A new joint investigation from SentinelOne SentinelLABS and Censys is raising concerns about how open-source AI tools are being deployed around the world. Their findings show that AI hosting is quietly expanding into what they describe as a large, unmanaged…
Ivanti has released emergency security updates for two critical vulnerabilities affecting Ivanti Endpoint Manager Mobile (EPMM) after confirming the flaws have been exploited in real-world zero-day attacks. One of the vulnerabilities has also been added to the CISA Known Exploited…
A former Google engineer has been found guilty in the United States after prosecutors said he stole thousands of confidential Google files related to artificial intelligence and high-performance computing. The U.S. Department of Justice (DOJ) announced Thursday that Linwei Ding…
Cybercrime has evolved into a massive global problem, and it’s no longer limited to isolated hackers or small scams. Today’s threats range from ransomware gangs and malware networks to cyber espionage and underground marketplaces that operate across borders. As the…
Cybersecurity researchers have uncovered a fresh hacking campaign tied to a China-linked threat actor known as UAT-8099, active from late 2025 through early 2026. The operation, revealed by Cisco Talos, focused on breaking into vulnerable Microsoft Internet Information Services (IIS)…
Cybersecurity researchers are warning users about a wave of malicious Google Chrome extensions that look harmless on the surface, but are secretly built to hijack affiliate links, scrape browser data, and steal OpenAI ChatGPT authentication tokens. The most notable example…
A) Who owns / controls Silver Lake? Silver Lake is a private equity firm, so it doesn’t have public shareholders. It is controlled by its partners (leadership team). Key leadership (owners/partners) Name Role at Silver Lake Notes Egon Durban Co-CEO…
A newly disclosed vulnerability in the GNU InetUtils telnet daemon (telnetd) has raised serious concerns after remaining unnoticed for almost 11 years. The flaw is tracked as CVE-2026-24061 and carries a CVSS score of 9.8 (Critical). It impacts GNU InetUtils…
Security researchers have revealed details about a new ransomware strain named Osiris, linked to an attack against a large food service franchisee operator in Southeast Asia in November 2025. According to investigators from Symantec and VMware Carbon Black Threat Hunter…
Microsoft has issued a warning about a complex, multi-stage phishing campaign targeting organizations in the energy sector, where attackers combine adversary-in-the-middle (AitM) phishing with business email compromise (BEC) tactics to spread across multiple victims. According to Microsoft’s Defender Security Research…
Cybersecurity researchers are warning about a new attack campaign where threat actors are using stolen credentials to install legitimate Remote Monitoring and Management (RMM) tools, giving them stealthy and persistent remote control over victim systems. Instead of relying on traditional…
. The company said the new entity, TikTok USDS Joint Venture LLC, was formed in response to an executive order signed by U.S. President Donald Trump in September 2025. Under the agreement, TikTok’s parent company ByteDance will reduce its ownership…
Fortinet has confirmed it is working on a complete fix for a FortiGate authentication issue tied to FortiCloud SSO, after detecting new exploitation attempts — including cases where devices were already running the latest available firmware at the time of…
AI agents are changing how work gets done inside companies. They can schedule meetings, pull data, run workflows, write code, and take actions automatically. In many cases, they move faster than people ever could, and that speed is boosting productivity…
A cyberattack described by Polish officials as the most serious assault on the country’s energy infrastructure in years has been linked to the Russian state-backed hacking group Sandworm. The incident happened during the final week of December 2025 and targeted…
Security researchers have uncovered a new multi-stage phishing operation aimed at users in Russia, delivering a combination of ransomware and a remote access trojan (RAT) known as Amnesia RAT. According to a recent analysis from Fortinet FortiGuard Labs, the campaign…
Security researchers have uncovered a weakness inside the web control panel used by operators of the StealC malware, turning the attackers’ own infrastructure into an unexpected source of intelligence. The flaw is a cross-site scripting (XSS) vulnerability that allowed researchers…
Several AMD EPYC processor families have been found vulnerable to a new hardware-level attack that undermines protections designed for confidential virtual machines. The affected chips include both standard and embedded variants across the EPYC 7003, 8004, 9004, and 9005 series.…
Not long ago, the cloud was sold as the ultimate fix for security risks and reliability problems. The promise was simple: move everything to managed platforms and let someone else worry about uptime and protection. In exchange for that convenience,…
In today’s cybersecurity landscape, the gap between routine maintenance and a full-blown security incident is shrinking fast. Systems that once felt stable are now under constant strain as organizations roll out new AI features, automated workflows, and connected services. Each…
