534 posts in this collection

A novel malware campaign is utilizing compromised Google Ads to distribute a new information-stealing malware, highlighting evolving threat actor tactics for evading detection. Published: 2026-06-22 | Author: Patrick Mat

A critical flaw in the Gravity SMTP WordPress plugin is actively being exploited by threat actors to steal API keys, secrets, and other sensitive configuration data from approximately 100,000 websites. Published: 2026-06

New PCI DSS v4.0.1 requirements are forcing merchants to scrutinize every script running on their payment pages, significantly increasing the compliance burden for those using embedded payment forms. Published: 2026-06-1

A critical privilege escalation vulnerability in Microsoft Defender, dubbed "RoguePlanet," has been officially acknowledged by Microsoft, with a patch currently under development. Published: 2026-06-17 | Author: Patrick

A novel cryptocurrency theft operation is employing a multi-pronged strategy, utilizing fake online reviews, AI-generated content, and manipulated platform reputations to distribute malicious software, targeting unsuspec

Security teams are drowning in data, but a lack of confidence in prioritizing findings hinders effective risk reduction. The challenge has evolved from simply identifying vulnerabilities to understanding which ones pose
Follow our Instagram for daily security insights, course previews, and exclusive content.