AI agent exploited Salesforce sites; 263 objects, 55 Apex methods exposed at one portal, leading to PII and file leaks.

With the rise of AI coding assistants continuing apparently unabated, some project maintainers have begun striking back. Ars Technica reports on projects putting hostile directions into the ...

Last Tuesday, Microsoft patched a vulnerability it rated as max critical in its M365 Copilot AI platform. On Monday, the ...

The GitHub hack shows how one poisoned VS Code extension gave attackers access to 3,800 internal repositories. If you rely on third-party developer tools, this breach is a warning to audit your ...

ThreatsDay Bulletin covers AI abuse, poisoned packages, phishing, macOS attacks, SD-WAN flaws, scams, and supply-chain ...

On June 10, 2026, a hacker exploited five deprecated liquidity pools on Raydium, Solana largest decentralized exchange, ...

Alongside Venmo, Cash App is among the most popular peer-to-peer payment platforms, though it does a whole lot more than just ...

Fake QR code scam: QR codes are everywhere – from restaurant menus and parking meters to payment apps, vegetable shops, and event tickets. But cybersecurity agencies and researchers are warning that ...

Earlier this week, hackers hijacked several open source projects used by dozens of companies and pushed updates designed to spread malware. This is the latest in a string of recent supply-chain ...

Netflix's hidden genre codes bypass the algorithm entirely and drop you straight into whatever category you're actually in ...

Attackers hijacked REDCap upgrade processes to plant malware and spy on academic, healthcare, and defense research networks.

Researchers disclose an HTTP/2 denial-of-service technique affecting web servers including nginx and Apache after AI-assisted ...