The self-replicating malware has poisoned a fresh set of Open VSX software components, leaving potential downstream victims ...

The AI-assisted attack, which started with exposed credentials from public S3 buckets, rapidly achieved administrative privilges.

A malware-free phishing campaign targets corporate inboxes and asks employees to view "request orders," ultimately leading to ...

State-sponsored threat actors compromised the popular code editor's hosting provider to redirect targeted users to malicious ...

Following their Salesforce attacks last year, the cybercrime group has broadened its targeting and gotten more aggressive with extortion tactics.

Iowa police arrested two penetration testers in 2019 for doing their jobs, highlighting the risk to security professionals in red teaming exercises.

Dark Reading asked readers about agentic AI attacks, advanced deepfake threats, board recognition of cyber-risk, and password-less technology adoption.

Security teams need to be thinking about this list of emerging cybersecurity realities, to avoid rolling the dice on ...

Federal agencies will no longer be required to get software attestations of compliance with Secure Software Development ...

A new around of vulnerabilities in the popular AI automation platform could let attackers hijack servers and steal ...

The popular open source AI assistant (aka ClawdBot, MoltBot) has taken off, raising security concerns over its privileged ...

Advanced persistent threat (APT) groups have deployed new tools against a variety of targets, highlighting the increasing ...