Active React2Shell exploitation uses malicious NGINX configurations to hijack web traffic, targeting Baota panels, Asian TLDs ...

The AI agent platform has added a Google-owned threat intelligence service to the ClawHub marketplace, following the ...

API keys and credentials. Agents operate inside authorized permissions where firewalls can't see. Traditional security models ...

Meanwhile, IP-stealing 'distillation attacks' on the rise A Chinese government hacking group that has been sanctioned for targeting America's critical infrastructure used Google's AI chatbot, Gemini, ...

Four security vulnerabilities have been found in the open source Ingress NGINX traffic controller that is extensively used by organizations in Kubernetes deployments. They can only be fixed by ...

Worm-driven TeamPCP campaign exploits Docker, Kubernetes, Redis, Ray, and React2Shell to build proxy infrastructure for data theft and ransomware.

The popular open source AI assistant (aka ClawdBot, MoltBot) has taken off, raising security concerns over its privileged ...

About 175,000 private servers are reportedly exposed to the public internet, giving hackers the opportunity to carry out ...

From technical compromise to AI-driven attacks, cyber criminals increasingly see software developers as prime targets, creating systemic risks CISOs must address.

Hackers are targeting global shipping technology to steal cargo worth millions. New cybersecurity threats expose supply chain vulnerabilities worldwide.

As infrastructure hardens under new resilience rules, attackers are pivoting to the one asset that can’t be patched: people ...

Two high-severity vulnerabilities in Chainlit, a popular open-source framework for building conversational AI applications, allow reading any file on the server and leaking sensitive information. The ...