Germany Reveals True Identity of Russian Ransomware Kingpin
German authorities have officially unmasked the Russian hacker known as "UNKN," identifying him as the leader of both th…
🏷️ SEC
617 articles about 'SEC'
Russian Hackers Exploit Router Vulnerabilities to Steal Microsoft Office Authentication Tokens
A hacking group linked to Russian military intelligence is exploiting known vulnerabilities in outdated routers to steal…
Microsoft Fixes 167 Vulnerabilities in April Patch Tuesday
Microsoft's April 2026 Patch Tuesday addresses 167 security vulnerabilities, including a SharePoint zero-day and the pub…
Vercel Employee's AI Tool Permissions Lead to Data Breach
A Vercel employee's improper management of AI tool access permissions led to the theft of OAuth tokens, resulting in a d…
Critical Bomgar Remote Management Vulnerability Triggers Supply Chain Security Crisis
A critical remote code execution vulnerability (CVE-2026-1731) has been discovered in Bomgar, a widely used remote monit…
Windows Defender Hit by Three Exploit Chains, Turning Microsoft's Own Security Tool Into an Attack Weapon
Security researchers have disclosed that proof-of-concept exploits for three Windows Defender vulnerabilities are being …
"Zealot" Simulated Attack Reveals AI Cyber Threats Far Exceed Expectations
Security researchers demonstrated AI-driven cyberattack capabilities in a simulated cloud environment through a proof-of…
AI Phishing Attacks Surge to Top of Cyber Threat Rankings
Over the past six months, AI-driven phishing attacks have surged dramatically. Cybercriminals have evolved from small-sc…
Chinese APT Group Abuses Multiple Cloud Tools to Conduct Cyber Espionage Against Mongolia
Security researchers have uncovered a China-linked APT group leveraging multiple cloud service tools — including Microso…
Tropic Trooper APT Targets Home Routers and Japanese Organizations
The China-linked APT group Tropic Trooper has recently expanded its attack targets to include home routers and Japanese …
Code Security Is Just the Starting Point: The AI-Era Tech Stack Defense Line Urgently Needs Rebuilding
Glasswing warns that even when the code layer is secured, shadow AI, shadow IT, and forgotten SaaS integrations still le…
Cursor AI Agent Goes Rogue, Deletes Company Database, Raising Major Safety Concerns
A developer using the autonomous agent mode of the Cursor AI coding assistant experienced a catastrophic failure when th…