Morning Overview

IG

FB

PIN

LI

X

Global Font

Technology / Cybersecurity

Cybersecurity

Latest in Cybersecurity

Cybersecurity

Palo Alto Networks is finally pushing the last round of patches for a wide-open root zero-day today — the firewalls sat wide open for almost three weeks across the update cycle

By Cassian Holt

Cybersecurity

Hackers are now wielding AI to knock companies offline in seconds — and the DDoS-for-hire tools powering the attacks are all for sale on the dark web

By Cassian Holt

Cybersecurity

Apple just pushed iOS 26.5 to every iPhone in service — patching 50+ flaws including 10 in WebKit that could steal data through a bad web page

By Cassian Holt

Cybersecurity

A new malicious npm package just got caught yanking files from users’ local disks — the ‘Malware-Slop’ campaign targeting developers who trusted a single bad dependency

By Cassian Holt

Cybersecurity

A Gitea container flaw just surfaced that lets anyone on the internet pull private container images — more than 30,000 deployments have been exposed for almost four years

By Cassian Holt

Cybersecurity

A malicious npm package codenamed ‘Malware-Slop’ just surfaced hunting the files inside Anthropic’s Claude AI — snatching anything a user uploads into the chatbot

By Cassian Holt

Cybersecurity

Mandiant just confirmed 28% of new vulnerabilities are now weaponized within 24 hours of disclosure — outrunning almost every patch cycle in the world

By Cassian Holt

Cybersecurity

Microsoft just confirmed hackers are actively exploiting an Exchange Server zero-day with no patch available — a single crafted email can take over your whole server

By Cassian Holt

Cybersecurity

Hackers are now wielding AI to knock companies offline in seconds — and the DDoS-for-hire tools powering the attacks are all for sale on the dark web

By Cassian Holt

Cybersecurity

Apple just pushed iOS 26.5 to every iPhone in service — patching 50+ flaws including 10 in WebKit that could steal data through a bad web page

By Cassian Holt

Cybersecurity

A Gitea container flaw just surfaced that lets anyone on the internet pull private container images — more than 30,000 deployments have been exposed for almost four years

By Cassian Holt

Cybersecurity

Microsoft just rushed patches for two Defender zero-days code-named ‘RedSun’ and ‘UnDefend’ — both already being exploited right now on Windows devices

By Cassian Holt

Cybersecurity

Hackers just hit @antv inside wave 4 of the TeamPCP worm — the same crew that walked off with 3,800 of GitHub’s internal repositories two weeks ago

By Cassian Holt

Cybersecurity

Hackers are now wielding AI to knock companies offline in seconds — and the DDoS-for-hire tools powering the attacks are all up for sale on the dark web

By Cassian Holt

Cybersecurity

Mandiant just confirmed hackers are now weaponizing 28% of new vulnerabilities within 24 hours of disclosure — outrunning the patches built to stop them

By Cassian Holt

Cybersecurity

India’s national cyber agency just ordered companies to patch internet-facing security flaws within 12 hours — the tightest deadline in the world as AI speeds up attacks

By Cassian Holt

Cybersecurity

Microsoft just rushed out a SharePoint patch after researchers confirmed attackers can take over a server through any account with basic site member permissions

By Cassian Holt

Cybersecurity

GitHub confirms TeamPCP walked off with 3,800 internal repositories — and the gang is auctioning them on a dark-web forum at a minimum price of $50,000

By Cassian Holt

Cybersecurity

A single Anthropic AI model just flagged 26 critical vulnerabilities for Palo Alto Networks in one run — more than the firm usually logs in five months

By Cassian Holt

Cybersecurity

Hackers just walked off with 3,800 of GitHub’s internal code repositories — smuggled out by a single poisoned plugin a GitHub developer trusted

By Cassian Holt
1 2 3 4 5 47