Hacked websites are systematically exploited by DriveSurge as a malware distribution channel using deceptively authentic update and clickbait techniques.
A previously patched critical Netlogon vulnerability is currently being actively exploited—administrators must apply the May patch package immediately.
Shadow AI is no longer uncontrolled pasting into ChatGPT, but rather the development and deployment of complete AI-generated applications beyond security oversight.
A supply-chain attack on Red Hat npm packages exploits install-time execution and credential harvesting to infiltrate developer and CI/CD systems with self-propagating malware.
Google binds session cookies cryptographically to the device’s security chip, rendering stolen cookies worthless on other computers and blocking infostealer malware.
Meta connected its support chatbot directly to critical account management functions, giving attackers an easy way to hijack accounts without authorization.