When Akamai announced its LayerX acquisition, the company joined a growing list of vendors adding secure enterprise browsers to their product portfolios.

Ransomware and vendor breaches persist. The "2026 Data Breach Investigations Report" (DBIR) highlights how evolving social engineering tactics make the sector […]

The advanced persistent threat group also relied on SOCKS proxies like SoftEther VPN, tunneling tools that act as a middleman between victim and attacker.

A security researcher discovered the API keys can still be used for up to 23 minutes after deletion, even though the cloud provider claims deletion is […]

AI agent projects are proliferating throughout the enterprise, and those AI agent identities require management, security, and governance. New Omdia research […]

"Showboat" doesn't show off, but clearly it doesn't need to, as it's long helped China spy on small market communications providers.

The Underminr domain-fronting attack allows threat actors to modify Web requests and leverage trusted websites to cloak malicious activity.

There is nothing cybersecurity professionals are more excited about, and nothing they fear more, than AI.

GitHub confirmed a data breach this week involving the theft of thousands of developer code repositories. One threat actor — TeamPCP — took credit.

The disguised apps use WebView automation, JavaScript injection, and OTP interception to avoid detection and complete fraudulent subscriptions.

In spite of state laws meant to improve cyber hygiene, an analysis of incidents shows issues persist and visibility falls short.

An unauthenticated attacker can exploit the command injection vulnerability to gain remote access to robotic systems, causing significant disruption to the […]

Finding ways to document both component and execution attributes for AI bills of materials (AI BOMs).