Microsoft launches inline data protection in Edge, preventing data leaks in GenAI apps and boosting enterprise security.

Ransomware in VSCode extensions triggers PowerShell payload to encrypt test files; developers warned to strengthen security.

VanHelsing RaaS launched March 7, 2025 with 3 victims using a $5,000 deposit model, expanding cyber threats across multiple ...

Next.js flaw CVE-2025-29927 bypasses authorization checks in versions 12.3.5 to 15.2.3, risking admin page access.

DDoS vulnerabilities are hidden within all DDoS protection solutions – i.e., they are mostly located in the security policies ...

CVE-2025-30066 supply chain attack compromised tj-actions on March 14, 2025, exposing 218 repositories and leaking ...

U.S. Treasury lifts Tornado Cash sanctions after Fifth Circuit ruling, removing 100+ ETH wallets to bolster digital asset ...

China-linked APT Aquatic Panda targeted 7 organizations in a 10-month espionage campaign using five malware families.

Unpatched Edimax IC-7100 flaw (CVE-2025-1316) exploited for Mirai botnet malware since May 2024, enabling DDoS attacks via ...

Medusa ransomware uses ABYSSWORKER driver with stolen certificates to disable EDR and enable RDP access, risking data ...

UAT-5918 has attacked Taiwan infrastructure since 2023 using web shells and open-source tools to steal credentials.

PenTest’s 10,000+ pentests reveal exploitable network gaps from misconfigurations and weak passwords, driving continuous ...