The WebRAT malware is now being distributed through GitHub repositories that claim to host proof-of-concept exploits for recently disclosed vulnerabilities. Previously spread through pirated software ...

The RondoDox botnet has been observed exploiting the critical React2Shell flaw (CVE-2025-55182) to infect vulnerable Next.js servers with malware and cryptominers. First documented by Fortinet in July ...

A zero-day vulnerability in WatchGuard Firebox firewalls is under active exploitation, marking the latest attacks against edge devices this month. WatchGuard disclosed the vulnerability, tracked as ...

Anne P. DePrince has received funding from the Department of Justice, National Institutes of Health, State of Colorado, and University of Denver. She has received honoraria for giving presentations ...

Cybercriminals and state-sponsored hackers are increasingly exploiting Microsoft’s legitimate OAuth 2.0 device authorization process to hijack enterprise accounts, bypassing multifactor authentication ...

WatchGuard has issued an urgent patch alert for its Firebox firewall appliances after discovering a critical-rated vulnerability that is under exploit by threat actors. Tracked as CVE-2025-14733, with ...

Human-in-the-loop (HITL) safeguards that AI agents rely on can be subverted, allowing attackers to weaponize them to run malicious code, new research from CheckMarx shows. HITL dialogs are a safety ...

WASHINGTON (AP) — China is exploiting partnerships with U.S. researchers funded by the Department of Energy to provide the Chinese military with access to sensitive nuclear technology and other ...

Flags of the U.S. and China are displayed at the Gimhae International Airport in Busan, South Korea, Oct. 30, 2025. (AP Photo/Mark Schiefelbein, file) WASHINGTON (AP) — China is exploiting ...

A common thread running through many of the biggest cyberattacks and data breaches in 2025 was a lack of visibility by organizations into their own IT systems—a weakness that attackers exploited again ...