This week, Russian hackers targeted Signal and WhatsApp users, permit-fee phishing hit U.S. applicants, ClickFix on WordPress ...

A data breach at data analytics company LexisNexis L&P has leaked the details of over 400,000 cloud profiles after an attacker breached its AWS infrastructure.

IntroductionThreat actors often take advantage of major global events to fuel interest in their malicious activities. Zscaler ThreatLabz is diligently tracking a surge in cybercriminal activity that ...

This assumption breaks down because HTTP RFC flexibility allows different servers to interpret the same header field in fundamentally different ways, creating exploitable gaps that attackers are ...

It was a solid addition to my LLM-powered app stack ...

An infamous pro-Palestinian hacktivist group has allegedly breached US-based medical device manufacturer Stryker. Handala, a hacktivist group believed to be a front for Iranian state-sponsored hackers ...

Threat actors are abusing the special-use ".arpa" domain and IPv6 reverse DNS in phishing campaigns that more easily evade ...

A newly discovered botnet malware called KadNap is targeting ASUS routers and other edge networking devices to turn them into proxies for malicious traffic. Since August 2025, KadNap has grown to ...

Your weekly cybersecurity roundup covering the latest threats, exploits, vulnerabilities, and security news you need to know.

Order.co, a leader in procurement automation, announced that it has been named to The Hackett Group's 2025-2026 “50 to Watch” for the ...

State-backed cyber threat actors from non-combatant states are taking advantage of the Israeli-US war on Iran to fulfil their own goals, according to Proofpoint analysts.