browser security ...
SearchLeak and a three-CVE LiteLLM chain broke the same AI trust boundary in two weeks. A 5-check audit maps each gap to a ...
Technology can empower individuals with disabilities to thrive in the workplace across industries, including hospitality, in ...
This week, we’ll learn about a school where the entire network was like an open-book test … and the IT department got a zero.
Lyon, France; 02.07.26] TSplus introduces its redesigned TSplus License Portal, a modern solution for software license ...
Perimeters don’t look like they used to. Users connect from home, co‑working spaces, airports, and random cafés. Apps have ...
Cybercriminals are launching a massive global malware campaign by hijacking WhatsApp accounts to break into users’ computers.
The latest email threats: real Microsoft login phishing, device code scams with a kill switch, split-click attacks, and the ...
The results are in for our look at the unified endpoint management market heading into 2026. Every few months the line-up ...