Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.

Straiker has raised $64 million in Series A funding to help enterprises identify and secure AI agents in their environments.

ChatGPT maker OpenAI said Friday it is restricting the release of its new artificial intelligence model at the request of ...

The US offers up to $10 million in rewards for information on UNC5792 and UNC4221, two cyber groups linked to Russian ...

DirtyClone, tracked as CVE-2026-43503, is a Linux kernel vulnerability that allows any local user to gain root privileges.

NAIC has confirmed it was targeted in the recent hacking campaign that exploited an Oracle PeopleSoft zero-day vulnerability.

Threat actors are abusing the Uni-App development framework to build investment scam templates powering over 200,000 sites.

Woodgnat, an IAB for Qilin, Interlock, Rhysida, Akira, 8Base, and Black Basta ransomware, is using Mistic RAT in new attacks.

The decentralized prediction market said hackers targeted some of its users through a compromise of a third-party vendor.

An eight-year-old Samsung KNOX vulnerability impacted millions of Android-powered Galaxy devices from the S9 to S25.

Amazon Q vulnerability could allow attackers to steal developer cloud credentials by luring them into opening a booby-trapped ...

The Linux Foundation introduces Akrites, a joint effort to report, fix, and disclose vulnerabilities in open source software.