Stolen browser sessions and authentication tokens are becoming more valuable than stolen passwords. Flare explains how the ...
A critical vulnerability in the Funnel Builder plugin for WordPress is being actively exploited to inject malicious JavaScript snippets into WooCommerce checkout pages.
Two vulnerabilities in the Avada Builder plugin for WordPress, with an estimated one million active installations, allow ...
Hackers have injected credential-stealing malware into newly published versions of node-ipc, a popular inter-process communication package, in a new supply chain attack targeting npm. The node-ipc ...
Microsoft is updating the Edge web browser to ensure it no longer loads saved passwords into process memory in clear text at ...
On Thursday, Microsoft shared mitigations for a high-severity Exchange Server vulnerability exploited in attacks that allow ...
Hackers are leveraging a critical authentication bypass vulnerability in the WordPress plugin Burst Statistics to obtain ...
OpenAI says two employees' devices were breached in the recent TanStack supply chain attack that impacted hundreds of npm and ...
Cisco is warning that a critical Catalyst SD-WAN Controller authentication bypass flaw, tracked as CVE-2026-20182, was ...
On the first day of Pwn2Own Berlin 2026, security researchers collected $523,000 in cash awards after exploiting 24 unique ...
Cargo theft now starts with phishing emails and stolen credentials, not hijackings, to reroute and steal freight from supply ...
A cybersecurity researcher has published proof-of-concept (PoC) exploits for two unpatched Microsoft Windows vulnerabilities ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results