Three vulnerabilities in Anthropic’s MCP Git server allow prompt injection attacks that can read or delete files and, in some ...
Researchers found a LinkedIn phishing campaign delivering a remote access trojan via DLL sideloading, WinRAR SFX files, and ...
Cloudflare patched an ACME HTTP-01 validation flaw that disabled WAF protections and let unauthorized requests reach origin ...
Scanning 5M apps uncovered 42K exposed secrets in JavaScript bundles, revealing major gaps in traditional SAST, DAST, and ...
Orphaned human and non-human accounts evade IAM controls, enabling breaches, compliance risk, and the need for continuous ...
Experts reveal Evelyn Stealer malware abusing VS Code extensions to steal developer credentials, browser data, and ...
Elliptic says Telegram-based Tudou Guarantee has stopped public transactions after handling $12B, amid arrests and ongoing global crypto scam crackdow ...
Report finds 82% container breach rate, widespread CVE backlogs, and growing reliance on trusted open source and AI ...
CTM360 uncovered 11,000+ SEO-optimized fake bank sites in the US and UK exploiting search visibility to run large-scale ...
Researchers found an indirect prompt injection flaw in Google Gemini that bypassed Calendar privacy controls and exposed ...
Researchers uncovered a CrashFix campaign where a fake Chrome ad blocker crashes browsers to trick users into installing the ...
This week’s recap unpacks how evolving exploits, malware frameworks, and cloud missteps are reshaping modern cyber defense ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback