Meta-owned WhatsApp disrupted a zero-click spyware campaign by Paragon Solutions, targeting 90 journalists and activists.

Malvertising targets Microsoft advertisers via fake Google ads, stealing credentials with phishing pages mimicking ...

Unpatched vulnerabilities in Contec CMS8000 patient monitors expose devices to remote access, file overwrites, and data leaks ...

AI-powered social engineering is on the rise, from deepfake election interference to multimillion-dollar scams.

Italy's data protection watchdog has blocked Chinese artificial intelligence (AI) firm DeepSeek's service within the country, ...

Google blocked 2.36M harmful Android apps in 2024, banned 158K developers, and secured 10M devices from 36M risky installs to ...

Broadcom patches five VMware Aria Operations flaws, including CVE-2025-22218 (CVSS 8.5), preventing credential leaks and ...

Europol and seven nations seize Cracked, Nulled, Sellix, StarkRDP, disrupting cybercrime and malware networks.

Severe Lightning AI flaw (CVSS 9.4) enabled remote root execution via hidden URL parameter—patched post-October 2024 ...

Aquabot botnet exploits CVE-2024-41710 in Mitel phones, using a public PoC to deploy DDoS malware since January 2025.

The Interlock ransomware group begins its attack with a strategic and highly deceptive method known as a Drive-by Compromise.

Apple addresses a zero-day flaw (CVE-2025-24085) and fixes 9 vulnerabilities in iOS 18.3, macOS Sequoia 15.3, and more.