Malicious "skills" and persnickety configuration are just a few issues that security researchers have found when installing ...

Knostic found 1,862 MCP servers exposed with zero authentication. Here are five actions CISOs should take now.

Moltbot’s viral open-source AI assistant wowed users with automation power but sparked major security, privacy, and misuse concerns.

It's a great NAS with great hardware, but the lack of SSH access is frustrating.

ChatGPT has quietly gained bash support and multi-language capabilities, enabling users to run commands and install packages in containers without official announcements.

Microsoft has patched 112 vulnerabilities in January 2026, including CVE-2026-20805, a Desktop Window Manager zero-day that ...

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.

How modern infostealers target macOS systems, leverage Python‑based stealers, and abuse trusted platforms and utilities to ...

Compromised dYdX npm and PyPI packages delivered wallet-stealing malware and a RAT via poisoned updates in a software supply chain attack.

This week’s cybersecurity recap highlights key attacks, zero-days, and patches to keep you informed and secure.

DES MOINES (AP) -- A former bank executive filed a lawsuit against Iowa Student Loan Liquidity Corp., accusing the lender of entering into an illegal deal to market student loans to Iowa colleges.