Capital One has open-sourced VulnHunter, an AI security tool that finds exploitable code flaws, maps attack paths and helps ...
This week’s ThreatsDay Bulletin covers spyware-laced game cheats, fake installers, infostealer, ransomware, phishing kits, ...
Threat researchers at cloud security firm Sysdig have disclosed what they describe as the first documented ransomware operation carried out end-to-end by an autonomous AI agent, with no human typing ...
An exposed WP-SHELLSTORM server revealed tools, logs, cloud credentials, and thousands of webshells used in a large website ...
AI Now’s Friendly Fire PoC shows Claude Code and Codex running README-planted payloads on hosts when autonomous command ...
ActiveState explains how GitHub Actions attack chains can evade traditional CI security scanners, why passing a scan doesn't ...
As a Security Analyst, you help protect that foundation. You’ll be part of a modern, Microsoft-native Security Operations Center (SOC), where you detect, investigate, and help contain cyber threats ...
Attackers exploited Langflow vulnerability CVE-2025-3248 to conduct an agentic AI-powered ransomware attack involving reconnaissance, credential theft, and lateral movement.
XDR is one of security's buzziest acronyms—and for good reason. XDR, which stands for eXtended Detection and Response, promises to provide more timely and accurate threat detection by gathering and ...
China's most prominent cybersecurity company — which the U.S. government has sanctioned, barred from American technology, and designated a Chinese military company — unveiled two AI-powered ...
There have been detection problems in the area of cybersecurity all along. Alert generation overwhelms the security teams, vulnerability discovery occurs much faster than vulnerability fixing, and ...
ScopeX v2 is a modernized, terminal-based security auditing, threat modeling, and vulnerability scanning suite. Designed with a fully asynchronous execution core, it conducts high-performance, ...