Cargo-stealing hackers have a new trick up their sleeve: using a third-party code-signing service makes their remote ...

CISA has expanded the KEV catalog to include seven vulnerabilities, including Windows flaws that lead to privilege escalation ...

MSBuild, a legitimate Microsoft build tool embedded in many Windows and developer environments, is drawing renewed scrutiny after fresh threat research showed how attackers are using it to run ...

April 2026 TIOBE Index shows Python still leading, C strengthening in second, and Rust sliding to #16, suggesting its climb ...

Attackers are exploiting trust in Adobe’s brand to deliver covert remote access, using a fake Acrobat Reader download page to install ConnectWise ScreenConnect through a fileless, memory-heavy attack ...

The US cybersecurity agency warns of observed attacks on an ancient Excel vulnerability. SharePoint is also being attacked.

Also on Monday, CISA added two Adobe bugs, a use-after-free vuln in Acrobat tracked as CVE-2020-9715, and a prototype pollution flaw tracked as CVE-2026-34621 that affected both Adobe Acrobat and ...

Chaim Mazal is Chief AI and Security Officer at Gigamon, responsible for global security, information technology, network operations, governance, risk, compliance, internal business systems, and ...

Malwarebytes recently uncovered a new malicious campaign targeting the Windows Update service. Focused on French-speaking users, the campaign uses layered obfuscation techniques to deliver multiple ...

CISA adds six exploited vulnerabilities, including Fortinet and Exchange flaws, requiring FCEB patching by April 27, 2026.

As usual, CISA only mentions in its warning which vulnerabilities attacks have been observed on. The oldest of the attacked ...

This week in cybersecurity: 338 new CVEs published including 11 critical severity. 9 vulnerabilities added to CISA KEV catalog. Plus major developments in AI security, supply chain attacks, and ...