A threat actor tracked as DriveSurge has been operating large-scale malware distribution campaigns using ClickFix and ...

Hackers can hijack ChatGPT, Claude, and Gemini with nothing but a sentence. OpenAI says the problem may never be fully solved.

Customer data from more than 350 hotels around the world may have been accessed as part of realistic reservation-hijacking ...

Ghost CMS SQL injection campaign has compromised 700+ websites — including Harvard University, Oxford University, and DuckDuckGo — using a CVSS 9.4 flaw to inject ClickFix malware lures that trick ...

Drupal is warning that hackers are attempting to exploit a "highly critical" SQL injection vulnerability announced earlier ...

Drupal has patched CVE-2026-9082, a highly critical vulnerability that could allow threat actors to hack websites.

Threat actors in Latin America have begun to use AI agents to facilitate their entire attack chains, from assisting with initial access to generating penetration tools on the fly — and organizations ...

Google researchers found evidence in the exploit’s code that it may have been created using AI, like a ‘hallucinated’ CVSS score. Google researchers found evidence in the exploit’s code that it may ...

This story has been updated with comments from the University of Cincinnati and Cincinnati Public Schools. Canvas, a cloud-based learning management platform used by thousands of schools and ...

Fast food fans may have found a way to satisfy their In-N-Out cravings without stepping foot inside the beloved California burger chain. According to a recent article from Food Republic, McDonald’s ...

On Tuesday, education tech giant Instructure disclosed a data breach where hackers stole students’ private information, including their names, personal email addresses, and messages sent between ...

Chris Britt, co-founder and chief executive officer of Chime Financial, during the company's initial public offering in June 2025 On April 1, when Chime Financial's mobile app went down for hours, the ...